Discount Tire
Cyber Defense Manager
Discount Tire, Scottsdale, Arizona, us, 85261
Overview:Here at Discount Tire, we celebrate the spirit of our people with extraordinary pride and enthusiasm. Our business has been growing for more than 60 years and now is the best time in our history to join us. We are opening more locations every year and we are always looking for qualified individuals to join us in our growth. We are a company that promotes from within, both in our retail and corporate operations.We are seeking a transformational leader who will continue to shape the future of our Cybersecurity Operations capabilities to detect and respond at scale to evolving threats. As the Cyber Defense Manager, you will oversee day-to-day Cybersecurity operations and the implementation, operationalization, and tuning of cybersecurity technologies using industry best practices in order to manage cyber risk to protect the company, customers and employees. You'll play a crucial role in developing and implementing robust cybersecurity defense strategies, overseeing security operations & engineering, and bringing a blend of technical expertise in hybrid environments (cloud/on-prem), leadership skills, and strategic thinking to stay ahead of evolving cyber threats.This outcome-oriented leader is responsible for developing and leading a world class security operations and engineering team responsible for implementing and applying technologies, processes, and practices designed to protect Discount Tires digital assets from malicious attack, damage, or unauthorized access. This team provides and operates the tactical and functional tools of cybersecurity in an organized approach to identify, protect, respond, and mitigate cyber threats.
Essential Responsibilities:Lead, manage, and mentor the team of Cyber Security Engineers and Security Operations Analysts, assisting them in developing their skills - providing direction, motivation, and strategic oversight.Set vision and roadmap for development of enterprise cybersecurity technology capabilities they operate and provide to the enterprise.Optimize detection and response capabilities with a focus on automation.Participate in monitoring, validating, classifying, and responding to SOC-escalated security eventsOversee the establishment, maintenance, and implementation security operations playbooks and effective and actionable metrics to manage performance of controls and processes.Proactively drive standardization, optimization, and automation of key processes and functions across all aspects of security operations.Plan, coordinate and manage 3rd party provided penetration testing services, remediation activities, and post-remediation re-testing.Ensure tight linkage between architecture, engineering, and operations teams with identity management and governance, risk, and compliance functions.Lead oversight of timeliness and quality of vendor services and deliverables, in partnership with IT VMOLead information security improvements across the company's IT estate, by overseeing cyber fusion center operations functions including cyber threat intelligence, detection engineering, threat detection and incident response, vulnerability management and attack surface reduction, and metrics and reporting functions; help balance the need to protect the company's digital assets with delivering technical capabilities that enable business innovation and growth; contributing to the company's efforts to maintain regulatory compliance; drive increased service delivery and consistency in security enablement processes across the businessAddress cyber security topics, including incident response, training, policy and compliance; engage with Company leadership and clients on assorted topics related to the Company's security capabilitiesEnsure effective levels of threat, vulnerability, and asset visibility; leverage metrics on security risk to continuously improve prevention, detection, response, awareness; aggressively drive automation of processes and functions wherever possible and effectiveCultivate and manage an effective team to dedicated to fulfilling the organization's mission through highly successful program implementation, team engagement and continuous improvement; direct priorities and determine appropriate skills needed to address emerging opportunitiesBuild and sustain collaborative relationship with key stakeholders across IT and the Company; ensure security operations strategy is aligned with company technology and risk strategies
Qualifications:10+ years related security experiencePrior experience building and managing security operations including people, processes, and technology stack implementationPrior experience overseeing incident response activities and forensic investigations in enterprise environmentsIn-Depth knowledge of EDR, CDR, and SIEM technologiesKnowledge of containerization security (e.g., Docker, Kubernetes) in AWS ECS or EKSStrong understanding of cloud security, particularly in Azure and AWS environmentsStrong knowledge of network security, encryption, access control, and security protocolsExcellent written and verbal communication skillsAbility to influenceUnderstanding of risk managementExperience working in retail technology is preferred but not requiredKnowledge of the industry and key playersAbility to leverage industry contactsEnd to end security experience and knowledgeAbility to build strategic direction and develop a visionFinancial business acumenExperience negotiating with, and managing, vendors
Education:Bachelors or advanced degree is preferred but not required.Possession of or ability to obtain professional certifications in information security or risk management, such as a CISSP, CISM, CEH, or forensic certifications.Discount Tire provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local law.#LI-Onsite#LI-DV1
Essential Responsibilities:Lead, manage, and mentor the team of Cyber Security Engineers and Security Operations Analysts, assisting them in developing their skills - providing direction, motivation, and strategic oversight.Set vision and roadmap for development of enterprise cybersecurity technology capabilities they operate and provide to the enterprise.Optimize detection and response capabilities with a focus on automation.Participate in monitoring, validating, classifying, and responding to SOC-escalated security eventsOversee the establishment, maintenance, and implementation security operations playbooks and effective and actionable metrics to manage performance of controls and processes.Proactively drive standardization, optimization, and automation of key processes and functions across all aspects of security operations.Plan, coordinate and manage 3rd party provided penetration testing services, remediation activities, and post-remediation re-testing.Ensure tight linkage between architecture, engineering, and operations teams with identity management and governance, risk, and compliance functions.Lead oversight of timeliness and quality of vendor services and deliverables, in partnership with IT VMOLead information security improvements across the company's IT estate, by overseeing cyber fusion center operations functions including cyber threat intelligence, detection engineering, threat detection and incident response, vulnerability management and attack surface reduction, and metrics and reporting functions; help balance the need to protect the company's digital assets with delivering technical capabilities that enable business innovation and growth; contributing to the company's efforts to maintain regulatory compliance; drive increased service delivery and consistency in security enablement processes across the businessAddress cyber security topics, including incident response, training, policy and compliance; engage with Company leadership and clients on assorted topics related to the Company's security capabilitiesEnsure effective levels of threat, vulnerability, and asset visibility; leverage metrics on security risk to continuously improve prevention, detection, response, awareness; aggressively drive automation of processes and functions wherever possible and effectiveCultivate and manage an effective team to dedicated to fulfilling the organization's mission through highly successful program implementation, team engagement and continuous improvement; direct priorities and determine appropriate skills needed to address emerging opportunitiesBuild and sustain collaborative relationship with key stakeholders across IT and the Company; ensure security operations strategy is aligned with company technology and risk strategies
Qualifications:10+ years related security experiencePrior experience building and managing security operations including people, processes, and technology stack implementationPrior experience overseeing incident response activities and forensic investigations in enterprise environmentsIn-Depth knowledge of EDR, CDR, and SIEM technologiesKnowledge of containerization security (e.g., Docker, Kubernetes) in AWS ECS or EKSStrong understanding of cloud security, particularly in Azure and AWS environmentsStrong knowledge of network security, encryption, access control, and security protocolsExcellent written and verbal communication skillsAbility to influenceUnderstanding of risk managementExperience working in retail technology is preferred but not requiredKnowledge of the industry and key playersAbility to leverage industry contactsEnd to end security experience and knowledgeAbility to build strategic direction and develop a visionFinancial business acumenExperience negotiating with, and managing, vendors
Education:Bachelors or advanced degree is preferred but not required.Possession of or ability to obtain professional certifications in information security or risk management, such as a CISSP, CISM, CEH, or forensic certifications.Discount Tire provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local law.#LI-Onsite#LI-DV1