AddressAbout Us
Thrive is a rapidly growing technology solutions provider focusing upon Cloud, Cyber Security, Networking, Disaster Recovery and Managed Services. Our corporate culture, engineering talent, customer-centric approach, and focus upon “next generation” services help us stand out amongst our peers. Thrive is on the look-out for individuals who don’t view their weekdays spent at “a job”, but rather look to develop valuable skills that ignite their passion and lead to a CAREER. If you’re attracted to a “work hard, play hard” environment, seeking the guidance, training and experience necessary to build a lucrative career, then welcome to THRIVE!!
Position Overview
This position offers you the opportunity to join our rapidly growing organization. We are in search of individuals who exhibit strong leadership, initiative, and independence, aimed at refining and advancing our Security Engineering processes and systems.
As the Director of Security Engineering, the successful candidate will play a key role in shaping and executing Thrive's Security Engineering strategy. This role demands a focused approach to managing and advancing our SIEM, SOAR, and EDR platforms, requiring a deep understanding of both technical nuances and managerial aspects of Security Engineering. Responsibilities include optimizing security alerts, integrating advanced cyber threat intelligence, and continuously enhancing our threat detection and response capabilities. The Director will address technical challenges, foster innovation in our security processes, and make strategic decisions aligned with our security goals. This role requires strategic insight to harmonize our Security Engineering with business and operational objectives. Ultimately, the Director of Security Engineering is pivotal in strengthening our security framework, enabling us to adeptly navigate the evolving cybersecurity landscape and significantly boost the success of our business.
Primary Responsibilities
Direct and oversee Thrive's Security Engineering Team, leading strategic planning and aligning team objectives with Thrive's business and operational priorities
Lead a team of Security Engineers in professional growth and skill development, motivating individuals to achieve departmental goals, deliver exceptional customer service, and maintain high performance through continuous advancement
Responsible for the ownership, management and maintenance of Thrive’s Security platforms including our SIEM, SOAR, and EDR solutions
Oversee SIEM and EDR tuning and configuration tasks necessary for the deployment of security services to new and existing customers
Drive SIEM, SOAR, and EDR alert tuning, creation, and optimization efforts to continuously improve our alert detection capabilities
Supervise the strategic implementation and integration of cyber threat intelligence feeds across our SecOps tools to elevate our threat prediction, detection, and response effectiveness
Ensure coordination and collaboration between the SOC Team and Security Engineering teams in the effective implementation of new detection rules, SOAR playbooks, and other measures to ensure effective security monitoring
Collaborate with the product development team on testing and implementing new security technologies and enhancements
Act as an escalation point for the Security Operations teams, providing guidance, and resolving complex security platform issues
Actively engage in customer meetings, ensuring a collaborative approach to understand and meet their security needs effectively
Develop and maintain detailed reports and dashboards for both internal stakeholders and clients, focusing on key metrics to drive informed decision-making and demonstrate value
Define and track key performance indicators (KPIs) to enhance operational quality and efficiency in our security operations
Conduct annual performance reviews for all direct reports
Adjust priorities and balance responsibilities in a fast-paced environment
Other duties as required
Qualifications
Bachelor’s Degree in Information Technology or related discipline preferred; or equivalent combination of education and relevant work experience
Relevant certifications such as CISSP or CISM
Minimum 5 years of information security experience, with 3+ years in a leadership role.
Proven expertise in managing SIEM, SOAR, and EDR platforms
Firm understanding of attacker tactics, techniques, procedures and means of detection.
Solid understanding of the MITRE ATT&CK and Cyber Kill Chain frameworks
Understanding of common enterprise technologies and logging capabilities including Cloud, IDS/IPS, Firewalls, Active Directory, Anti-Virus/EDR, Proxies, and Email Gateway
In-depth knowledge of cloud technologies, including Azure and Office 365, with experience in securing cloud environments
Excellent written and verbal communication skills for both technical and non-technical audiences
Analysis and problem-solving skills
Strong desire for continuous improvement
