Group Lead, IT - Security Operations Manager

Job Description
Job Title: Security Operations Manager - Group Lead
Role ( Security Operations Manager - Group Lead )
The Security Operations Manager will play a critical role in managing and advancing KraftHeinz 's security posture. This position is responsible for overseeing managed security services provider 's (MSSP) operational services, ensuring effective security tool management a nd operations, managing alert/escalation tickets, develop and maintain standard operating procedures (SOP), a n d developing a robust security operations metric program. T his role will manage vendor relationship and ensures that SLAs are kept in respect to contract terms and researched and brought to the attention of the vendor when missed. Ensures accurate accounting of and appropriate deployment of resources. This role will require effective collaboration with internal and external teams to achieve security objectives .
Primary Responsibilities

• Serve as the main management and oversight owner of our MSSP operational services

• Manage the day-to-day cyber security operations including the investigation, containment and remediation of incidents escalated through MSSP

• Oversee and directly participate in the installation, configuration, and monitoring of new cyber security technologies

• Participate in the development of cyber security policies, standards, and procedures.

• Remain current with emerging cyber security threats and advise relevant stakeholders on the appropriate course of action

• Manage cyber security operations metrics and reporting

• Establish processes to measure and report on MSSP performance and business value

• Assess and prioritize security risks and formulate effective risk management mitigation plans

• Regularly review and update security documentation to reflect changes in the threat landscape and business requirements

• Lead/ participate in security incident management, as necessary

• Provide continuous improvement through methods such as root cause analysis to improve efficiencies and resolve problems

• Drive the documentation of processes and procedures

• Implement dashboards and produce regular reports to inform leadership of trends and resource needs

• Serve as main point of contact for complaints and observations from all major stakeholders

• Scheduling periodic touchpoints with stakeholders and project management practice to gauge how to properly support upcoming projects and initiatives

• Active participation in monthly and quarterly business reviews to compare and rationalize vendor's service levels against observed service levels

• Build and maintain relationships with other global and virtual teams and vendors to quickly solve for capability gaps and/or resolve issues

Qualifications
7 + years of relevant information security experience

• Three or more years of experience working with security operations/engineering /identity and access management

• Strong understanding of cyber security industry best practices and frameworks such as NIST CSF, CIS, MITRE ATT&CK, Cyber Kill Chain, etc. and knowledge on how to apply them in an enterprise environment

• In-depth understanding and hands-on experience with technologies such as SIEM/SOAR, EDR/XDR, IDS/IPS, NAC, email gateways, Azure AD/Active Directory, DAST/SAST, WAF, firewalls, and vulnerability management tools

• Experience leading cyber security incident response

• Experience with implementation of technical security architectures within a large enterprise environment

• Competency in making operational decisions, monitoring progress and reporting results

• Good analytical skills focused towards service levels and metrics

• Good tracking abilities for monetary resources

• Good negotiation skills

• Ability to quickly understand abstract technological concepts

• Excellent verbal and written communication skills, as well as presentation skills, with ability to convey complex information in a way that others can readily follow

• Excellent interpersonal, communication, and presentation skills, including formal report writing experience

Location(s)
Mexico City - Antara Tower A - 5th Floor - Local Office
Kraft Heinz is an Equal Opportunity Employer - Underrepresented Ethnic Minority Groups/Women/Veterans/Individuals with Disabilities/Sexual Orientation/Gender Identity and other protected classes.