Cyber Security Operations Lead- Direct Hire [Remote] - Braintrust New York City, New York, United States Bookmark Share Print 95 0 3

Listing Description

  • JOB TYPE: Direct Hire/FTE (no agencies/C2C - see notes below)

  • LOCATION: United States only - PST/PDT/CIST, CST/CDT, MST/MDT, EST/EDT | Full day overlap

  • RATE: $150k-$160k /yr

  • ESTIMATED DURATION: 40/week - long term


The Opportunity


Our client's commitment to data security and privacy is at the forefront of everything we do. To help us protect our company and our customers’ data security and privacy, we’re looking for a strong Cyber Security Operations Lead. This role will report to the CISO and will lead threat intelligence, cyber security Incident response team (CSIRT), cyber security operations center (CSOC), and red team operations. 

Responsibilities for this role

  • Lead effective security operations with threat intelligence, CSIRT, CSOC, and red team operations.

  • Provide monthly security metrics to senior management.

  • Develop incident response plans to include ransomware response and ransomware communication plans.

  • Write annual plans and manage security operations budget for security operations teams.

  • Plan and build additional security capabilities in the security operations team.

  • Plan and execute monthly and quarterly incident response training exercises.

  • Help build best in security operations to be showcased to clients.

  • Lead, mentor and build developmental growth for security operations team members.


What you’ll be working on

Required skills and qualifications

  • 5+ years of security operations leadership experience to include major incident response commander or watch commander experience, and ransomware incident response commander experience.

  • CISSP, CISM, CCSP, CISAI security certifications (at least two of these).

  • Ability to build and lead a high-performance security operations team from the ground up.

  • Competent with scripting languages (e.g., Python, Ruby, PowerShell, Bash)

  • Competent with Security Information Event Management (SIEM) platforms such as Splunk Enterprise and Splunk Search Processing Language (SPL), and Azure Sentinel and Kusto Query language for executing search queries.

  • Competent in Azure Sentinel SIEM and SOAR operations.

  • Competent with incident response frameworks from MITRE, NIST, and SANS.

  • Project management experience in deploying security controls to Developer, User Acceptance Testing(UAT), and Production, and Disaster Recovery operating environments.

Preferred skills and qualifications

  • Bachelor of science degree (or equivalent) in computer science, engineering, technology, or relevant field.

  • Prior security operations team lead experience working in banking, financial services, or mortgage companies.



Listing Details

  • Citizenship: Not Provided
  • Incentives: Not Provided


  • Education: Not Provided
  • Travel: Not Provided
  • Telework: Not Provided

About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765