Security Delivery Manager

Security Delivery Manager

JOB ROLE SUMMARY

Acts as an overlay to Ensono Managed Security Services and works with the Client across a wide variety of Ensono Managed security functions to advise, analyze, and resolve Security related issues and incidents as well as provides guidance across a gamut of Ensono provided Security solutions and technologies.

DUTIES AND RESPONSIBILITIES

The responsibilities for the Service Delivery management are

• Advise and contribute to a list of Client security priorities of in-scope Ensono services. Maintain it monthly.
• Investigate security events within scope of the Ensono managed client environment.
• Coordinate management and support of security incidents, within scope of the Ensono managed Client environment, with Ensono Incident Response Team and Client team.
• Provide status reporting of for security events within scope of the Ensono managed Client environment and status of any remediation actions.
• Analyze, if available, vulnerability scan and/or penetration testing findings within scope of the Ensono managed Client environment and create and maintain an ongoing list of categorized vulnerabilities (Critical, High, Medium, Low). Client must purchase Ensono’s Vulnerability Management Service for any remediation of vulnerabilities.
• Contribute and help develop a remediation plan or vulnerability exception for medium and above external Internet-facing vulnerabilities.
• Collect and present Client with monthly performance and risk indicator (KPI/KRI) metrics within scope of the Ensono managed Client environment.
• Review risk assessments of the Ensono managed environment and coordinate development of a remediation plan for the most critical risks in alignment with Client standards.
• Advocate for Client security policies and standards that Ensono is required to comply with.
• Collaborate to document Ensono’s role in Client’s Incident Response plans
• Monitor trends and make recommendations to anticipate the future impact of cyber risk to the environment managed by Ensono for the Client
• Conduct regular security evaluations of Ensono managed environment and provide Client with recommendations that will elevate security maturity and streamline compliance
• Ensono shall cooperate and support Client audit and compliance requirements related to the Ensono managed environment – Provide response to audit related evidence requests and maintain a list, track status and report Ensono relevant items to be remediated
• Act as a subject matter expert (SME) between Client cybersecurity team and the appropriate Ensono lines of business.

• Provide resource requirements, objectives, and direction for appropriate Ensono resourcing.
• Support task handoff and continued execution of daily activities and to assist on security initiatives related to the security services that Ensono provides.

• Contribute to and help prioritize Client security priorities and security roadmap of in-scope Ensono services.
• Response to audit-related evidence requests and maintain a list of Ensono relevant items to be remediated. Report status monthly to Client and Ensono management.
• Status report of Client security events/incidents related to scope of the Ensono managed Client environment.
• Monthly security performance and risk indicator (KPI/KRI) metrics for scope of the Ensono managed Client environment
• Recommendations that will elevate security maturity and streamline compliance.

SUPERVISORY RESPONSIBILITIES

This position does not have direct reports but may mentor less experienced associates in the role.

RECRUITING INFORMATION

Specific hiring needs may vary by location, industry, client, internal department and other business related factors. The qualifications section lists examples that may be used as guidance when populating required and preferred skills sections of recruiting requisitions / job postings.

QUALIFICATIONS

Required

Requires a minimum of 8 years of related security delivery management and offshore experience with a Bachelor’s degree,; or equivalent work experience

Preferred

Advanced knowledge of security operations, incident analysis, incident handling, and vulnerability management or testing, system patching, log analysis, intrusion detection, or firewall administration. Preferred (Including but not limited to the following technologies):

Technologies includes:

• CyberArk
• CyberArk EPM
• InfoBlox
• Alert Logic
• Okta, MS Authenticator, FortiToken
• zScaler
• Trend Cloud One & Apex
• Trend Deep Security
• Trend CAS
• Mircrosoft 365 DLP
• Cisco Fire Eye
• Fortinet4
• f5 Silverline, FortiWeb FortiWAF
• Venafi
• Sailpoint/IdentityNow/StealthAUDIT
• LogRhythm
• Qualys