Security Operations Center And Incident Response Program Manager - Remote

This role's primary responsibility is to serve as the owner of the Incident Response process, including Incident Response management steps such as logging, monitoring, and reporting, and ensuring employees understand their responsibilities under the Incident Response program. This role will also serve as the primary contact for the Security Operations Center (as a service). As well as all Information Security roles, this role is responsible for helping to design, implement and assess controls designed to protect the organization's information and supporting technology platforms.
Core Responsibilities

• Serve as the primary contact for our Security Operations Center vendor and the Information Security Incident Response lead
• Provide security monitoring and Incident Response of cyber security events
• Respond to cyber security tickets and provide L3 analysis as required
• Monitor and analyze Security Information and Event Management (SIEM) alerts to identify security issues for remediation and investigate events and Incidents
• Execute "threat hunting" procedures to detect incidents as required
• Fine tune SOC alert configuration and help to minimize false positives
• Maintain familiarity with various security tools including firewalls, intrusion detection and prevention, vulnerability management tools, data loss prevention tools, web content filtering technologies, SIEM, user and entity behavior analytics (UEBA), and security orchestration and automation (SOAR) Security analytics solutions
• Prepare various technical reports to enable security leadership to gain deeper visibility and control of threat environment
• Evaluate, propose, and deploy various hunting and detection capabilities

Education & Communication

• Develop education and perform training annually to all levels of the organization regarding the Incident Response Program and procedures that all staff are expected to follow

Other General & Administrative

• Assist with completing special projects and assignments as required by department leadership.
• Actively participate in internal and external continuing education.
• Maintains knowledge of company products and services.
• Have a working knowledge of Choice Financials policies and procedures and comply with them.
• Maintain complete confidentiality with regards to customer accounts, loans, and bank relationships.
• Project a positive image of Choice Financial when representing the organization.
• Actively support management and organizational goals.
• Interact with other employees to promote teamwork, communications, trust, and respect.
• Adapt to meet the ever-changing customer and community needs.
• Performs duties outside normal scope as assigned.

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)