Director, Threat Intelligence and Threat Emulation

• Create and define intelligence driven defense strategies, goals and objectives, and metrics consistent with the broader businesses strategic plans and demonstrate the operational effectiveness of the programs. 

• Manage resources within budget guidelines and alignment of overall Information Security initiatives and priorities. 

• Manage relationships with law enforcement and government agencies; maintain relationships with relevant ISAC’s (Information Sharing and Analysis Center), trust groups and industry peers.  

• Ensure the Information Security Division and its mission, programs, products and services are presented in a strong and positive image to relevant stakeholders.  

• Proactively maintain overall program requirements through actions including establishing and maintaining intelligence collection priorities; evaluating and selecting technologies to help drive process automation; identification and creating custom technologies as needed; and regularly testing response capabilities. 

• Keep Information Security team and key stake holders apprised on necessary actions and needs. 

• Develop and coach their current employees to meet the needs of the organization while balancing personal development of the employee. Identify organizational needs/gaps and propose solutions. 

• Be a leader within their field including proactively seeking out and staying appraised of emerging threats, new technologies and best practices, and providing insight on future direction in their field. 

• Work in partnership with peers across the Information Security team and broader organization to foster collaboration and collective strategies.  

SUPERVISORY RESPONSIBILITIES:  Duties include, but are not limited to performance management, focused investment in people growth and direction, feedback coaching and disciplinary activities (if needed), succession planning, recognition of employees, individual and talent pipeline development, etc. 

MINIMUM KNOWLEDGE, SKILLS AND ABILITIES REQUIRED: 

• Typically, will have at least 7-10 years in the field of Information Technology and/or Cyber Security, and at least 6-10 years people leadership experience and hands on experience in their particular craft. 

• Bachelor’s or advanced degree in Computer Science/Information Systems or equivalent combination of education and experiences. 

• Well versed in operating systems such as Linux as well as Windows environments and operating systems, Active Directory, VPN Systems, encryption schemes and algorithms, various authorization and authentication systems/software, network monitoring, and TCP/IP networks.   

• Knowledge or experience related to management of cyber defense and/or cyber intelligence operations. 

• Knowledge of cyber defense technologies such as DLP, SIEM, TIP, IDS/IPS, Advanced Malware Detection, etc.. 

• Preferred CISSP, GIAC, or CISM certification. 

• Experience with common host and network security protocols and tools. 

• Experience with common security controls such as authentication, encryption, IPS, input validation, WAFs, firewalls, HIPS, etc. 

• Understanding of application protocols. 

• Experience with information security frameworks and governance standards, and regulatory compliance standards. 

• Strong presence and credibility with excellent communication, presentation and interpersonal skills which are effective and impactful to a range of audiences.   Demonstrated ability to communicate complex information in a simplified way and meet fast-paced deadlines. 

• Critical thinking and creative problem-solving skills. 

• Ability to build a sense of trust and rapport that creates a sustainable & effective workplace