Security Program Manager – Varian - Palo Alto, CA or Salt Lake City, UT

Together, we can make a life-long impact on our customers, each other, and millions of lives.
At Varian, you’ll find yourself surrounded by the world’s best and most innovative talent, working together with a singular focus – our mission to save lives. Our technology works to help cure cancer and protects the safety of nations, and you can impact all of it. Joining our Corporate Services team means you’ll help create an environment that encourages innovation and that what you do will mean something. Legal, Human Resources, Government Affairs, Finance and IT professionals work together to help innovate life-saving solutions relied on by millions of people across the globe.
Security Program Manager – Palo Alto, CA or Salt Lake City, UT
The Security Program Manager must have 6 years of experience managing security operations with incident response capacity in a large enterprise environment. The Security Program Manager provides leadership and knowledge to Security teams (SOC, Security Analyst) operating technologies such as Security Information and Event Management (SIEM), Intrusion Detection & Prevention (IDS/IPS), Data Leakage Prevention (DLP), packet capture, malware detection, analysis tools and computer forensic. Collaborate with Security department on security strategies and with other IT teams on roadmaps and concerted efforts during security incidents.  This position is available in Palo Alto, CA or Salt Lake City, UT.

Job Responsibilities:

  • Manage SOC and Security Analysts
  • Provide leadership to security team working on incident prevention, detection/analysis, containment and eradication activities.
  • Develops, maintains, and executes the incident response processes, and build efficiencies in incident tracking and handling via automation.
  • Evaluates existing and set Infrastructure Security technology roadmap, priority and processes to enhance current capabilities or address gaps and linkage to IT’s security governance.
  • Lead incident response efforts to determine the criticality of an incident, appropriate containment, and mitigation activities. Will communicate across the organization and ensure proper reporting and documentation is produced outlining the details of the incident.
  • Manage the chain-of-custody for all evidence collected during security investigations
  • Develops and maintains incident response metrics and dashboards to drive security performance and effectiveness.
  • Provides senior leadership with actionable data and trending to enhance security.
  • Oversee security services reference architecture (PKI, Identification/authentication, external business partner connections, event monitoring, backup and DR, …)
  • Manages relationship and oversees performance of external managed services vendors providing security incident response monitoring, forensic, and other security incident response related services.
  • Demonstrates knowledge of security technology, policies, processes and standards. Maintain current with new developments in the security industry including alerts, bugs, vulnerabilities and viruses; evaluate and report on their potential business impact.
  • Collaborate with other IT teams, Security, Human Resources, Legal and other leaders in the organization during security incident handling situations and proactively for security incident response initiatives.
  • Proactively identifies opportunities to improve business focus as it relates to security monitoring capabilities
  • Maintain a highly skilled Security Incident Response Team (SIRT) team for the effective detection, analysis, and containment of attacks
  • Assembles, evaluates, and implements performance and effectiveness metrics for supervised team members

Requirements:

  • BA/BS degree in Computer Science, MIS, or related field.
  • Required: Certification in one or more of the following: CISSP, CISA, GIAC or equivalent.
  • At least 6 years of experience managing security team and information security incidents.
  • At least 6 years of experience monitoring and responding to information security incidents, analyzing network, system and application vulnerabilities, writing logic to detect exploitation of vulnerabilities.
  • Knowledge of data mining, log analysis and/or fraud detection logic.
  • Experience in working with SIEM systems
  • Knowledge and practice of developing code or Scripting to automate processes or other methods to enhance capabilities.
  • Experience educating and leading senior leaders through large investigations.
  • Experience presenting to, collaborating and communicating with leadership both within the immediate organization and across IT and the business.

Interpersonal skills:

  • Possesses strong written and verbal communication skills with both technical and non-technical audiences.
  • Calm under pressure, objective and diplomatic.
  • Customer focused
  • Acts as a team player and works collaboratively.
  • Understands the importance of communication and when to escalate issues
  • Anticipates information needed by different workgroups (technical and non-technical)
  • Strong human relations skills to select, develop, mentor, discipline and reward staff members.

When you join Varian, you’re joining an organization with nearly $3 billion in annual revenue, and more than 6,500 team members across more than 30 countries.  You’ll be backed by a culture that is centered on fostering your creative potential, and experience the full support of an organization and leadership committed to inspiring you to do your best work. You’ll also enjoy an array of benefits that give you security, including: 401K plan with a generous 6% match, employee stock purchase program, wellness programs and facilities, comprehensive insurance plans, flexible paid time off, and so much more.
You’re just one click away from the most impactful work you’ll ever do. Apply now. Someone, somewhere, will be glad you did.
Please click here to apply directly online >>>
http://jobs.brassring.com/1033/ASP/TG/cim_jobdetail.asp?partnerid=25044&siteid=5224&AReq=7709BR
EEO Policy: All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, national origin, protected veteran status, or on the basis of disability.