IT Security Manager (Incident Management)

Job Title: IT Security Manager (Incident Management)

Location- Remote

The IT Security Manager (Incident Management) will be responsible for monitoring and response to all emerging security incidents in order to protect and enhance the confidentiality, integrity, and availability of Wolters Kluwer assets.

As the IT Security Manager (Incident Management), you will lead information gathering efforts during investigation into suspected and confirmed security incidents to protect personal and confidential information at WK. In this role, you will be required to demonstrate proficiency in incident analysis, data gathering and information synthesis in every area of IT security management. Your role will also include interfacing with and responding to internal business unit IT representatives and stakeholders at all levels during emerging security incidents, real or simulated.

Responsibilities:

• Primarily responsible for the response to and recovery from emerging information security incidents, acting as the focal point leading response efforts and ensuring effective action to contain and remediate the situation

• Supports the investigation of reported security breaches and, in coordination with WK global security operations, develop procedures to respond to security incidents and assist with investigations

• Contributes to the analysis and delivery of findings to internal customers with impactful, comparative, interpretative security analysis in a clear, consistent, and factual manner.

• Responsible for establishing communications bridges and meetings in support of response efforts

• Responsible for maintaining proper group focus during investigation activities and redirecting efforts in support of timely recovery

• Responsible for aggregating information relevant to the situation and synthesizing probable root cause

• Responsible for developing and recommending best course of action based on solid security principles

• Driving the incident response process from detection through containment and eradication.

• Accountable for documenting all WK and partner activity, taken in response to emerging situations

• Accountable for the day-to-day review and assessment of security events that may become or contribute to security incidents.

• Ensures work is compliant with WK enterprise policies, procedures and the local business plan

• Responsible for ensuring appropriate post-mortem and lessons-learned sessions are conducted, following incident restoration of service

• Responsible for organizing and taking part in cross-functional incident exercise activities, ensuring that policy and procedure are followed

• Responsible for ensuring knowledge of IT security and emerging threat scenarios is current

• Responsible for ensuring knowledge of WK Global Information Security policies and standards

• Responsible for reviewing threat intelligence sources is support of WK security situational awareness

• Responsible for assisting in the development of vulnerability and threat related communications for potential dissemination to warn WK employees of an emerging situation

• Responsible for ensuring information arising from incident response activities, that would result in configuration changes or other modifications to ensure WK security posture, is communicated to the proper operational contacts for execution.