Your Role at Cabot
The Cybersecurity Operations Manager will play a pivotal role in overseeing the engagement with our Managed Security Services Provider (MSSP) , Managed Service Provider (MSP) and cybersecurity tool . This position is responsible for managing the relationships with all suppliers, ensuring the delivery of high-quality services, and aligning cybersecurity initiatives with the organization's strategic goals. Additionally, you will, as part of the Digital Security team, oversee the development and execution of the technology roadmap to enhance our cybersecurity capabilities and infrastructure. This is a global role, reporting to the Director of Digital Security.
How You Will Make an Impact
MSSP and MSP Management
- Collaborate with the MSSP and MSP to ensure service level agreements (SLAs), performance metrics and deliverables are met.
- Review and assess vendor reports, incident response activities, and ongoing security monitoring to maintain visibility into the cybersecurity posture.
- Manage the Digital Security Incident Response program including communication and coordination with the MSSP, MSP and Service Delivery during incidents.
- Monitor vendor performance and provide feedback on areas of improvement, efficiency, and cost-effectiveness.
- Conduct regular vendor performance reviews and identify opportunities for service enhancement and optimization.
- Act as the primary point of contact for escalations and issue resolution with the MSSP and MSP.
Tool and Technology Roadmap
- Develop and maintain a comprehensive tool and technology roadmap to enhance our cybersecurity capabilities and infrastructure.
- Identify and evaluate cybersecurity tools and solutions that align with our organization's needs and objectives.
- Collaborate with Digital teams and MSP to prioritize technology implementation and integration efforts.
- Ensure that all tools and technologies are deployed, configured, and managed effectively to support the organization's cybersecurity objectives.
- Stay updated on emerging cybersecurity trends, threats, and technologies to ensure the roadmap remains current and effective.
- Oversee cybersecurity projects to ensure that they meet established budgets objectives and expectations.
Cybersecurity Strategy and Alignment
- Work closely with cybersecurity leadership and fellow team members to align cybersecurity strategies with overall business goals and risk tolerance.
- Participate in strategic planning sessions and contribute cybersecurity expertise to support decision-making processes.
- Provide regular updates and reports on cyber domain, progress, and risks.
What You Will Bring to Cabot
- Knowledge of relevant IT Security related hardware, software, and vendor solutions• Knowledge of and experience with service levels - MTTR & MTBF metrics for core services and infrastructure. • Project management skills including planning and scheduling, risk assessment, and managing to a schedule• Strong collaboration, teamwork and relationship building skills across multiple levels and functions in the organization.• Ability to lead change using positive and collaborative methods.• Skilled at conflict resolution and problem-solving to achieve win-win outcomes.• Diplomacy: able to influence and motivate others using personal rather than positional power.• Strong communication skills in writing, speaking, and presenting with the ability to communicate technical or complex subject matter in business terms.• Highly self-motivated; Accepts ownership and welcomes responsibility.• Well versed with incident avoidance strategy, leverage automation tools, root cause remediation for high volume incidents.
Qualifications:
- Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
- 5+ years in managing relationships with MSSP and MSPs in a cybersecurity context.• 5+ years experience with common information security management frameworks such as NIST, ISO 27001, SOX, GDPR, CCPA, TISAX.• A track record of successfully implementing and managing cybersecurity initiatives through full deployment.• Familiarity with a wide range of cybersecurity technologies, including SIEM, endpoint protections, firewalls, intrusion detection/prevention systems (IDS/IPS), etc.• Certifications in the information security management domain and project management are desired.