Security Operations Manager

It's fun to work in a company where people truly BELIEVE in what they're doing!
We're committed to bringing passion and customer focus to the business.
Summary
At Simmons Bank, the Security Operations (SOC) Manager is an essential leader within the Information Security team. The SOC provides continuous security monitoring and incident response; conducts security awareness and training; and manages security threats and vulnerabilities.
The SOC Manager oversees the activity of the SOC team, including hiring, training, and performance management. The SOC Manager also maintains strong operational procedures; assesses escalated security events; and develops, implements and tests incident response plans. Additional responsibilities include creating compliance reports, supporting the Bank's audit process, measuring SOC performance metrics, and reporting on SOC activities to business leaders.
Essential Duties and Responsibilities
Security Operations

• Lead and manage the Security Operations Center (SOC)
• Direct a team of SOC analysts, delegating tasks as required to support the Bank's daily cyber security detection and response activities
• Develop and maintain processes to strengthen SOC detection, prevention, and response
• Develop use cases and content for security event monitoring

Incident Response

• Develops, implements and tests incident response plans with business partners
• Manage the incident response process serving as Incident Commander for declared cybersecurity incidents
• Serves as quality control and security liaison for legal collections

Security Education

• Maintain relevant security training content and manage awareness program
• Manage security awareness simulations
• Provide guidance, education, and content to other departments and business units on cyber related matters as well as communicating capabilities of the SOC team

Threat and Vulnerability Management

• Lead and manage the vulnerability management process
• Research new trends and advances in cybersecurity to stay updated on potential threats and best practices
• Advises Bank leadership for any potential changes in security posture
• Recommends and directs changes in automated tools supporting the monitoring and threat landscape

Administrative

• Develop written standards for respective areas and contributes to the overall Information Security Policy and Program
• Responds to audit, compliance, and regulatory requests, as needed (e.g. SOX audit)
• Participate in quarterly business reviews with vendors and internal customers
• Manage staffing, including supervision, scheduling, development, evaluation, and disciplinary actions
• Develop and maintain an environment of growth where knowledge and performance are consistently advancing
• Develop and mentor staff through open communication and training opportunities; build and maintain employee morale and motivation

Qualifications
Education and/or Experience

• Three (3) to five (5) years of experience in information security or cybersecurity
• Bachelor's or Master's degree in a related field (preferred)
• Experience supervising and leading other Security Operations personnel
• Experience with vulnerability management process, scanning tools, risk analysis and metrics reporting
• Experience investigating intrusions in a cloud/hybrid environment
• Experience with SIEM and/or log aggregation technologies, writing queries to support investigations and threat hunts
• Experience with security tool integrations (APIs) and automating processes with scripting and SOAR (preferred)
• Experience leading incident response activities at an appropriate level in prior roles

Certifications

• CISSP, CISM, GCIH, GSOC or other security related certifications (preferred)

Other Qualifications (including physical requirements)

• Proficient with the MITRE attack framework and common threat vectors
• Proficient with security of Windows operating systems
• Strong oral and written communication skills
• Strong organizational, problem solving, and planning skills with the ability to set priorities

• Must possess excellent telephone and customer service skills
• Must be willing to periodically work non-standard hours and be on call

Equal Employment Opportunity Information: Simmons First National Corporation and its subsidiaries are committed to a policy of equal employment with respect to a person's race, color, religion, sex, ancestry, sexual orientation, gender identity, national origin, covered veterans, military status, physical or mental disability or any other legally protected classifications. Simmons First National Corporation and its subsidiaries are committed to Affirmative Action Programs consisting of results-oriented procedures to ensure equal employment opportunities. These programs require positive action in lieu of neutral non-discrimination and merit hiring/performance policies.