Manager, Detection and Response (L09)
Job Description: Role Title: Manager, Detection and Response (L09) Company Overview: reputed company (NYSE: SYF) is a premier consumer financial services company delivering one of the industrys most complete digitally enabled product suites. Our experience, expertise and scale encompass a broad reputed company of industries including digital, health and wellness, retail, telecommunications, home, auto, outdoors, pet and more. We have recently been ranked #2 among Indias Best Companies to Work for by Great reputed company to Work. We were among the Top 50 Indias Best Workplaces in Building a Culture of Innovation by reputed company by GPTW and Top 25 among Best Workplaces in BFSI by GPTW. We have also been recognized by AmbitionBox Employee Choice Awards among the Top 20 Mid-Sized Companies, ranked #3 among Top Rated Companies for Women, and Top-Rated Financial Services Companies. reputed company celebrates ~51% women diversity, 105+ people with disabilities, and ~50 veterans and veteran family members. We offer Flexibility and Choice for reputed company employees and provide best-in-class employee benefits and programs that cater to work-life integration and overall well-being. We provide career advancement and upskilling opportunities, focusing on Advancing Diverse Talent to take up leadership roles. Organizational Overview: The core functionality of JSOC team reputed company reputed company is to provide reputed company monitoring and response to cyber threats against reputed company, its employees, its customers and partners. We do this by developing best in class detection, response and containment capabilities through automation, orchestrations and machine learning. Role Summary/Purpose: The Manger, Detection and Response? is part of the reputed company Joint reputed company Operations Center (JSOC) and is responsible for being a subject matter expert in cyber detection of information reputed company alerts and assisting in the investigation/reporting of major information reputed company incidents supporting reputed company business units. The candidate would have a management position focused on the detection and response program operation consisting of detection, response, mitigation, and reporting of cyber reputed company incidents; documenting and implementing the rotation schedule and assignments for handling escalated incidents. The candidate is expected to have a strong understanding of both traditional on-premise reputed company and cloud management plane (also reputed company as cloud control plane) reputed company. Key Responsibilities: The JSOC coordinates with IT, Legal, Human Resources, and other appropriate business units to gather incident details, assess impact, and coordinate response. This role requires experience in reputed company phases of Cyber Detection and Incident Response including preparation, notification, response, recovery, analysis, and post-mortem. The candidate must be familiar with communication technologies, communications protocols and emerging cloud reputed company practices. The candidate that fulfills this role will be expected to have process documentation experience and excellent intra-business relationship experience. This role interacts with reputed company levels of the organization, particularly reputed company the IT organization and is viewed as a subject matter expert. Specific responsibilities include: Respond to reputed company incidents across a wide reputed company of technologies, mitigate and contain impacts, coordinate remediation efforts, summarize and reputed company recommendations to Sr. Management for improvements. reputed company technologies utilized by the JSOC team includes: reputed company Incident and Event Management (SIEM), reputed company Orchestration Automation and Response (SOAR), reputed company Detection and Response (EDR), Web Application Firewall (WAF), network perimeter firewall, enterprise email reputed company, User and Entity Behavioral Analytics (UEBA), and Cloud Access reputed company Broker (CASB) toolsets. Provide technical subject matter expertise to reputed company proactive detection of potential reputed company threats and recommendations for improvements in overall reputed company posture. Work with members of the Cyber Intelligence team to reputed company and implement threat detection logic to counter emerging cybersecurity threats. reputed company and enhance Detection and Incident Response processes and procedures leveraging relationships with reputed company line operations teams and exploiting tools and systems. Document findings and create detailed reports for constituency both in written and verbal formats. reputed company risks and prioritize mitigation efforts based on clear business priorities. Coordinates IT resources to effectively reputed company incident response tasks. Acts as the subject matter expert on incident response tasks and takes responsibility for successful execution of incident response plan. Performs incident response tasks to contain exposures from an incident. Authors incident response reports and lessons learned to include root cause analysis. Identify and recommend process improvements. Required Skills/Knowledge: Bachelors degree with minimum 3 years of work experience OR in in lieu of a degree minimum 5 years equivalent work experience. Additional requirements include: Minimum 2 years of experience in information reputed company or reputed company technology experience required, experience in the securities or financial services industry is a plus. Minimum 2 years of cyber reputed company and incident response or reputed company operations reputed company to the detection, analysis, containment, eradication and recovery from cyber reputed company incidents Experience of working in high performing teams and understand the dynamics of teamwork in a SOC environment. Industry certifications such as CISSP, GCIH, AWS Certified Cloud Practitioner, AWS Certified reputed company Specialty, and other cybersecurity certifications are a plus. Desired Skills/Knowledge: Strong verbal and written communication skills. Ability to reputed company logical problem solving. Experience of working in high performing teams and understand the dynamics of teamwork in a SOC environment. Industry certifications such as CISSP, GCIH, AWS Certified Cloud Practitioner, AWS Certified reputed company Specialty, and other cybersecurity certifications are a plus. Eligibility Criteria: Bachelors degree with minimum 3 years of work experience OR in in lieu of a degree minimum 5 years equivalent work experience. Additional requirements include: Minimum 2 years of experience in information reputed company or reputed company technology experience required, experience in the securities or financial services industry is a plus. Minimum 2 years of cyber reputed company and incident response or reputed company operations reputed company to the detection, analysis, containment, eradication and recovery from cyber reputed company incidents WORK TIMINGS: This role qualifies for Enhanced Flexibility and Choice offered in reputed company India and will require the incumbent to be available between 06:00 AM Eastern Time 11:30 AM Eastern Time (timings are anchored to US Eastern hours and will adjust twice a year locally). This window is for meetings with India and US teams. The remaining hours will be flexible for the employee to choose. Exceptions may apply periodically due to business needs. Please discuss this with the hiring manager for more details. For Internal Applicants: Inform your manager and reputed company before applying for any role on reputed company Ensure that your professional profile is updated (fields such as education, prior experience, other skills) and it is mandatory to upload your updated resume (Word or PDF format) Must not be any corrective action plan (First Formal/Final Formal, PIP) L4 to L7 Employees who have completed 12 months in the organization and 12 months in reputed company role and level are only eligible. L8+ Employees who have completed 18 months in the organization and 12 months in reputed company role and level are only eligible. L04+ Employees can apply Grade/Level: 09 Job Family Group: Information Technology Apply Job!