Director of Cyber Security

Company Description

Solix Inc. (Solix) is a leading provider of eligibility determination, qualification program management, and customer care services to various organizations including government, telecommunications, broadband, utility, disaster recovery, and healthcare organizations. With a focus on delivering smart, cost-effective, compliant outsourcing solutions, Solix leverages its unique technologies and consultative expertise. Our customers benefit from faster, more accurate applicant qualification, increased program efficiency, and improved customer communications. Learn more about us at www.solixinc.com.

The Director, Cybersecurity reports to the Chief Information Officer with a dotted line to the Chief Compliance Officer. This role is pivotal in leading the Solix Cybersecurity Program to protect our organization’s critical information assets through NIST Cybersecurity Framework and practices, ensure regulatory compliance, and help organization become more proactive in addressing vulnerabilities and risks. As the internal expert in the field of information security and cybersecurity, the Director, Cybersecurity has the overall accountability of establishing, monitoring, managing, and maintaining the technologies and processes used to secure company information systems, networks and data, in close collaboration with IT, Regulatory Compliance, Risk Management and strategic managed services partners.

The successful candidate will have a strong technical background, excellent leadership skills, and a proactive approach to Cybersecurity management. Focus areas will include managing security requests, investigating, and responding to alerts and incident tickets, developing and maintaining security documentation, network and endpoint security management, vulnerability management, identity and access management, incident response, SIEM and log management, cloud security operations, overall security monitoring and reporting. Additionally, the candidate will be responsible for contributing to internal control testing related to client and regulatory audits (e.g. PCI, HIPAA, SOC1/2) by gathering and submitting proper technical evidence based on control testing needs and ensuring controls tests are completed comprehensively and on time.

This position collaborates with key internal/external stakeholders, and the executive leadership in responding to and managing all security events and incidents to ensure the protection of company and client assets across the business.

Primary Responsibilities and Duties:

• Lead the delivery of Solix Cybersecurity Roadmap initiatives, through collaboration with internal IT and external managed services partnership.
• Oversee the development and execution of Incident Response Plan (IRP), ensuring swift and effective response to security events and incidents. Coordinate with internal stakeholders and external partners during forensic investigation.
• Manage endpoint and network security environments including overall health, policy modifications, troubleshooting/resolving issues and producing monthly health metrics for workstations, servers, and identities.
• Analyze and resolve security events/alerts Including:
• monitoring and management of the SIEM platform
• managing the logging health of various log sources (e.g., Windows and Linux systems, cloud infrastructure and services, and network and security infrastructure).
• Collaborate with Risk Management, Regulatory Compliance and IT on reviewing and updating Cybersecurity policies, controls and procedures that support NIST compliance, and monthly Cybersecurity Dashboard updates.
• Manage vendor for Penetration Testing for both external network infrastructure, web applications and API endpoints.
• Support and manage the vulnerability management platforms for infrastructure and application scanning. Including:
• development and maintenance of scanning policies
• onboarding assets
• reporting
• validation and false positive research
• remediation tracking
• process improvement
• Supporting PCI, SOC1/2, HIPAA, and client security assessments. Includes gathering, uploading, and reviewing evidence.

Minimum Education and/or Experience Requirements:

·      Bachelor’s degree with at least 10 years of industry experience in Information Security and Cybersecurity, and minimum 5 years in a leadership role.

·      Strong understanding of cybersecurity framework, standards, and best practices.

Minimum working knowledge of:

• Incident response
• Penetration testing
• Vulnerability management
• SIEM/log analysis
• Network security
• Endpoint security
• Active Directory
• Windows/Linux security
• Email security
• DLP concepts
• Familiar with NIST Cybersecurity Framework and mapping of internal controls to support NIST compliance.
• Familiar with endpoint security products and concepts (e.g., malware protection, network protection, forensics, DLP, EDR/MDR/SOC).

·      Exposure to adjacent technology domains such as cloud, network infrastructure, audit & compliance, and DevSecOps.

Required Knowledge, Skills and Abilities:

• Strong knowledge of Information Security / Cybersecurity related technologies, processes, and tools.
• Working knowledge of Office 365 security concepts, policies, settings, alerting, audit logging, security and compliance center, cloud app security is required.
• Staying up to date on recent threats (e.g., OWASP Top 10), security tools and concepts is required.
• Experience with network security concepts and products (e.g., Cisco/Barracuda firewalls and Intrusion Prevention Systems, email security, and Web Application Firewall (WAF), with working knowledge on Akamai/Cloudflare a plus.
• Familiar with security monitoring (SIEM), analysis and resolution of security events/alarms (working knowledge with Google Chronicle a plus).
• Familiar with identity and access management concepts (e.g., Azure Active Directory, OKTA MFA, SSO).
• Familiar with SOC1/2, PCI, HIPAA, CCPA/GDPR or related security frameworks.
• Familiar with application-level security framework and hands on experience mitigating application vulnerabilities and threats, such as SQL injection and cross-site scripting.
• Strong analytical and problem-solving skills
• Strong Windows Active Directory and Networking experience a plus
• Security focused degree and/or certifications a plus (e.g., CISSP, CISM, CISA)

This position is required to ensure compliance with all legal, ethical and regulatory standards for employment actions. Judgment is exercised to determine when items need to be escalated to management for approval or resolution.

For more information about personal rights under Equal Employment Opportunity, visit: EEOC Poster, EEOC GINA Supplement​, and OFCCP EEOC Supplement.

Solix, Inc. is an Equal Opportunity Employer – Male/Female/Veterans/Disabled and other protected categories.