Team Manager, Cybersecurity

Description:

This role reports to the Manager, Information Security and Risk.

The Cybersecurity Team Manager supports the risk mitigation efforts of Fidelity’s Cyber Defense Operations (CDO) under the Information Security and Technology Risk group to safeguard and protect our information assets and critical data from current and emerging Cyber threats. The Cybersecurity Team Manager will apply their Cybersecurity skills and knowledge in the day-to-day management of CDO, including but not limited to, team management, reporting, executing Cyber management processes to respond to incidents, maintenance of various security tools and technologies such as advanced malware detection, DDoS, IDS/IPS, DLP, Anti-spam as well as other Cyber. The ideal candidate has experience using a wide range of technologies to respond to Cybersecurity events.

How You'll Make an Impact:

Ensure computing platform compliance with Cybersecurity policies and directives:

• Use provided tools to perform continuous monitoring and analysis of system activity to identify malicious activity and configure mitigations.
• Coordinate with other departments to manage and administer the updating of rules and signatures across the information security stack (e.g. intrusion detection/protection systems, anti-virus, and content blacklists).
• Identify and recommend actions to address vulnerabilities in the computing environment or inconsistencies in existing security processes.
• Meets departmental SLAs & and targets relating to CDO functions.
• Meet compliance requirements and deadlines on Patching/Upgrades, Anti-virus/Anti-spyware, data loss protection events, vulnerability scanning etc.

Lead Red and Blue Team exercises:

• Conduct research, trend analysis, correlation, and reporting across a wide variety of internal and external source data sets (e.g., network, OS, DB, and application logs and alerts).
• Provide timely detection, identification, and alerts of possible attacks/intrusions, anomalous activities, and misuse activities, and distinguish these incidents and events from benign activities.
• Participate in projects, reviews, and meetings, and provide guidance and feedback on security policies and issues.
• Maintain and support risk-based (NIST) framework data and templates to accurately score applications and systems.
• Implement and support compliance directives based on risk scores (NIST).