Director, Security Incident Management

Job Description

Director, Security Incident Management (Remote)

Work Locations: With the exception of some select roles that have in-office requirements, A+E Networks operates on a flexible model that allows for remote, hybrid or full time in office work (in certain locales).
Office locations include New York City, Los Angeles, Chicago, and Stamford, CT.
Our list of eligible states in which employees may work remotely includes: California, Connecticut, Florida, Georgia, Illinois, Indiana, Maryland, Massachusetts, Michigan, Minnesota, Nevada, New Hampshire, New Jersey, New York, North Carolina, Oregon, South Carolina, South Dakota, Texas, West Virginia, Wisconsin, and Wyoming.

Division Story
Named in honor of our leader's favorite car, GTO comprises a wide range of operations, production and technology roles. We are responsible for the whole value chain of content. This is where we produce, broadcast and distribute content, manage media assets and run the tech infrastructure for the whole company. We live on the forefront of technology, nurturing new solutions in tech incubators before improving the user experience of our customers, consumers and colleagues. Interested in Big Data? AR? VR? Or another emerging technology. If your idea helps grow our business, we are eager to work with you to test and learn. Join us as we set the standard for our industry.

Job Description

Reporting to the Vice President of Cyber Security, the Director of Security Incident Management will be responsible for constructing and leading the vision of the Security Incident Management functions across all A+E technology groups (Enterprise, Consumer, and Broadcast) and liaising with legal groups and trusted external partners in the event of a system or data breach. The position oversees the development and implementation of security operations center processes and procedures and owns the maintenance and improvements of security technologies related to breach preparedness, incident response, and systems recovery. The position is also the designated incident commander when the security incident response plan is activated. This is a leadership role that requires a strong technical background in security incident management, log analysis, tool implementations, and systems hardening, to lead and guide a team of security analysts. The position will also coordinate with key members of the Engineering, TechOps, DevOps, and Service Management organizations to ensure processes are complimentary, systems meet our security standards, and incident response planning and readiness is done in unison.

MORE ABOUT WHAT YOU'LL DO: Director of Security Incident Management
• Create and lead the security incident response processes and procedures across the three technology pillars: enterprise systems, digital product, and broadcast operations.
• Manage a technical team of security analysts and engineers dedicated to security operations and incident response.
• Manage our Security Services Provider (MSSP) and improve the level one and two monitoring, alerting, and triage capabilities, including playbook development and handoffs to A+E personnel.
• Lead SecOps enhancement initiatives to improve the use of tools like our SIEM, endpoint, web, and email security technologies.
• Coordinate with external parties for breach-preparedness exercises and threat intelligence gathering.
• Creating metrics and maturity measurements for the Security Operations Center and internal incident management functions and reporting them to Security Governance and Technology leadership on a regular basis.
• Assist and coordinate with other security functions like vulnerability management, security engineering, and identity management to enhance our incident detection and response capabilities.
• Liaising with the Project Management, Architecture, and Engineering teams to ensure that security operations and incident management needs are incorporated into all new system builds and deployments.

YOUR STORY: [+BEHAVIORS] (what you need to have) Director of Security Incident Management
• 10 or more years of technology experience with 2 years spent performing hands on incident response or other security operations functions.
• 2 or more years managing technical staff.
• BS degree in a technical field such as CS or IT, or equivalent combination of education and work experience.
• Experience creating policies and procedures for security operations, incident management, and breach preparedness.
• Strong technical understanding of threat hunting and incident response, with time spent performing log analysis and coordinating remediation activities.
• Understanding of traditional SecOps tools like SIEM, EPP/EDR, SWG, and others, with the ability to make configuration and policy decisions.
• Understanding of modern environments like AWS, M365, SaaS platforms, and the implications on security incident management.
• Experience with vulnerability management tools and coordinating and reporting on remediation activities.
• Experience managing vendor relationships. Any time spent working with legal to execute contracts and SOWs is helpful but not required.
• Excellent leadership, communication, interpersonal interactions, and problem-solving skills.
• Excellent organizational skills and an aptitude focused on process and workflow improvement and efficiency.
• Must be able to work well in a team environment and maintain strong relationships with internal and external partners and suppliers.

Compensation

Annual Pay Range: $160,376 - $203,342

Annual Incentive Target: 17.50%
*The annual/hourly pay range displayed serves as a good faith estimate of the

minimum and maximum base pay range for this role. Compensation for the role will

be based on a number of different factors such as a candidate's qualifications, skills,

competencies, location, and experience. A+E offers a competitive total compensation

package, which includes healthcare coverage, 401k matching, and a range of other benefits. Learn more at aenetworks.com/careers.

A+E Networks is proud to uphold an equal opportunity employment policy and employs personnel without regard to race, creed, color, ethnicity, national origin, religion, sex, sexual orientation, gender expression, age, physical or mental ability, veteran status, military obligations, and marital status. This policy also applies to all employees, consultants, and third-party workers.
A+E Networks, LLC. is a joint venture of Disney-ABC Television Group and Hearst Corporation.
We are proud to be an Affirmative Action/Equal Opportunity Employer/Disabled/Veterans.

Jobcode: Reference SBJ-g30qy9-3-138-175-180-42 in your application.