We're a global team unified in a common purpose: creating advanced technology solutions to the world's water challenges. Developing new technologies that will improve the way water is used, conserved, and re-used in the future is central to our work. Our products and services move, treat, analyze, monitor and return water to the environment, in public utility, industrial, residential and commercial building services settings. Xylem also provides a leading portfolio of smart metering, network technologies and advanced analytics solutions for water, electric and gas utilities. In more than 150 countries, we have strong, long-standing relationships with customers who know us for our powerful combination of leading product brands and applications expertise with a strong focus on developing comprehensive, sustainable solutions. For more information, please visit us at www.xylem.com
If you are excited and passionate about helping us solve water, we want to hear from you!
The Role: Xylem seeks to hire a Director of Threat Analysis & Incident Response to be the global focal point for 24/7 security incident management across the Company. This leader will coordinate appropriate response and actions, utilizing multiple platforms, suppliers, and internal and external support groups. The Director will lead a team of security professionals whose core function is to provide continuous cybersecurity monitoring, incident triage, investigative response and data analysis services for the Company as well as running coordinated Table Top Exercises. The Director provides leadership and guidance and acts as a primary contact for senior management across enterprise and the evaluation, development, implementation, and monitoring of information security strategies and tools, for effective response.
The position will require collaboration across business units, IT infrastructure and application teams, software development and cloud architecture and other internal functional groups (Legal, Procurement) to ensure that the strategy and execution elements of Global Cybersecurity meet the needs of the Xylem.
Responsibility for information cyber security analysis & response with the mission of protecting against internet attacks / threat actors.
Lead the Cyber Threat Analysis & Response organization, to include the Continuous Threat Analysis Center (24/7), Incident Response Center, Cyber Counter Threat and Intelligence capabilities.
Lead initiatives and the implementation of capabilities in order to advance the Cyber Threat program.
Provide guidance and advocacy with regards to prioritization of Cyber Security investments, while ensuring effectiveness and risk reduction is gained, provide leadership & coordinate with stakeholders on matters relating to the definition of cyber security architectural principles and standards.
Enhance and distribute security incident response and escalation procedures to ensure timely and effective handling of security events and alerts.
Enhance Cyber Security program and strategy, and to expand threat management services across global business units.
Maintain industry affiliations that provide the necessary intelligence to proactively respond to threats. Such affiliations may include ISAC's (Information Sharing and Advisory Center), Europol, US DHS (Department of Homeland Security), FBI, etc.
Apply knowledge of technical, analytical, project management, and negotiating skills to ensure the confidentiality, integrity, and availability of all information systems assets and ensure compliance with company policies, procedures, contractual, and regulatory requirements.
Establishes and governs security event monitoring/detection and cyber threat response and recovery capabilities and serves as the subject matter expert regarding all information security incident responses for the enterprise, including insider threat and data loss prevention
Works with IT Leadership to proactively develop and monitor information security strategies to protect the company from existing and future threats.
Actively provides consistent communication to key IT and business stakeholders on metrics and measures and the potential of new threats
Provides end-to-end problem management and root cause analysis for security incidents across the Enterprise
Works with security architecture & engineering, penetration testers, and strategic partners to architect advanced solutions to address issues
Provide extensive support and assistance to senior leadership for decision on future investments and addressing complex issues impacting Xylem's security posture.
Coordinates with internal and external partners to negotiate and place security-related orders for services.
Provides input in the development of operating and capital budgets.
Work closely with the Chief Security Officer on the development of functional goals and objectives.
Education, Experience, Skills, Abilities, License/Certification:
Bachelor's degree in STEM field, related discipline, or equivalent experience.
Minimum 8+ years of increasingly diverse and complex experience in field of Cybersecurity within a global environment, with at least a minimum of 5+ years in security architecture and application, infrastructure security.
Excellent verbal/written communication, collaboration, analytical and presentation skills to lead an environment driven by customer service and team work; must be able to set goals and participate in strategic initiatives for a team; and foster the development of high performance teams and interface with all levels of the organization; ability to participate in development of resource plans and structures and influence organizational priorities
Extensive experience working with Cyber Security vendors negotiating rates, contracts, and service level agreements.
Excellent communication, analytical, and writing skills with the ability to participate in and lead team based projects.
Ability to carry high-level conversations; proven ability to present to senior leadership.
Experience and in depth understanding of the latest security principles, application security architecture, security technologies, techniques, standards and protocols.
Experience managing & configuring security technologies such as Next Generation Firewalls, Intrusion Prevention, anti-malware/anti-virus, endpoint security technologies, SIEM, log collection / management
Must work well in a dynamic team that is geographically dispersed.
Must maintain information security /cybersecurity certifications (e.g. CISSP, GCIH/ECIH, CISM
Analytical decision making
Business focused delivery
Continuous improvement mindset
Leading people & teams (for people manager)
Planning & prioritizing work
Developing capability (for people manager)
(The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.)
(The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.)
Office: Standard office equipment; work usually performed in an office setting free from any disagreeable elements.
Standard weekly job hours: 40 hours
EOE including disability and veteran