Cyber Infrastructure Lead

January 10, 2019
Springfield, MA
Job Type


Job Description:

The Cyber Infrastructure Business lead will work as part of the Program Office of the CISO within Enterprise Information Risk Management. This role will focus on developing and maintaining a network and infrastructure security capability strategy and roadmap as well as implementing and maturing security capabilities and processes that will provide visibility, analysis, and enforcement against client’s information systems, networks and infrastructure. This role will collaborate with stakeholders across the organization including Technology Leads, Security Solution Strategists, Solution Architects and other Business leads to implement and refine the Cyber Infrastructure protection strategy / road maps and technology tool sets.  This role will ensure alignment with client’s Compliance and Legal controls functions for policy decisions, as well as, application owners and the risk management training and awareness team.

Breakdown of responsibilities:

  • Plan and manage the Cyber Infrastructure protection program, inclusive of evaluating current capabilities, identifying enhancement opportunities, road mapping enhancements based on need, and overseeing successful implementation of Network,  Web and Infrastructure security protection Technologies
  • Plan and develop Infrastructure protection policies and solutions for client Home Office and the Field force through collaboration with Law, Compliance, and Enterprise Risk functions to protect client information
  • Evaluate current Infrastructure security capabilities in place to support effective and appropriate protection controls; inclusive of tools for monitoring network and web usage on premise and in cloud environments as well as endpoint and device access based solutions for protecting information across and outside the organization.
  • Establish workflows for Infrastructure security alerts and incidents including notifications required and groups involved for response
  • Conduct POCs for new capabilities and partner with Technology Leads to select, implement and tune security toolsets selections and inclusion in the road maps


  • At least 8 years of experience in information security technology, Network, Web and Infrastructure / endpoint security toolsets and controls solutioning within both a legacy and cloud environment - preferably in a financial services organization
  • Public Key Encryption and Identity and access management experience a plus
  • Knowledge of regulatory standards and requirements based on data classification and protection
  • Ability to work independently and be comfortable making program decisions
  • Demonstrate a strong ability to identify, analyze, and solve problems
  • Excellent oral and written communication skills, and attention to detail
  • Demonstrated success with managing large security and technology capability initiatives
  • Demonstrated ability to use data and data analytics to guide Business decisions and identify problems
  • Authorized to work in the United States without sponsorship now or in the future


  • Past Experience with managing Security Operations Center technologies including – IPS/IDS, threat and anomaly detection technologies, logging and analytics platforms, web service and content monitoring technologies and Infrastructure vulnerability and baseline technologies as plus
  • Past experience developing and managing a network and infrastructure security and controls focused program is a plus
  • Relevant certifications such as CISSP or CISA are a plus
  • Project management experience a plus

Related Jobs

June 24, 2019
June 24, 2019
Cloud Security Engineer (Remote)   Charlotte, NC new
June 24, 2019
June 24, 2019
June 24, 2019
This entry was posted in . Bookmark the permalink.