Cyber Threat Incident Response Manager

Job Purpose: The financial services industry faces constant threats from sophisticated cyber adversaries, ranging from nation states to criminals. The Raymond James Group Cyber Threat Centre (CTC) is dedicated to securing all Group entities against these threats. As the central hub for Computer Network Operations, we lead security incident response, threat hunting, intelligence, and insider threat management. Join us to work with emerging technologies, solve challenging security problems, and help steer the direction and evolution of our team. This high-profile role involves leading a highly visible team within the Technology organisation and interacting with stakeholders at all levels.

Key Areas of Responsibility:

1. Serve as the CSIRT Mission Manager, responsible for the continuous maturity of Incident Response processes and managing a globally distributed team.
2. Quickly adapt to changing priorities and situations impacting the business.
3. Lead a team of highly technical Cyber Threat Analysts, responding to cyber threats 24/7.
4. Oversee forensic investigations for HR, Legal, Compliance, Fixed Income, and other incident response activities.
5. Ensure the health and wellness of incident response detection tools.
6. Maintain and update documentation of processes and procedures.
7. Collaborate with Information Security and Information Technology teams to develop protective, detective, and response measures.
8. Ensure continuity of mission between Incident Response shifts.
9. Maintain situational awareness for cyber threats across the global firm and take necessary actions.
10. Stay current with emerging threats and trends in security principles and best practices.
11. Lead or participate in information security projects and strategy management.
12. Develop new forensic detective and investigative capabilities using current technical solutions.
13. Act as a security consultant for various business units and technical disciplines.
14. Drive organisational changes to adapt to customer and market demands.
15. Set long-term business direction and meaningful performance objectives aligned with values and strategies.
16. Communicate compelling information to drive team and Firm goals.
17. Encourage innovative approaches to problem-solving and opportunities.
18. Use customer-centric approaches for developing solutions.
19. Align communication, accountability, resources, and processes to ensure strategic priorities yield measurable results.
20. Work tenaciously to deliver team goals with the greatest potential for positive business results.
21. Establish high standards and challenging goals for individual, team, and organisational accomplishments.

Qualifications and Experience:

1. B.Sc in Computer Science, Computer Engineering, MIS, or related degree with seven years of related experience, including management or leadership experience, or a combination of education, training, and experience.
2. Minimum of five years of experience on a Cyber Security Incident Response team, preferred.
3. Financial services experience preferred.
4. Ability to adapt and prioritise in a dynamic and fluid environment.
5. Strong presentation and communication skills for all levels of management and clients.
6. Preferred certifications: CISSP, OSCP, OSCE, GCIH, GCIA, Six Sigma Green/Black belt.

Knowledge and Skills:

1. Common ICERF incident response methodology.
2. Understanding of vulnerabilities and countermeasures.
3. Project Management skills.
4. Familiarity with emerging technologies and enterprise risk management.
5. Ability to attract, develop, and retain talent to meet business needs.
6. Building cohesive teams and developing structure to exceed customer needs.
7. Leveraging systems and processes for talent management.
8. Providing feedback, empowerment, and coaching for job excellence.
9. Creating a trusting work environment for full potential realisation.
10. Enhancing client experience and building strong internal and external relationships.
11. Ensuring customer perspective drives business decisions and activities.
12. Building strategic partnerships to execute business goals.
13. Promoting openness, trust, and confidence in interactions.