Principal Director, Cyber Security Operations
Description
Envestnet is seeking a passionate and talented Principal Director, Cyber Security Operations to join our Data and Analytics team.
Envestnet is transforming the way financial advice and wellness are delivered. Our mission is to empower advisors and financial service providers with innovative technology, solutions, and intelligence to make financial wellness a reality for everyone.
Since our founding 20 years ago, we are fully vested in helping people live an intelligent financial life. If you love the idea of working in a Fintech company with the environment and excitement of a start-up where you are making everyday impact - then read on.
Job Summary:
Yodlee is seeking a highly experienced and strategic Principal Director of Cyber Security Operations. This role will be responsible for overseeing all aspects of our security operations.
Job Responsibilities:
- Leadership, Strategy and Planning:
- Develop and execute a comprehensive cyber security strategy aligned with organizational goals.
- Conduct risk assessments and develop mitigation plans to address identified risks.
- Plan and manage the cyber security budget, ensuring efficient allocation of resources.
- Collaborate with cross-functional teams, including IT, development, and business units, to ensure security is integrated into all aspects of the organization.
- Communicate effectively with executive leadership, providing regular updates on security posture and initiatives.
- Responsible for overseeing the implementation, measurement, and continuous improvement of security operations across the organization.
- Establish key performance metrics (KPIs) to track the effectiveness of incident response, vulnerability management, threat intelligence, and compliance activities.
- Develop and execute a comprehensive cyber security strategy aligned with organizational goals.
- Technology and Innovation:
- Evaluate and implement cutting-edge cybersecurity technologies and tools to enhance the organization’s security capabilities.
- Lead the selection and deployment of advanced cybersecurity technologies, such as AI-driven security analytics, threat intelligence platforms, and automated incident response systems.
- Ensure that the organization’s IT infrastructure is properly secured, with adequate encryption, firewalls, and access controls in place.
- Evaluate and implement cutting-edge cybersecurity technologies and tools to enhance the organization’s security capabilities.
- 24x7 Security Monitoring:
- Lead the Security Operations Center (SOC) to ensure continuous, around-the-clock monitoring and analysis of security events.
- Develop and implement SOC processes and procedures to enhance detection and response capabilities and experience with Expel and Crowdstrike Falcon.
- Oversee the deployment and management of security information and event management (SIEM) systems, including experience with Splunk.
- Lead the Security Operations Center (SOC) to ensure continuous, around-the-clock monitoring and analysis of security events.
- Platform Certifications:
- Ensure compliance with relevant security certifications and standards for our platform.
- Manage the certification process and maintain up-to-date documentation.
- Ensure compliance with relevant security certifications and standards for our platform.
- Threat Hunting:
- Develop and implement proactive threat hunting strategies to identify and mitigate potential threats.
- Collaborate with the SOC team to enhance threat detection and response capabilities.
- Develop and implement proactive threat hunting strategies to identify and mitigate potential threats.
- Incident Investigation:
- Lead the incident response team in the investigation and resolution of security incidents.
- Conduct thorough post-incident analysis and implement lessons learned to improve security posture.
- Lead the incident response team in the investigation and resolution of security incidents.
- Network and Systems Security Standards:
- Develop and enforce security standards and best practices for network and systems security.
- Ensure the security of on-premises and cloud-based infrastructure, including AWS.
- Develop and enforce security standards and best practices for network and systems security.
- Infrastructure Vulnerability Management:
- Develop and manage a comprehensive infrastructure vulnerability management program.
- Conduct regular vulnerability assessments and penetration testing.
- Collaborate with IT and development teams to remediate identified vulnerabilities.
- Develop and manage a comprehensive infrastructure vulnerability management program.
- Threat Monitoring:
- Implement and manage threat monitoring tools and processes to detect and respond to security threats.
- Integrate threat intelligence into security operations to enhance situational awareness, including experience with Recorded Future and Safe Breach.
