This job is closed
We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.
C.N.A Insurance Companies - Chicago, IL
posted 2 months ago
About the position
The AVP, Incident Response at CNA Insurance is responsible for leading the evaluation, development, implementation, and monitoring of advanced information security strategies and tools to effectively detect and respond to enterprise information security incidents. This role involves interacting with senior leadership during critical security incidents, managing security operations, and directing incident response teams. The position serves as a subject matter expert in computer security incident responses, focusing on modern fusion center operations and the evolving threat landscape.
Responsibilities
- Establish and govern the Hybrid Security Operations Center (SOC) and supporting technologies.
- Develop and manage the leadership team for managing SOC and supporting groups.
- Manage the end-to-end relationship with Managed Security Service Providers (MSSP).
- Lead and manage the Computer Security Incident Response Team (CSIRT/IR).
- Serve as the subject matter expert for all information security incident responses globally.
- Provide governance for and lead the information security response process.
- Direct the response to escalated security events and drive the security incident response process.
- Participate in and lead the Incident Response Committee.
- Partner with CNA leadership on response strategies for enterprise-wide information security incidents.
- Lead the evaluation, development, and implementation of Incident Response Plans and security standards across diverse platforms.
- Ensure proactive compliance with security standards and global regulatory compliances.
- Collaborate with Technology, Legal, and business leaders on potential data breaches.
- Provide end-to-end problem management and root cause analysis for security incidents.
- Lead post-incident debriefings to identify improvements.
- Conduct independent analysis of complex problems and threats, providing mitigation strategies.
- Communicate with CNA leadership on metrics, measures, and potential new threats.
- Develop and monitor information security strategies to protect the enterprise from threats.
Requirements
- Bachelor's Degree required or equivalent work experience.
- Master's Degree in Computer Science or a technical field preferred.
- Minimum of ten years of information security experience, including five years of management experience.
- In-depth understanding of SOC, SIEM, MSSP, DLP, and the CSIRT process.
- Proven experience with industry-standard security technologies such as NDR, IDS, EDR, and firewalls.
- Strong understanding of malware in static and dynamic environments and mitigation strategies.
- Working knowledge of regulations such as SOX, GDPR, and internal controls as they apply to IT.
- Superior analytical and problem-solving skills.
Nice-to-haves
- Preferred knowledge of the insurance industry.
- CISSP, GIAC, CISM, or equivalent certifications preferred.
Benefits
- Comprehensive and competitive benefits package to support physical, financial, emotional, and social wellbeing.
