Global Lead of Cyber Defense Global Lead of Cyber Defense …

S&P Global
in New York, NY
Permanent, Full time
Be the first to apply
S&P Global
in New York, NY
Permanent, Full time
Be the first to apply
Global Lead of Cyber Defense
The Impact: The Sr. Director of Cyber Defense (Global Lead of Cyber Defense) will oversee all elements of the company's defensive capabilities across the company's large global footprint. This position reports directly to the Chief Information Security Officer, and serves as a key member of the Information Security Leadership Team, working closely with senior leadership and other key stakeholders. You will be an integral part of driving a security first culture throughout the company by building relationships with key business stakeholders to identify opportunities to improve security controls and knowledge. You will continue to build out an amazing team of passionate information security professionals, ensuring the team has the right support and tools for the job. This position requires a strategic view with tactical execution.

The Role:
  • Collaborate with, motivate, and develop a global, cross-functional team to improve upon the company's defensive cyber posture while being the master of your craft
  • Oversee the Threat Intelligence program to assess the company's threat landscape, and recommend strategic, tactical, and operational approaches to prevent and respond to identified risks
  • Mature the Threat Hunting program to proactively identify security risks in the environment
  • Oversee the incident response and monitoring functions across the enterprise to identify and respond to security events, with an aim to automating key detection and response functions to reduce the time to respond to events
  • Develop a world class Security Operations Center to efficiently monitor and respond to security events
  • Collaborate with key business stakeholders to understand the company's attack surface and recommend improvements to security controls
  • Assess the environment for vulnerabilities and work with stakeholders to prioritize and address risks to the organization
About you:
  • You are the master of your craft, passionate about information security, continuously seeking out new paths to knowledge and education
  • You are data driven; analyzing any and all data to make the best decisions in the interest of the business and the team
  • You can mediate conflicting priorities and viewpoints amongst disparate teams to work towards a common goal
  • You remain calm and collected when responding to potentially stressful cyber events
  • You prioritize business outcome while effectively collaborating with stakeholders through leveraging technical information security controls and initiatives
  • You can adapt to change quickly, and are proactive about proposing and influencing changes of your own to address control gaps
  • You are a influencer in organizational change and positively influence business decisions
  • You are a well-written communicator and can verbalize communications with ease to executives providing clear guidance on strategy timeline, required investments, and expected results
  • You have experience leading an enterprise-level vulnerability management, threat intelligence, incident response, monitoring, or automation function
  • You have exposure to multiple technical domains, such as cloud, network, workstation endpoints, active directory, and servers.
  • Develop and promote the strategic direction for the company's world-class Cyber Defense organization
  • Educate stakeholders and leadership on security risk and mitigation strategies
  • Develop, maintain, and publish the company's Cyber Incident Response Plan
  • Improve the efficiency of the Cyber Incident Response Team through investment in automation and orchestration resources
  • Provide strategic risk guidance for company projects, including evaluation and recommendation of technical controls
  • Proactively see and resolve roadblocks impacting the team's ability to produce quality and stay focused on the mission
  • Supervise the Vulnerability Management, Threat Intelligence, Incident Response, and Automation & Orchestration capabilities within the organization
  • Evaluate potential security events and coordinate responses and corrective actions and evaluate new / emerging cyber threats and trends while recommending effective security controls
  • Ensure cyber events are properly detected, analyzed, contained, and resolved
  • Produce meaningful metrics that provide insight into the effectiveness of the team's function and adherence to the company's risk appetite
S&P Global is an equal opportunity employer committed to making all employment decisions without regard to race/ethnicity, gender, pregnancy, gender identity or expression, color, creed, religion, national origin, age, disability, marital status (including domestic partnerships and civil unions), sexual orientation, military veteran status, unemployment status, or any other basis prohibited by federal, state or local law. Only electronic job submissions will be considered for employment.

If you need an accommodation during the application process due to a disability, please send an email to: and your request will be forwarded to the appropriate person.

The EEO is the Law Poster describes discrimination protections under federal law.

102 - Senior Management (EEO Job Group) (inactive), 10 - Officials or Managers (EEO-2 Job Categories-United States of America), IFTECH102 - Senior Management (EEO Job Group)

Job ID: 257080
Posted On: 2020-12-15
Location: New York, New York, United States
S&P Global logo
More Jobs Like This
See more jobs