Head of IoT Security Operations

Job Description

Date: Aug 13, 2019

Head of IoT Security Operations

 

Job Summary

The Head of Security Operation is responsible for the security operations and security governance for all BTEB IoT as-a-Service offerings in production. The responsibilities require leading the Security Operations Center (SOC) in a fast-paced environment, while exercising composure, professionalism and teamwork during incidents and problem investigations, and governing the compliance, risk management and privacy management while being an advisor, reporting risks and driving innovation towards the Head of BTEB IoT Security Management and the BL Heads of Security Development.

 

About Us:

 Business Unit Technology & New Businesses is driving new business in the fast-growing area of Internet of Things (IoT). We are offering platform services for connectivity management, connected vehicles, monetization and security threat analytics and remediations. Our IoT platform is supporting more  than 4000 enterprises globally across 100+ countries through our mobile network operator partners. The nature of the business is dominated by as-a-Service business models, translating enterprise and customer needs to scalable solutions and a rapid change as the market and our offerings evolve.

 

Job Responsibilities

  • Manage the daily operations and effectiveness of the SOC; Support and oversee incident response activities as the most senior escalation point on the SOC team.

  • Exercise discretion and confidentiality on a need-to-know basis when performing investigations.

  • Ensure security governance is adhered to across all services within Service Operations; Ensure that operations is ISMS and ISO 27K compliant
  • Ensure platforms and processes are in compliance with all corporate and regulatory standards and requirements.

  • Escalation point for security incidents and enquires, and ensure response to security incidents
  • Oversee the success of clients subscribing to security monitoring services, including onboarding, ongoing monitoring, and improvements.

  • Benchmark and implement industry best practices to detect and mitigate potential threats

  • Participate in the development and tracking of key performance indicators (KPIs) related to SOC operations, to benchmark and further enhance capabilities.

  • Responsible for reporting KPI to key stakeholders and addressing any performance gaps within Operations

  • Provide the risk awareness of each service offering to the Head of BTEB Security Management for steering at the Local Security Management Board (LSMB)
  • Education and training to Operations; Develop staff of varying skill levels on both cybersecurity competencies/expertise and personal development. Guide in their continued growth and success as individuals and as a team.
  • Manage and enhance the tools, tactics, and techniques used within with the SOC. Lead in the assessment, architecture and implementation of security technologies.

  • Act as an advisor and partner to Head of Security Development regarding security risks; work collaboratively with impacted parties to assess business drivers and provide recommendations.

  • Help and guide auditors and security Architect to carry out assessments (e.g. risk and vulnerability)
  • Providing guidance to ongoing projects in service transition phase.
  • Participate in internal assessments and tabletop exercises, and other activities that contribute to operational readiness.

  • Be an approver within Change Management Board
  • Perform special projects and other duties as assigned

 

 

Key Qualifications

The Head of Security Operations requires strong technical knowledge and experience with security monitoring tools, incident management situations and security governance. In addition to technical expertise, a combination of excellent communication and people management skills is required. A successful candidate will be able to coordinate team members in evaluating security incidents or high-risk situations within an environment to provide clear, concise recommendations and feedback to security leadership.

  • Minimum seven (7) years of experience in IT Security or Information Technology

  • Three (3) years in a management role leading a technical team

  • Previous experience working in a Security Operations Center and Compliance

  • Bachelor’s degree in Information Technology or equivalent experience. Master’s degree a plus.

  • Achieved one or more relevant security certifications (CISSP, GCIA, GCIH, GMON, etc.)

  • Ability to communicate effectively with all levels of staff, management, and clients both orally and in writing

  • Strong leadership, problem solving and critical thinking skills. Ability to prioritize and execute autonomously.

  • Ability to collaborate across the organization and operate effectively with multiple teams and solutions towards a shared goal

  • In-depth understanding of latest security principles and protocols

  • Strong understanding of security operations technologies including SIEM and orchestration

  • Knowledge in emerging technologies and tactics used within a SOC, and how they are applied to improve efficiency and effectiveness

  • Understanding of tactics, techniques and procedures associated with cyber threats and the ability to develop relevant alerting, countermeasures, and threat hunting techniques.

 

 

Recruiter:

Kamila Zych kamila.zych@ericsson.com

 

Kindly submit your application in English no later than by September 3rd.

 

Position could be based in Sweden (Stockholm/Kista) or Finland (Helsinki/Jorvas).

 

Ericsson provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, marital status, pregnancy, parental status, national origin, ethnic background, age, disability, political opinion, social status, veteran status, union membership or genetics.

Ericsson complies with applicable country, state and all local laws governing nondiscrimination in employment in every location across the world in which the company has facilities. In addition, Ericsson supports the UN Guiding Principles for Business and Human Rights and the United Nations Global Compact.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, training and development.

Ericsson expressly prohibits any form of workplace harassment based on race, color, religion, sex, sexual orientation, marital status, pregnancy, parental status, national origin, ethnic background, age, disability, political opinion, social status, veteran status, union membership or genetic information.

 

Primary country and city: Sweden (SE) || || Stockholm || IT

Req ID: 289548