What are the responsibilities and job description for the Sr Director, Cybersecurity and Compliance position at Hotwire Communications Ltd?
RESPONSIBILITIES:
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required.
- Direct the triage, analysis, and investigations as needed across all business units for the corporate and product-facing sides of the business.
- Design strategy and build the cyber-Fusion center. Pillars under the cyber-Fusion center include Threat Intelligence, Detection Engineering, Offensive Security, SOC operations, and Incident management.
- Lead and mentor team for security monitoring, detection and response, security incident management, detection engineering, security data science, and analysis and monitoring of the information assets across HOTWIRE.
- Lead security incidents and investigations and provide post-incident reporting in urgent or critical situations.
- Work to identify, track, and remove impediments to improve visibility, monitoring, and investigation capabilities.
- Translate lessons learned from a security incident or data breach to improve our program or address control deficiencies.
- Use a maturity model to measure the incident detection and response capability and identify capability gaps in all support environments over time.
- Develop roadmaps, set objectives, and choose initiatives that support the goals of improving capability maturity.
- Demonstrate alignment on and execution of functional and team-level goals.
- Develop metrics for reporting purposes and drive specific actions, including measuring and improving operational effectiveness and performance and determining detective control effectiveness and coverage.
- Build in-house digital forensics and incident response (DFIR), Threat intel, and purple teaming capability and formalize relevant processes and procedures.
- Work with your team to proactively identify and improve threat detection deficiencies by utilizing breach and attack simulation (BAS) tools and participating in purple team exercises.
- Ensure the maintenance of current projects and technology systems.
- Identify vulnerabilities, the need for upgrades, and opportunities for improvement.
- Ensure smooth, secure, and consistently updated technical operations within the organization.
- Build and maintain relationships with external advisors and vendors.
- Resolve project and resource conflicts, facilitating solutions across department boundaries, tracking and communicating the progress of multiple concurrent projects, and standardizing processes across different project teams driving the sense of urgency to meet project deadlines and deliver solutions.
- Oversee critical project functions, including stakeholder engagement, governance, project costs, vendor management, project documentation, risk management, and status reporting.
- Measure and communicate project progress and status and identify overall cross-project issues and dependencies.
- Work closely with technical teams on the delivery of IT project initiatives.
- Draft memos for executive leadership on potential projects, current projects, and completed projects.
- Other duties as required or assigned.
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required.
- Bachelor’s degree in computer science, engineering or related field and/or equivalent professional experience.
- Proof of continued education such as certifications is desirable
- At least 5 years of management experience in an IT environment – More than 5 years are required for senior level
- Full understanding and a true "architect" of the WIFI infrastructure, routing/switching and security for the entire organization
- Experience specifically with implementing/ OSS/BSS
- Solid understanding of computer systems, security, network and systems administration, databases and data storage systems
- Sound working knowledge of IT operations, systems, and developments
- Conversational Spanish preferred but not required
- Strong coaching skills and leadership courage to develop team and hold them accountable
- Highly organized and a proven strategic thinker with ability to engage and motivate teams