Cyber Security Consultant
Sleep Number Corporation
Contract Minneapolis , Minnesota, United States Posted 1 month ago
About Position
Cyber Security Consultant (Contract)
$0.00 / Hourly
Minneapolis , Minnesota, United States
Cyber Security Consultant
Contract Minneapolis , Minnesota, United States Posted 1 month ago
Skills
Develop and implement strategies to enhance the SOC's effectiveness threat detection and incident response capabilities with other technology teams. Provide coaching and feedback to third party security operations staff (responsible for level 1-2) and account manager(s). Ensure KPIs are maintained. Escalate non-compliance to contractual agreement(s). Lead development and maintenance of quality SOC playbooks (direct third-party team and contribute as needed). In the event of a cyber incident will execute CSIRT (Cyber Security Incident Response Team) playbooks as Cyber Incident Commander which includes adhering directly to CSIRT playbooks and navigating the event(s) with confidence which includes VP+ level executives and mobilizing cross-functional teams. Lead cybersecurity investigations and incident handling activities and coordinate with other in-house experts based on the nature of the event notable or incident. Develop and conduct incident response tabletop exercises and simulations at least twice annually (may or may not include engaging a third party to conduct the exercise) Analyze security incidents to identify root causes and recommend and/or implement corrective actions. Develop and implement threat detection and monitoring strategies in partnership with platform owners who may reside on other teams across the company. Communicate effectively and confidently with executive leadership (VP and above) on the status of cybersecurity operations and incidents. Partner closely with security engineers and other technology teams to advise and help implement improvements to detections monitoring platforms and workflow platforms. Provide regular updates and reports to senior management and relevant stakeholders. Drive prioritization and ownership of improvements needed in alignment with overall cybersecurity and technology strategies make thoughtful recommendations to leadership and when required make well-crafted pitches for resources technologies.Description
This individual contributor position plays a key role in shaping and maturing Sleep Number’s cybersecurity operations (“SOC”), cyber investigations, and incident response strategy by leading the Security Operations, Cyber Investigations and Incident Response capability within Sleep Number’s Information Security organization, including closely overseeing third party-managed services. This role possesses an elevated level of communication and relationship-building acumen (all audiences, including executives and non-technical stakeholders), a strong technical background, and deep field-relevant experience.
Responsibilities
- Hold security operations partner(s) held accountable to KPIs outlined as part of contractual obligations and escalation procedures initiated where KPIs are not met.
- Lead and execute cybersecurity events, notables, investigations and validations in accordance with internal service level agreements (“SLAs”).
- Achieve improvements to comprehensive security tooling and communications, including advancing automations across technology teams to reduce manual steps and expedite investigations.
- Successful execution of published CSIRT playbook(s) should an incident situation arise.
- Conduct at least two internal incident response tabletops per year among internal technology teams and one every 2-3 years with C-level executives.
- Position Requirements
- 7+ years of relevant professional experience.
- 5+ years of demonstrated experience in cybersecurity incident handling, incident response and security operations, which includes at least 2 years of oversight of a third-party managed service provider.
- BA/BS Degree in Cybersecurity, Computer Science, or related discipline, or equivalent practical experience.
- CISSP Certification (exceeding years of confirmed experience can circumvent this requirement). Non-CISSP-certified candidates would be encouraged to pursue CISSP certification as part of developmental expectations within one year of start date.
- Proven experience in managing an outside managed service provider (e.g., MDR, SOC as service) to ensure KPIs and service levels are maintained.
By applying to a job using PingJob.com you are agreeing to comply with and be subject to the PingJob.com Terms and Conditions for use of our website. To use our website, you must agree with the Terms and Conditions and both meet and comply with their provisions.