Manager over Threat & Vulnerability Management - 100% remote (EST)
Optomi, with a large fortune 50 client, is looking to add a Manager over Threat & Vulnerability Management! This manager will sit on the Cyber Threat Intelligence team, and responsibilities include integrating an intelligence-led perspective across all domains of security. The Manager over Threat & Vulnerability Management's role involves leading cross-disciplinary teams in conducting detailed intelligence analysis using industry frameworks and techniques and applying that analysis to inform and enhance other areas of cybersecurity.
The Manager over Threat & Vulnerability Management will oversee teams’ collection, analysis, production, and dissemination of actionable cyber threat intelligence and ensure collaboration with other security and business teams is productive and valuable. You would play a pivotal role in mentoring senior and junior analysts, setting and advancing a collaborative and trust-based culture, and bringing new ideas to enhance the team’s skillsets and capabilities.
Required Skills:
- A Bachelor’s degree in Computer Science, Computer Engineering, Cybersecurity, Management Information Systems, or a related field along with 6-12 years of relevant experience in cyber threat intelligence or a related field, with some of that experience in professional services or similar fields.
- Demonstrated leadership experience with the ability to manage and mentor a team of consultants and analysts.
- Demonstrated experience with common standards such as STIX/TAXII, ICD203 & ICD206, DHS TLP, etc. and a thorough understanding of the intelligence lifecycle.
- The ability to conduct research and Open-Source Intelligence (OSINT) while understanding the importance of leveraging primary sources and validating findings.
- A strong understanding of Threat Intelligence Platforms (TIPs) and experience leading research and analysis using common CTI tools, whether open or closed source.
- Deep understanding of frameworks and concepts such as atomic Indicators of Compromise (IOCs), MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), the Pyramid of Pain, and higher-level behavioral patterns.
- Experience dealing with threat actors of varying motivations, resourcing, and goals, including Advanced Persistent Threat (APT) actors, cybercriminals, and hacktivist groups.
- The ability to communicate effectively in verbal conversations, workshops, and interviews.
- Exemplary writing skills and the ability to communicate complex technical information to a non-technical audience through written deliverables.
- The ability to translate abstract, high-level thoughts into easily digestible concepts and visuals, including PowerPoint slides and Visio diagrams.
- Familiarity with the latest events, threat actors, vulnerabilities, security trends, and mitigations in cybersecurity.
Skills and attributes for success
- The ability to communicate effectively and professionally both verbally and in written form when interacting with clients, senior leaders, technical teams, support staff, vendors, and business partners in both technical and non-technical terms.
- The ability to engage with clients by listening to and understanding their needs.
- The ability to recognize when to escalate risks, issues, and opportunities to enhance service delivery and increase revenue to the appropriate client and leadership.
- The ability to manage the creation, review, and delivery of high-quality work products, client reports, and presentations.
- Adherence to service quality standards and program management requirements.
- The ability to work collaboratively in a cross-functional team environment that is culturally diverse and with geographically dispersed teams.
- Strong analytical and critical thinking skills, with the ability to process complex information and present it in a clear and understandable manner.
- A proactive mindset, with a keen interest in staying abreast of the latest cyber threats and trends.
