Consulting Director Info Sec Response

| Chicago, IL | Hybrid
Sorry, this job was removed at 1:19 p.m. (CST) on Thursday, November 4, 2021
Find out who's hiring in Chicago, IL.
See all Cybersecurity + IT jobs in Chicago, IL
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

Job Summary
The Consulting Director Information Security Response executes the evaluation development implementation and monitoring of information security strategies tools and technologies for effectively detecting and responding to enterprise security incidents. A key aspect of this role is staying abreast of threat actor activity and leveraging an understanding of attacker behavior to drive investigations. This position interacts with CNA business leadership during stressful enterprise security incidents and is a key part of the daily security operations and security incident response teams and any remediation protocols. This position is a key member of incident management and is responsible for global incident handling and advanced analysis. This role is to be a subject matter expert capable of improving the end-to-end process of incident response.
Essential Duties & Responsibilities
Performs a combination of duties in accordance with departmental guidelines:
Establishes and governs security event detection and cyber threat hunting capabilities and serves as the subject matter expert regarding all information security incident responses for the enterprise.
Provides governance for and leads the information security response process; directs the response to escalated security events and drives the security incident response process.
Leads the evaluation development and implementation of security standards procedures and guidelines for multiple system platforms across diverse application environments.
Works with other senior IT and business leaders on potential data breaches. Works with E-Discovery and Forensics groups to support Human Resources Legal and other key stakeholders while maintaining appropriate chain of custody.
Provides end-to-end problem management and root cause analysis for security incidents across the Enterprise. Works with forensic vendors penetration testers and strategic partners to architect advanced solutions to address issues.
Performs and/or directs the independent analysis of complex problems and threats and provide clear and decisive mitigation strategies. This includes emulation of threat actor activity based off tactics techniques and procedures identified as indicators of compromise (IOCs).
Actively provides consistent communication to key IT and business stakeholders on metrics and measures and the potential of new threats.
Actively stays up to date on current attack risks and trends through independent and collaborative industry research. Works with IT Leadership to proactively develop and monitor information security strategies to protect the CNA IT enterprise from existing and future threats.
May perform additional duties as assigned.
Reporting Relationship
Typically reports to Director or above.
Skills Knowledge & Abilities
In depth understanding of SIEM operations and the CSIRT process
Proven experience with industry standard security technologies such as advanced endpoint detection technologies threat intelligence aggregation tools open sourced investigative technologies EDR Technologies and threat hunting.
Proven experience applying information security principles to secure platforms and prevent threats.
Proven ability to interact effectively with senior business leadership to effectively resolve information security incidents when necessary.
Working knowledge of regulations (e.g. SOX privacy etc.) and internal controls as they apply to IT.
Strong understanding of malware in static and dynamic environments and mitigation strategies to protect against it.
Superior analytical and problem-solving skills and the ability to effectively communicate highly technical information to business leaders.
Proven ability to influence change and adoption of information security protocols and concepts.
Ability to work extremely well under pressure while maintaining a professional image and approach
Preferred insurance industry knowledge.
Education & Experience

  • Bachelor's Degree required or equivalent work experience. Master's Degree in Computer Science or technical field preferred.
  • Minimum of ten years of information security experience
  • CISSP GIAC CISM or equivalent c


*LI-KC1

Read Full Job Description
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • JavaLanguages
    • JavascriptLanguages
    • KotlinLanguages
    • PerlLanguages
    • PythonLanguages
    • RLanguages
    • SqlLanguages
    • jQueryLibraries
    • jQuery UILibraries
    • ReactLibraries
    • Node.jsFrameworks
    • SpringFrameworks
    • AccessDatabases
    • DB2Databases
    • Microsoft SQL ServerDatabases
    • MySQLDatabases
    • OracleDatabases
    • PostgreSQLDatabases
    • Google AnalyticsAnalytics
    • ConfluenceManagement
    • JIRAManagement
    • Microsoft ProjectManagement
    • SalesforceCRM
    • SendGridEmail
    • MarketoLead Gen

An Insider's view of CNA

How would you describe the company’s work-life balance?

Work-life balance has always been a priority for me. It always will be. CNA’s hybrid working model allows me to not only maximize collaboration with my peers but also take advantage of increased flexibility by combining remote and in-office work. I’m empowered to take control of my schedule based on what works best for me and my team.

Alison Massey

Agile Scrum Master Consultant

How do you collaborate with other teams in the company?

On the Security Advisory team, collaboration is key to what we do. We sit at a unique intersection of security goals and business objectives. By working across nearly every IT team at CNA, we balance the need for maintaining secure initiatives and keeping projects on track. It’s our job to find the best, secure path to ‘Yes’ for business requests.

Zach Jones

Director, Security Advisory

How has your career grown since starting at the company?

I joined CNA as a contractor and became a full-time employee after an eight-year contractor journey. I’m passionate about solving technical challenges and CNA allows me to foster that passion. Every day, I learn about emerging technologies. I’m empowered to develop, grow, and create a career that works for me and my lifestyle.

SenthilKumar Asokan

Applications Engineer Senior Specialist

How do your team's ideas influence the company's direction?

Enterprise Architecture creates foundations for IT expectations across CNA. I’m on a team that builds reusable IT assets, communicates best practices, and decides standards for tooling, and more. I influence CNA outside of my role, too, specifically through CNA’s Employee Resource Groups. I’m empowered to influence both IT and our culture of inclus

Lisa Smith

Architecture Senior Specialist

What does career growth look like on your team?

Career growth can take on many different forms at CNA, and that’s because there are always opportunities to acquire transferrable skills. On my team specifically, we’re encouraged to identify and work toward development opportunities that matter to us. We’re empowered to make a difference while advancing our careers.

Josie Lee

Director, HR Business Partner

What are CNA Perks + Benefits

CNA Benefits Overview

One of the many advantages of working at CNA is the benefits program we offer you and your eligible dependents,
beginning on the first day of your employment. The program features a variety of plans that provide health care
benefits, well-being, disability and survivor protection, and 401(k) savings, among others. Below are highlights
of the offerings.

Culture
Volunteer in local community
Partners with nonprofits
Open door policy
OKR operational model
Open office floor plan
Flexible work schedule
Remote work program
Diversity
Dedicated diversity and inclusion staff
Diversity employee resource groups
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
Life insurance
Pet insurance
Wellness programs
Mental health benefits
Financial & Retirement
401(K)
401(K) matching
Company equity
Employee stock purchase plan
Performance bonus
Charitable contribution matching
Child Care & Parental Leave Benefits
Generous parental leave
Family medical leave
Adoption Assistance
Vacation & Time Off Benefits
Generous PTO
Paid holidays
Paid sick days
Office Perks
Commuter benefits
Some meals provided
Relocation assistance
Onsite gym
Professional Development Benefits
Job training & conferences
Tuition reimbursement
Lunch and learns
Online course subscriptions available
Paid industry certifications

More Jobs at CNA

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about CNAFind similar jobs like this