onsemi (Nasdaq: ON) is driving disruptive innovations to help build a better future. With a focus on automotive and industrial end-markets, the company is accelerating change in megatrends such as vehicle electrification and safety, sustainable energy grids, industrial automation, and 5G and cloud infrastructure. With a highly differentiated and innovative product portfolio, onsemi creates intelligent power and sensing technologies that solve the world’s most complex challenges and leads the way in creating a safer, cleaner, and smarter world.
You’ll have an opportunity to work with a growing, advancing information security team focused on protecting critical information assets while enabling business internationally. Additionally, you will join a small team of high-performance professionals that interact with leaders inside and outside of IT. We are looking for a driven, dedicated individual to help us execute our security strategy and goals.
DEPARTMENT: Information Technology (IT) JOB GROUP: Section Manager
We are looking to hire a Cybersecurity Operations Manager for the Enterprise Cybersecurity Services team who will be responsible for leading and managing the efforts to integrate, implement, and maintain the organizations cybersecurity infrastructure and operationalize the cybersecurity requirements and goals of the organization.
DESCRIPTION:
Provide technical and operational oversight for cybersecurity tool deployment and implementation.
Continuously monitor levels of service of the SOC as well as interpret and prioritize overall threat levels through the use of metrics from the analysis of threat and vulnerability, monitoring and alerting systems, and other boundary protection and cybersecurity devices as well as any other cybersecurity incident management products deployed to protect the confidentiality, integrity, and availability of resources.
Recognize potential, successful, and unsuccessful intrusion attempts and compromises thorough review and analyses of relevant SOC reporting, event detail and summary information.
Must provide oversight for incident management and response, cybersecurity investigations and forensics, vulnerability management, remediation assistance, intelligence gathering and dissemination, threat scenario modeling, impact assessments, and cybersecurity exercise preparedness.
Ensure the integrity and protection of networks, systems, and applications by technical enforcement of organizational cybersecurity policies.
Monitor and proactively mitigate information cybersecurity risks and adjust posture as needed to continually strengthen the fidelity of attack detection.
Provide briefings at various levels of management regarding ongoing cybersecurity incidents and operational metrics.
Establish reporting and information sharing relationships with governing and partner organizations, and other appropriate external agencies and organizations for the purpose of tracking threats or sharing common cybersecurity incidents.
Develop and maintain processes and procedures used to manage operations and incident response process and a root cause continuous improvement program.
Develop and maintain reporting metrics and mechanisms used to execute and measure SOC activities.
Maintain and enhance the cybersecurity roadmap used to provide technical, personnel and procedural growth and the implementation of new tools and techniques.
Develop papers, briefings and technical marketing materials designed to show the value of the cybersecurity operations and the individual tools deployed in the organization.
Provide executive level briefings regarding status of the SOC implementation, effectiveness of cybersecurity tools and infrastructure, areas of concerns, ongoing project status and cost benefit analysis for the use of the SOC and the cost avoidance of detected and mitigated cybersecurity incidents. Work within a 24/7 shift-scheduled cybersecurity operations environment.
Responsibilities
RESPONSIBILITIES
This role is responsible for the visibility of organizational cybersecurity controls to protect the global environment and all cybersecurity technology data outputs that terminate in the global cybersecurity operations center. They must effectively ensure operational control or “watch” of the IT/OT environment, developing and integrating all cybersecurity processes, and threat intelligence services. This includes formalization and ownership of global SOC capabilities and responding to all cybersecurity incidents. This role is responsible for the successful operations and expertise of all cybersecurity technologies and establishing escalation processes for those selected cybersecurity incidents that have been deemed critical.
This role will also manage penetration and vulnerability testing activities and will ensure the Cybersecurity Engineering teams work together with the Cybersecurity Architecture teams to provide feedback on the “health” of the enterprise cybersecurity baseline based on those tests. This is a heavily metrics-driven operations role that provides a critical data and reporting foundation as direct inputs to the overall risk management function. This role will influence and drive the overall enterprise cybersecurity operations/services strategy.
The ideal candidate has a proven history in enterprise cybersecurity operations managing technical staff. The global SOC manager will have strong level of technical depth in information and cybersecurity and is focused on driving metrics-driven results. The ideal candidate is output driven and able to leverage multiple forms of communication to articulate complex concepts with proficiency to both technical contributors and executive management.
Qualifications
Requirements:
Years of experience:
A minimum of 7 to 10 years of SOC management experience.
A minimum of 5 years of team management experience.
A minimum of 5 years of experience within a multinational/global organization.
Education:
Bachelor’s degree in a technical engineering or IT related field or equivalent experience required.
Cybersecurity Certifications like CISSP, SANS is preferred.
Functional/Technical Knowledge/Skills:
Strong analytical and creative problem-solving skills
Familiarity with operating enterprise security technologies and establishing enterprise security processes.
Experience with advanced threat management.
Experience with cloud, mobile, SIEM, XDR, and open-source security technologies.
Familiarity and experience standards frameworks ISO27001, NIST 800-53, NIST 800-171, ITIL, and so on.
Development of detailed metrics and reporting for executive management.
Experience in security operations within a 24×7 environment.
Strong knowledge of information security principles and industry best practices.
Experience with computer forensics
Experience in offensive cybersecurity and threat hunting principles is required.
Incident response and handling experience required.
Background in the following domains: security products and technologies; security engineering, networking protocols, cloud security management; security analysis and investigations.
Soft skills:
Proven examples of SOC transformation and automation of processes resulting in resource, time and cost reduction.
Effective at building and maintaining relationships with key SOC program stakeholders.
Effective communication at all levels and ability to influence senior leaders.
Must possess excellent written visualization and verbal communication skills.
Positive and proactive, inspiring teams to attain goals and pursue excellence.
Ability to work under pressure and conflicting objectives.
Experienced in negotiating.
About Us
onsemi (Nasdaq: ON) is driving disruptive innovations to help build a better future. With a focus on automotive and industrial end-markets, the company is accelerating change in megatrends such as vehicle electrification and safety, sustainable energy grids, industrial automation, and 5G and cloud infrastructure. With a highly differentiated and innovative product portfolio, onsemi creates intelligent power and sensing technologies that solve the world’s most complex challenges and leads the way in creating a safer, cleaner, and smarter world.
More details about our company benefits can be found here:
We are committed to sourcing, attracting, and hiring high-performance innovators, while providing all candidates a positive recruitment experience that builds our brand as a great place to work.
onsemi is an Equal Opportunity and Affirmative Action employer. The Company maintains policies and practices that are designed to prevent discrimination or harassment against any qualified applicant or employee to the extent prohibited by federal, state and local laws and regulations. By way of example, discrimination on the basis of race (actual or perceived), ethnicity, color, religion, ancestry, national origin, citizenship, sex, age, marital status, sexual orientation, physical or mental disability, medical condition, genetic information, military or veteran status, gender identity, gender expression, or any other characteristic protected by applicable law is prohibited.
If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process, or are limited in the ability or unable to access or use this online application process and need an alternative method for applying, you may contact Talent.acquisition@onsemi.com for assistance.
Seniority level
Not Applicable
Employment type
Full-time
Job function
Business Development and Sales
Industries
Semiconductor Manufacturing
Referrals increase your chances of interviewing at onsemi by 2x