Con Edison, Inc. New York , NY 10007
Posted 2 weeks ago
Mission Statement
Core Responsibilities
The Manager will be responsible for managing CSOC programs such as, but not limited to, vulnerability management, threat hunting, alert management, purple teaming, etc.
Build relationships and partnerships with internal and external stakeholders to drive critical operational programs
Provides leadership & technical guidance on cybersecurity best practices, toolsets and enhanced capabilities
In-depth knowledge of attack vectors, MITRE Framework and threat management
Understanding of cloud security best practices and protections
Oversee specific automation and capabilities and enhancement initiatives
Ensure that the CSOC analysts provide 24x7x365 monitoring and response to cyber events, and ensures any requirements and SLAs are met daily.
Technical and leadership escalation point for Cybersecurity Operations teams and CSOC as a whole
Maintain quality control and oversight for Cybersecurity Operations, Threat & Vulnerability management, and operational functions and programs
Ensure continuity of operations, and conduct appropriate briefings to provide all updates, assignments, training, and uniform compliance.
Support the development, revision, maintenance, and implementation of Ccybersecurity Operations processes, protocols,programs and systems.
Ensure proper escalation and communication of cyber events to leadership as required.
Liaison with SMEs, business groups, the Network Operations Center, threat & vulnerability management stakeholders, and external entities to inquire for information, escalate alerts, and facilitate communication.
Lead and manage threat and vulnerability incidents, initiatives, programs and engagements end to end
Mature capabilities of all cybersecurity operations by driving automation, programs, efficiencies, and operational excellence
Coordinate with other sections in Information Security as needed to support projects, disseminate information, and implement processes supported by the Cybersecurity Operations & the CSOC
Directly assist in assessing, developing, and maturing the capabilities of the Ccybersecurity Operations team & CSOC - this includes the maturation of people, processes, and technology.
Provide briefings to leadership, business areas, and external groups.
Ensure accurate and timely record keeping and reporting, including case management, metrics, daily reports, and executive dashboards.
Maintain situational awareness of threats and events that may affect the security of business operations and infrastructure.
Ensure continuity of operations and conduct appropriate briefings to provide all updates, assignments, training, and uniform compliance.
Contributes to the development and enhancement of business processes and information systems related projects to track and manage Cybersecurity Operations initiatives, programs and capabilities
Creates and oversees creation, maintenance and compliance of all process documentation, regulatory requirements, and protocols
Creates and oversees creation, maintenance and compliance of all regulatory reporting requirements, and protocols
Oversee major projects as designated by the Systems Manager.
Ensures 24x7x365 support and on-call on a rotating schedule.
Perform other related tasks and assignments as required.
Required Education/Experience
Master's Degree and Minimum two (2) years of experience in IT. or
Bachelor's Degree and Minimum three (3) years of experience in IT. or
Associate's Degree and Minimum 5 years of experience in IT.
or
High School Diploma/GED and equivalent technical certifications (e.g. CISSP, CISM, GCIA, GCIH etc.), and 7 years of work experience in IT.
Preferred Education/Experience
Relevant Work Experience
Must be highly organized and detail oriented Required and
Previous IT experience is required Required and
Knowledge of security tools required Required and
Good understanding of industry standard policy, processes and procedures covering incident, problem and change management is preferred Preferred
Previous experience in a NOC, Control Center, or CSOC environment is preferred Preferred
Skills & Ability
Strong verbal communication and listening skills
Ability to lead/manage others
Possesses flexibility to work in a fast paced, dynamic environment
Effective interpersonal skills
Demonstrated analytical skills
Ability to simultaneously handle multiple priorities
Must be proficient in Microsoft Office including Word, Excel, Outlook and PowerPoint, etc.
Effective interpersonal skills
Licenses & Certifications
Driver's License Required
Other: Technical Certifications (e.g. CISSP, CISM, CIPP, Pentest+, etc.) 1 Year Preferred
Physical Demands
Must push, pull, lift up to 25 pounds
Must sit or stand to answer a phone for entire shift
Must sit or stand to use a keyboard, mouse, and computer for entire shift
Must be able to read small print and symbols.
Other Physical Demands
Technical Difficulty Statement
Equal Opportunity Employer
Con Edison, Inc.