Director, Security Operations Center

About the Team

About the Opportunity as the Director of VIZIO Security Operations Center, you will be a hands-on technical leader in application, data, and infrastructure security initiatives within the VIZIO organization. The purpose of this vital and interactive role is to provide a broad range of subject matter expertise on cyber-threat management, cyber incident response and all areas concerning development of a common operating picture using event correlation tools and threat intelligence. The Security Operations Center Manager position is responsible for the development, implementation and continuous operation of the VIZIO Security Operations Center (SOC). The workload of the group includes managing the organization's security scanning tools, assessing and analyzing the data collected from those tools, as well as tracking and reporting on suspicious activity.

This position is responsible for directing the detection of intrusions and leading the response to any intrusion. The incumbent will work with and for the Chief Information Security Officer and provide regular cyber-threat summaries, briefings and provide applicable information that will help drive business, IT and product related decisions.

What You Will Be Doing:

• As a Director of Security Operations Center, you will improve security operational tasks and seek ways to mature VIZIO security programs

• You will report directly to the TBD and will work with the InfoSec & DevSecOps technical teams to ensure VIZIO corporate and cloud infrastructure are secure and available

• You will put your prior technical skills to use being an active member of the Operations team while making essential technology and process decisions to ensure the security of the organization

What You Will Do

• Manage day-to-day SOC operations and Operations Team Members.

• Establish and maintain operational SOPs in support of the SOC in alignment with VIZIO's Cybersecurity program.

• Establish and manage training plans for the SOC Operations Team Members and establish a development program to foster their professional development.

• Oversee the deployment, monitoring, maintenance, development, upgrade, and support of all Client managed systems, operating systems, hardware, and software.

• Ensure technical systems and procedures meet the operational needs of security operations.

• Research and leveraging information on current cyber-threats to focus VIZIO's business, product and IT programs on emerging risk themes and issues.

• Partner with VIZIO Cybersecurity Teams in reviews and oversight of security approval and risk management framework processes and tools such as logical access and data loss prevention to identify and simplify key risk trends, themes, and opportunities.

• Provide advice and guidance regarding use of security tools, such as cryptography, identity and access management tools and services, single sign-on, authentication and authorization, security monitoring and compliance, end point security, anti-virus and intrusion detection and prevention services.

• Partner with VIZIO Cybersecurity Teams, perform reviews and Information Security Risk assessments (application, third party) including deep dive assessments, scenario analysis, and new product or change initiative assessments

• Other duties as assigned

About You

• The ideal candidate will possess a Bachelor's degree or higher in Computer Science, Information Systems or closely related field from an accredited college or university.

• 10 years of experience with Information Security and managing technical teams, with five (5) or more years of experience as a Cybersecurity Analyst, Security Engineer and Network practionier , responsible for selection, development, and deployment of Cybersecurity solutions to address business requirements.

• Possession of a current Certified Information Systems Security Professional (CISSP), Certified Advanced Security Practitioner (CASP) and /or equivalent certification (such as CySA+, CEH, GIAC Certified Incident Handler (GCIH), CISM)

• Understanding Information Technology and applying advanced methodologies, principles, and concepts to coordinate major projects

• Understanding of information security frameworks (NIST CSF, MITRE ATT&CK), information security technologies, tools, appliances, practices and controls

• Experience with common project management methodologies

• Utilizing information security architecture, information security technologies, tools, practices, and controls

• Utilizing IT Service Management systems and an understanding of help desk operations

• Discussing and conveying complex Information Security Risk concepts and terminology with both technical and non-technical staff, including Senior Executives and Board of Directors.

• Implementing and acting as an advocate for Information Security Risk management best practices and security awareness

• Developing clear requirements for internal Information Technology staff and third-party vendors

• Managing and evaluating the work of staff, service providers, and vendors

• Maintaining excellent interpersonal relationships with executive staff, clients and external vendors

• Proactively overseeing the implementation and application of security best practices and policies

• Establishing effective working relationships with management, employees, employee representatives and the public Problem Solving/Analytical Skills

• Identifying and resolving challenging issues and problems through good judgment and decision making

• Proactively detect problem areas and recommending/implementing solutions

• Experience with Sumo Logic, and other log processing and visualization tools, including detailed dashboards, alerting, development of indexing/partitioning, rollout & ingestion methods.

• Incident response coordination and threat hunting

• Prior involvement in ISO, SOC 2, or other compliance requirements

• Develop secure configuration standards and controls

• Prior vulnerability management experience

• Familiarity with SaaS Infrastructure and Web Architecture

• Fundamental Knowledge of networking (ex: VPN, subnetting, VLANs, and Firewalls/Security Groups)

• Scripting experience (Python, Bash, PowerShell)

• Knowledge of AWS, Azure & GCP Security Principles, and implementations

• Deep understanding of monitoring CI / CD from a security and IR point of view.

• Experience using various AWS tools such as: Config, Control Tower, Guard Duty, Security Hub, Detective, and Cloudtrail

• Familiarity with source code management tools, preferably Github Enterprise Cloud

• Basic understanding of Embedded Operating Systems and the management of the devices via the cloud, ex. AWS IOT Core

Preferred Qualifications (if applicable):

• Experience with Security Operations Automated Response systems like Palo Alto XSOAR.

• Experience with EDR tools such as Crowd Strike Falcon.

• Technology certifications (SIEM, etc)

About VIZIO

We are Beautifully Simple.

Headquartered in Irvine, California, VIZIO is a leading HDTV brand in America and the #1 Sound Bar Brand in America. VIZIO's mission is to deliver high performance, smarter products with the latest innovations at a significant savings that we can pass along to our consumers. Our loyal following and industry-wide praise continues to grow as we redefine what it means to be smart.

VIZIO, Inc. is an Equal Opportunity Employer committed to diversity in the workplace. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, protected veteran status, or any other basis protected by applicable law, and will not be discriminated against on the basis of disability.

We do not accept unsolicited agency resumes. We will not pay fees to any third-party agency, outside recruiter or firm without a mutually agreed-upon contract and will not be responsible for any agency fees associated with unsolicited resumes. Unsolicited resumes will be considered our property and will be processed accordingly.

For California-based employment: The minimum salary for this position is $184,000.00/year. The maximum salary for this position $238,000.00/year. In addition to base salary, the compensation package also includes eligibility for an annual bonus, as well as equity and a range of medical, dental, vision and other benefits.