Manager of threat management, discovery, and response will be responsible for managing frontier’s threat management and incident response teamThis team is charged with investigating, identifying and leading the remediation efforts for any threats detected on frontier’s systems and networksThe manager will also lead all e-discovery and cyber investigations (forensics) which involve electronic data within frontier’s infrastructure.
Job responsibilities and duties:
Manages the investigation process with a focus on gathering electronic evidence for investigations related to internet activity, call center operations, and e-commerce fraudConducts digital forensics (df). Manages the process of root cause analysis for any incident and creates/approves reports on results and recommendations for systems owners and cyber security management. Oversee frontier’s e-discovery program and work closely with physical security, legal, hr, and internal audit to ensure compliance with any active lawsuits or investigations Ability to manage multiple projects simultaneously and mentor less experienced personnel. Liaisons with law enforcement and the rest of it security regarding cyber threats (malware, intrusion attempts, etc.) that may impact investigations. Responsible for managing, supervising, and on occasion conducting investigations of internal frontier employees
Stay abreast of developments in the information technology industry specifically as they relate to information security. Ensure team maintains proper documentation for incident handling and forensics investigations.’ Responsible for identifying strengths and weaknesses of employees and developing training programs for each employeeMay include mentoring individual employees in their specific job functions and personnel development as regards knowledge base and skill setsIncludes development of staff to enable effective succession planning. Identify training needs and requirements, manage training schedule. Hiring manager for any staff position vacancies. Ability to manage staff and/or work remotely as frontier has team members spread across the united states. Ability to collaborate effectively with a variety of cross functional teams.
Education / experience:
Bs in information security, computer science, computer forensics or 8 years’ experience in information security field, with at least 3 years working in forensics, e-discovery, vulnerability / penetration testing, or incident response. At least 2 years of experiences dealing with forensics, e-discovery, vulnerability testing or penetration testing products. Strong in-depth technical knowledge in information security with emphasis on computer and network security, forensics, vulnerability/ penetration testing, authentication methods, web application testing. Experience using enterprise security information and event management package preferable arcsight, exabeam, or alienvault. Experience using forensics software suites preferable encase, cellebrite, and blackbag. Thorough knowledge of tcp/ip, routers, firewalls and security devices. Ability to deal with changing priorities and multi-task several projects. Maintain at least one industry standard security certification, such as: cissp, giac, cism, etc... Excellent communication and interpersonal skills with the ability to fluently communicate plans, alternatives, and recommendations in both written and verbal form. Excellent technical and business writing skills.