Cybersecurity Operations Services Manager

Cabot - Boston, MA

posted 5 months ago

Full-time - Mid Level
Boston, MA
Chemical Manufacturing

About the position

The Cybersecurity Operations Manager at Cabot will play a pivotal role in overseeing the engagement with our Managed Security Services Provider (MSSP), Managed Service Provider (MSP), and cybersecurity tools. This position is responsible for managing relationships with all suppliers, ensuring the delivery of high-quality services, and aligning cybersecurity initiatives with the organization's strategic goals. As part of the Digital Security team, the manager will oversee the development and execution of the technology roadmap to enhance our cybersecurity capabilities and infrastructure. This is a global role that reports to the Director of Digital Security. In terms of MSSP and MSP management, the Cybersecurity Operations Manager will collaborate with these providers to ensure that service level agreements (SLAs), performance metrics, and deliverables are met. The manager will review and assess vendor reports, incident response activities, and ongoing security monitoring to maintain visibility into the cybersecurity posture. Additionally, the role involves managing the Digital Security Incident Response program, which includes communication and coordination with the MSSP, MSP, and Service Delivery during incidents. Monitoring vendor performance and providing feedback on areas of improvement, efficiency, and cost-effectiveness will also be key responsibilities. Regular vendor performance reviews will be conducted to identify opportunities for service enhancement and optimization, and the manager will act as the primary point of contact for escalations and issue resolution with the MSSP and MSP. The role also encompasses the development and maintenance of a comprehensive tool and technology roadmap aimed at enhancing cybersecurity capabilities and infrastructure. The manager will identify and evaluate cybersecurity tools and solutions that align with the organization's needs and objectives, collaborating with Digital teams and the MSP to prioritize technology implementation and integration efforts. Ensuring that all tools and technologies are deployed, configured, and managed effectively to support the organization's cybersecurity objectives is crucial. Staying updated on emerging cybersecurity trends, threats, and technologies will ensure that the roadmap remains current and effective, while overseeing cybersecurity projects to ensure they meet established budgets, objectives, and expectations. Finally, the Cybersecurity Operations Manager will work closely with cybersecurity leadership and fellow team members to align cybersecurity strategies with overall business goals and risk tolerance. Participation in strategic planning sessions and contributing cybersecurity expertise to support decision-making processes will be essential, along with providing regular updates and reports on the cyber domain, progress, and risks.

Responsibilities

  • Collaborate with the MSSP and MSP to ensure service level agreements (SLAs), performance metrics, and deliverables are met.
  • Review and assess vendor reports, incident response activities, and ongoing security monitoring to maintain visibility into the cybersecurity posture.
  • Manage the Digital Security Incident Response program including communication and coordination with the MSSP, MSP, and Service Delivery during incidents.
  • Monitor vendor performance and provide feedback on areas of improvement, efficiency, and cost-effectiveness.
  • Conduct regular vendor performance reviews and identify opportunities for service enhancement and optimization.
  • Act as the primary point of contact for escalations and issue resolution with the MSSP and MSP.
  • Develop and maintain a comprehensive tool and technology roadmap to enhance cybersecurity capabilities and infrastructure.
  • Identify and evaluate cybersecurity tools and solutions that align with the organization's needs and objectives.
  • Collaborate with Digital teams and MSP to prioritize technology implementation and integration efforts.
  • Ensure that all tools and technologies are deployed, configured, and managed effectively to support the organization's cybersecurity objectives.
  • Stay updated on emerging cybersecurity trends, threats, and technologies to ensure the roadmap remains current and effective.
  • Oversee cybersecurity projects to ensure that they meet established budgets, objectives, and expectations.
  • Work closely with cybersecurity leadership and fellow team members to align cybersecurity strategies with overall business goals and risk tolerance.
  • Participate in strategic planning sessions and contribute cybersecurity expertise to support decision-making processes.
  • Provide regular updates and reports on the cyber domain, progress, and risks.

Requirements

  • Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path.
  • 5+ years in managing relationships with MSSP and MSPs in a cybersecurity context.
  • 5+ years experience with common information security management frameworks such as NIST, ISO 27001, SOX, GDPR, CCPA, TISAX.
  • A track record of successfully implementing and managing cybersecurity initiatives through full deployment.
  • Familiarity with a wide range of cybersecurity technologies, including SIEM, endpoint protections, firewalls, intrusion detection/prevention systems (IDS/IPS), etc.
  • Knowledge of relevant IT Security related hardware, software, and vendor solutions.
  • Knowledge of and experience with service levels - MTTR & MTBF metrics for core services and infrastructure.
  • Project management skills including planning and scheduling, risk assessment, and managing to a schedule.
  • Strong collaboration, teamwork, and relationship building skills across multiple levels and functions in the organization.
  • Ability to lead change using positive and collaborative methods.
  • Skilled at conflict resolution and problem-solving to achieve win-win outcomes.
  • Strong communication skills in writing, speaking, and presenting with the ability to communicate technical or complex subject matter in business terms.
  • Highly self-motivated; accepts ownership and welcomes responsibility.
  • Well versed with incident avoidance strategy, leverage automation tools, root cause remediation for high volume incidents.

Nice-to-haves

  • Certifications in the information security management domain and project management are desired.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service