SR. MANAGER – INFORMATION SECURITY OPERATIONS (THIS POSITION IS REMOTE)

  • Tracking Code:186672
  • Job Location:Chicago, IL
  • Country:United States

Job Description

Tenneco is one of the world’s leading designers, manufacturers and marketers of automotive products for original equipment and aftermarket customers, with 2019 revenues of $17.5 billion and approximately 78,000 team members working at more than 300 sites worldwide.

Tenneco is looking for a Manager – Information Security Operations. This role will report to the Director of Information Security Operations and will provide department leadership as an Information Security technical subject matter expert. As a Manager in the Information Security team, you will be shaping the direction for protection of a leading global components and systems manufacturer for the automotive industry. This individual requires a validated track record of a hands-on approach to conducting enterprise defense. As a member of the Security team you will be helping us protect our business across 150 global sites.

The team is ready to act immediately on those candidates who are the best fit for the role. You’ll first hear from someone in Talent Acquisition to schedule a phone screen, and then the next step will be a personal interview with our Hiring Manager. We pride ourselves on moving through processes quickly, and you can be sure of transparency and prompt communication throughout.

RESPONSIBILITIES:

  • Manages response to global security incidents including coordination and leadership during security incident and malware outbreaks.
  • Implement and manage follow the sun model with global stakeholders.
  • Responsible for the implementation and support of technical, process, and reporting elements of the security monitoring and incident programs
  • Manages analysis and reports of operational security key performance and risk metrics to drive program improvements.
  • Provides in-depth technical direction and support to managed security service providers; proactively identifies, tracks, and mitigates risk to IT systems and operations.
  • Monitors and documents indicators of compromise (IOCs) related to advanced, targeted attackers.
  • Develops and maintains security-related monitoring and logging procedures across infrastructure, applications and databases globally for the company.
  • Guide the Vulnerability Management Plan to facilitate, monitor, and support the remediation and reporting activities of the VM program.
  • Understands business priorities and focuses efforts towards aligning services to business requirements.
  • Troubleshoots complex issues with existing security and privacy protection standards.
  • Recommends and implements threat countermeasures and controls
  • Recommends and implements improvements to security services.
  • Develops partnerships with other business and IT functions involved in security and privacy matters.
  • Develops relationships with security vendors and external security experts.
  • Provides Information Security expertise and guidance to internal and external IT project team and IT.
  • Coordinates with environment owners for investigation and remediation of monitoring alerts.
  • Monitors and documents indicators of compromise (IOCs) related to advanced, targeted attackers.
  • Meets regularly with subject matter experts both internal and external to the Security team to discuss relevant threats and their effect on the analysis of vulnerability criticality and prioritization.
  • Analyzes threat intelligence information to identify patterns and root causes to provide decision support for the organization.

Required Experience

EDUCATION: Bachelors’ Degree in Information Technology related field or commensurate experience.

SKILLS & EXPERIENCE:

  • 5+ years of working level experience securing IT systems.
  • 3+ years of experience in a security incident or related role with experience in delivering operational process improvements.
  • 3+ years of experience managing a team of security professionals.
  • Certified Information Systems Security Professional (CISSP) or equivalent preferred.
  • Certified Incident Handler (GCIH) certification or equivalent preferred.
  • Experience in assessing and mitigating risk.
  • Experience in a large-scale global IT enterprise environment.
  • Experience with administration and management of Windows, Linux, UNIX, or mobile operating systems.
  • Identifying, capturing, containing, and reporting malware.
  • Knowledge of incident categories, incident responses, and timelines for responses.
  • Knowledge of incident response and handling methodologies.
  • Knowledge of system and application cyber security threats and vulnerabilities
  • Preserving evidence integrity according to standard operating procedures or national standards.
  • Knowledge of security event correlation tools.
  • Ability to effectively prioritize multiple objectives and manage through a fast-paced, changing environment.
  • Highly collaborative with the ability to influence and drive behavior across the organization with other teams
  • Analytical problem-solving capabilities and strong decision-making skill
  • Ability to effectively communicate verbally and in writing with individuals across all levels the organization.
  • Knowledge and experience working across a geographically and culturally diverse organization.
  • Proficient in use of office productivity software.
  • Ability to adjust to changing priorities while multitasking effectively.
  • Ability to design, evaluate and document processes and lead teams in accomplishing process review and improvement.

An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

More Information

Apply for this job

Leave your thoughts

Share this job