Service Manager, Security Orchestration - Toronto, Canada - CIBC

CIBC

Verified Company

Toronto, Canada

2 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

We're building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what's right for our clients.

At CIBC, we embrace your strengths and your ambitions, so you are empowered at work.

Our team members have what they need to make a meaningful impact and are truly valued for who they are and what they contribute.

To learn more about CIBC, please visit

Job Description:

What you'll be doing

As a Service Manager within the Threat Detection & Response team, you will enable and improve CIBC's intelligence-driven security monitoring and response capabilities.

This will primarily involve development and automation of security response functions to be consumed by the Cyber Operations & Delivery teams and the Enterprise.

Your services will enable integrations with existing and new security controls to provide rapid response and containment capabilities for security teams.

You will work closely with existing Threat Detection & Response services:

User and Entity Behavior Analytics platform
Centralized Log Management platform
Security Information and Event Management platform; and
Security Orchestration & Automated Response

With a strong knowledge and understanding of the Threat Detection and Response domain (SIEM, Centralized Logging, SOAR, UEBA, etc.), you will iteratively automate security capabilities and enable orchestration on an on-going basis as part of your service.

You will oversee and support content development on security services that maximize our visibility into the environment in order to respond to security alerts and maintain an effective security program

At CIBC we enable the work environment most optimal for you to thrive in your role. You'll have the flexibility to manage your work activities within a hybrid work arrangement where you'll spend 13 days per week onsite, while other days will be remote_

How you'll succeed

Leverage your expert skills to learn new technologies quickly to assess and identify strategic security controls to integrate with and provide enriched experience for security investigators during response functions that enable swift action in support of the Enterprise Security Monitoring program.
Work with crossfunctional stakeholders such as Detection Engineering, Security Engineering, and Enterprise Technology teams to monitor the internal and external threat environment and contribute to adjustments of Security Services plans as required. Perform benchmarking of relevant CIBC Security Services capabilities against those of other organizations through participation in external information sharing forums. Develop relationships with external organizations for the purpose of actively sharing Information Security threat and risk related information.
Communicating to Information Security and CIBC Senior Management the analysis and interpretation, as well providing solutions for existing and future risks and vulnerabilities in order to provide measurement regarding the security posture of CIBC. Manage centralized reporting of key processes to ensure their effectiveness, efficiency and compliance with management objectives. Provide input into all aspects of Enterprise Security Monitoring and Analytics portfolio. Assist in defining service roadmaps and implementation strategies for all relevant Information Security services.
Collaborating with operational teams, including the Enterprise Security Operations, Security Engineering, and Financial Crimes Technology to develop, continuously evaluate and improve logístical and analytical processes for Information Security. Collaborate with vendors and partners, develop and maintain relationships, and guide towards successful delivery that is aligned with CIBC's strategy and goals.
Developing periodic and adhoc threat and external incident assessments, communications and presentations for a wide range of audiences including advisory and operations teams, risk managers and executive management. Serve as a contributor and representative for working groups and meetings with other financial institutions, partner organizations and other entities.

Who you are

You can demonstrate experience in Information Security within large enterprise, with an emphasis in one or more of the following areas: Threat Intelligence, Incident Response, Security Operations, Security Monitoring, Security Analytics, Security Information Event Management, Centralized Log Management, Vulnerability Management, Penetration Testing, Malware Research, Data Leakage Prevention, NGFW management, Next Generation Intrusion Prevention, Security or Technology Service Management.
You are certified in GSEC, GCIH, GCIA, GMON, CISSP or CCSP or any equivalent professional certifications.
You're passionate about people. You find meaning in relationships, and surround yourself with a diverse network of partners. You build trust through respect and authenticity.
You're digital