Sleep Number Corp
Cybersecurity Operations, Investigations and Incident Response
Sleep Number Corp, Orlando, Florida, us, 32885
Cybersecurity Operations, Investigations and Incident ResponseCompany Overview
Sleep Number is a sleep wellness technology leader. For nearly four decades, we have placed sleep at the center of wellbeing, improving over 15 million lives with our Sleep Number smart beds. We are guided by our purpose – to improve the health and wellbeing of society through higher quality sleep.
Position Purpose
This individual contributor position plays a key role in shaping and maturing Sleep Number’s cybersecurity operations (SOC), cyber investigations, and incident response strategy by leading the Security Operations, Cyber Investigations, and Incident Response capability within Sleep Number’s Information Security organization, including closely overseeing third party-managed services.
Primary Responsibilities
Develop and implement strategies to enhance the SOC's effectiveness, threat detection, and incident response capabilities with other technology teams.
Provide coaching and feedback to third-party security operations staff and account manager(s). Ensure KPIs are maintained. Escalate non-compliance to contractual agreement(s).
Lead development and maintenance of quality SOC playbooks.
Execute CSIRT playbooks as Cyber Incident Commander during cyber incidents.
Lead cybersecurity investigations and incident handling activities.
Develop and conduct incident response tabletop exercises and simulations at least twice annually.
Analyze security incidents to identify root causes and recommend corrective actions.
Develop and implement threat detection and monitoring strategies in partnership with platform owners.
Communicate effectively with executive leadership on the status of cybersecurity operations and incidents.
Partner closely with security engineers and other technology teams to implement improvements to detections and monitoring platforms.
Provide regular updates and reports to senior management and relevant stakeholders.
Drive prioritization and ownership of improvements needed in alignment with overall cybersecurity and technology strategies.
Key Performance Indicators
Hold security operations partner(s) accountable to KPIs outlined as part of contractual obligations.
Lead and execute cybersecurity events, investigations, and validations in accordance with internal service level agreements (SLAs).
Achieve improvements to comprehensive security tooling and communications.
Successful execution of published CSIRT playbook(s) during incidents.
Conduct at least two internal incident response tabletops per year.
Position Requirements
7+ years of relevant professional experience.
5+ years of demonstrated experience in cybersecurity incident handling and security operations.
BA/BS Degree in Cybersecurity, Computer Science, or related discipline, or equivalent practical experience.
CISSP Certification preferred.
Proven experience in managing an outside managed service provider.
Knowledge, Skills & Abilities
Exceptional written and verbal communication skills.
High level of comfort leading a CSIRT team including VP+ level executives.
Proven experience in incident handling techniques within a cloud-based environment.
Experience with thorough documentation around incident response analysis activities.
Knowledge of digital forensics tools and techniques.
Working Conditions
This is a hybrid position that requires at least 3 days a week in our Minneapolis office for candidates within 45 miles of our downtown Minneapolis office.
EEO Statement
Sleep Number is an equal opportunity employer. We are committed to recruiting, hiring, and promoting qualified people and prohibit discrimination based on protected characteristics.
About Us
We’re passionate about improving lives. Be part of a health, wellness, and technology revolution with quality sleep at its core. Join #TeamSleepNumber.
#J-18808-Ljbffr
Sleep Number is a sleep wellness technology leader. For nearly four decades, we have placed sleep at the center of wellbeing, improving over 15 million lives with our Sleep Number smart beds. We are guided by our purpose – to improve the health and wellbeing of society through higher quality sleep.
Position Purpose
This individual contributor position plays a key role in shaping and maturing Sleep Number’s cybersecurity operations (SOC), cyber investigations, and incident response strategy by leading the Security Operations, Cyber Investigations, and Incident Response capability within Sleep Number’s Information Security organization, including closely overseeing third party-managed services.
Primary Responsibilities
Develop and implement strategies to enhance the SOC's effectiveness, threat detection, and incident response capabilities with other technology teams.
Provide coaching and feedback to third-party security operations staff and account manager(s). Ensure KPIs are maintained. Escalate non-compliance to contractual agreement(s).
Lead development and maintenance of quality SOC playbooks.
Execute CSIRT playbooks as Cyber Incident Commander during cyber incidents.
Lead cybersecurity investigations and incident handling activities.
Develop and conduct incident response tabletop exercises and simulations at least twice annually.
Analyze security incidents to identify root causes and recommend corrective actions.
Develop and implement threat detection and monitoring strategies in partnership with platform owners.
Communicate effectively with executive leadership on the status of cybersecurity operations and incidents.
Partner closely with security engineers and other technology teams to implement improvements to detections and monitoring platforms.
Provide regular updates and reports to senior management and relevant stakeholders.
Drive prioritization and ownership of improvements needed in alignment with overall cybersecurity and technology strategies.
Key Performance Indicators
Hold security operations partner(s) accountable to KPIs outlined as part of contractual obligations.
Lead and execute cybersecurity events, investigations, and validations in accordance with internal service level agreements (SLAs).
Achieve improvements to comprehensive security tooling and communications.
Successful execution of published CSIRT playbook(s) during incidents.
Conduct at least two internal incident response tabletops per year.
Position Requirements
7+ years of relevant professional experience.
5+ years of demonstrated experience in cybersecurity incident handling and security operations.
BA/BS Degree in Cybersecurity, Computer Science, or related discipline, or equivalent practical experience.
CISSP Certification preferred.
Proven experience in managing an outside managed service provider.
Knowledge, Skills & Abilities
Exceptional written and verbal communication skills.
High level of comfort leading a CSIRT team including VP+ level executives.
Proven experience in incident handling techniques within a cloud-based environment.
Experience with thorough documentation around incident response analysis activities.
Knowledge of digital forensics tools and techniques.
Working Conditions
This is a hybrid position that requires at least 3 days a week in our Minneapolis office for candidates within 45 miles of our downtown Minneapolis office.
EEO Statement
Sleep Number is an equal opportunity employer. We are committed to recruiting, hiring, and promoting qualified people and prohibit discrimination based on protected characteristics.
About Us
We’re passionate about improving lives. Be part of a health, wellness, and technology revolution with quality sleep at its core. Join #TeamSleepNumber.
#J-18808-Ljbffr