Security Operations Manager

Company Description

About Veolia North America

A subsidiary of Veolia Group, Veolia North America (VNA) offers a full spectrum of water, waste and energy management services, including water, and wastewater treatment, commercial and hazardous waste collection and disposal, energy consulting and resource recovery. VNA helps commercial, industrial, healthcare, higher education, and municipality customers throughout North America. Headquartered in Boston, Mass., Veolia North America has approximately 10,000 employees working at more than 350 locations across the continent. Please visit our website www.veolianorthamerica.com.

Job Description

BENEFITS

Veolia's comprehensive benefits package includes paid time off policies, as well as health, dental and vision insurance. In addition, employees are also entitled to participate in an employer sponsored 401(k) plan, to save for retirement.  Pay and benefits for employees represented by a union are outlined in their collective bargaining agreement. 

Position Purpose: 

The Security Operations Manager has high visibility and is directly accountable for the effective and efficient management of the Security Operations Center (SecOps). The SecOps Manager will manage day-to-day activities in the Global Security Operations Center and oversee, monitor, and guide the daily job performance of SecOps team.

Primary Duties/Responsibilities:

• Direct the functions, processes, and operations of the SecOps team and ensure policies and procedures are followed.
• Define & develop security standards and playbooks.
• Drive threat modeling across Cloud, Infra, Data Analytics & OT/CPS teams.
• Responsible for developing and maintaining security service catalog.
• Interprets vulnerabilities and translates them into actionable remediations.
• Coordinate with the 24×7 operations of the Managed SecOps to ensure optimal identification / resolution of security incidents and enhance client security.
• Ensure SLA compliances, process adherence, process improvement to meet operational objectives.
• Manage the collection, documentation and research of security incidents received via the SecOps.
• Providing CISO/Senior Management with a realistic overview of risks and threats in the enterprise environment.
• Develop and maintain an incident response management program that includes incident detection, analysis, containment, eradication, recovery and chain of evidence / forensic artifacts required for additional investigations.
• Ability to work directly with customers to ensure not only resolution management but also customer satisfaction.
• Creation of reports, dashboards, metrics for SecOps operations and presentation to Management.
• Manage the process improvement program for SecOps processes.
• Conduct scheduled and ad hoc training exercises to ensure staff are current with the latest threats and incident response techniques.
• Provide direction, leadership and management of SecOps personnel.
• Establish performance goals and priorities.
• Administer performance reviews for SecOps personnel.

Work Environment:

• This will be a hybrid role located in Milwaukee, WI.

Qualifications

Education/Experience/Background:

• Bachelor’s or Master’s Degree in Computer Science, Engineering, Information Security or extensive professional experience considered in place of a Bachelor's degree.
• Min of 10 years of experience of Security Operations management, incident response, SecOps with a min of 4+ years of handling Security Operation Center (SecOps).
• Good experience of SIEM concepts and hands on experience on tools such as Chronicle, CrowdStrike, Qualys.
• Expertise and experience in security operational services: unified threat management, anti-virus, SIEM, DDOS / DOS, threat and vulnerability management, cyber investigations, and cyber security forensic investigations.
• Expertise in Cloud security such as AWS, GuardDuty, CloudTrail, Lambda, GCP, GCP Cloud Audit, Cloud Security Command Center, Log Explorer, GKE Logs, Kubernetes.
• Understanding of API security: REST, SOAP, OAuth, API Keys/Tokens, API Gateway
• SaaS: SSPM, CASB

Knowledge/Skills/Abilities:

• Advanced knowledge of best practice standards and procedures regarding information systems applications security, data security, and infrastructure security.
• Strong time management and leadership skills.
• Strong automation knowledge.
• Must have excellent writing and communication skills.
• Strong knowledge of networking and security fundamentals.
• Ability to prioritize and drive to results with a high emphasis on quality.

Additional Information

We are an Equal Opportunity Employer! All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.

Disclaimer: The salary, other compensation, and benefits information is accurate as of the date of this posting. The Company reserves the right to modify this information at any time, subject to applicable law.