- Implement and manage threat monitoring tools and processes to detect and respond to security threats.
- End Point Protection:
- Oversee the deployment and management of endpoint protection solutions.
- Ensure the security of all endpoints, including desktops, laptops, and mobile devices.
- Oversee the deployment and management of endpoint protection solutions.
- Standard Frameworks:
- Ensure compliance with industry-standard frameworks such as NIST, ISO 27001, CIS Controls, and others.
- Develop and implement policies, standards and procedures based on these frameworks to enhance the overall security posture.
- Conduct and assist with regular audits and assessments to ensure ongoing compliance with these frameworks.
- Ensure compliance with industry-standard frameworks such as NIST, ISO 27001, CIS Controls, and others.
- Hands-on Experience with SOC Tools:
- Hands-on experience with firewalls for network security and monitoring tools such as Palo Alto Networks, Fortinet, Cisco ASA, or Check Point, including experience with F5 Web Application Firewall (WAF)
- Implement and manage Identity and Access Management (IAM) solutions like Okta or Microsoft Azure AD.
- Oversee vulnerability and configuration management tools such as Nessus, Qualys, or Rapid7.
- Ensure data encryption using tools like BitLocker, VeraCrypt, or AWS Key Management Service (KMS).
- Manage AWS cloud security using AWS Security Hub, GuardDuty, and Inspector.
- Deploy and manage detection and response tools such as CrowdStrike, Carbon Black, or SentinelOne.
- Hands-on experience with firewalls for network security and monitoring tools such as Palo Alto Networks, Fortinet, Cisco ASA, or Check Point, including experience with F5 Web Application Firewall (WAF)
- Managing External MDR Partner:
- Oversee the relationship with external MDR partners to ensure effective threat detection and response.
- Collaborate with MDR providers to integrate their services with internal security operations.
- Evaluate and manage the performance of MDR services to ensure they meet organizational security requirements.
- Oversee the relationship with external MDR partners to ensure effective threat detection and response.
- Microsoft 365 Security:
- Implement and manage security measures for Microsoft 365 environments.
- Ensure the protection of data and compliance with security policies within Microsoft 365 applications to include Microsoft Purview.
- Utilize Microsoft 365 security tools such as Microsoft Defender for Office 365, Azure AD, and Microsoft Cloud App Security.
- Implement and manage security measures for Microsoft 365 environments.
- Team Management:
- Lead and mentor a team of cyber security professionals, fostering a culture of continuous improvement and professional development.
- Set performance goals, conduct regular evaluations, and provide feedback to team members.
- Recruit and retain top talent to build a high-performing security team.
- Lead and mentor a team of cyber security professionals, fostering a culture of continuous improvement and professional development.
Required Qualifications:
- Bachelor’s degree in computer science, Information Security, or a related field; advanced degree preferred.
- 10+ years of experience in cyber security, with at least 7 years in a leadership role.
- Extensive experience with SOC operations, threat hunting, incident investigation, endpoint protection, standard frameworks, managing external MDR partners, Microsoft 365 security, and strategic planning.
- Strong knowledge of infrastructure, network, cloud, and platform security, particularly in AWS environments.
- In-depth understanding of data protection regulations and best practices.
- Proven experience with identity and access management, including MFA and SSO.
- Excellent leadership, communication, and interpersonal skills.
- Relevant certifications (e.g., CISSP, CISM, CEH) are highly desirable.
About Us:
Envestnet is a leading independent provider of technology‐enabled investment and practice management solutions to financial advisors who are independent, as well as those who are associated with small or mid‐sized financial advisory firms and larger financial institutions. Envestnet's technology is focused on addressing financial advisors' front, middle, and back‐office needs while leveraging our platform to grow their businesses and expand client relationships.
We offer a highly competitive compensation and benefits package as well as the excitement, challenges, and rewards of a fast-growing, entrepreneurial company.
Why Choose Envestnet:
- Be a member of a leading financial services and products innovation company
- Competitive Compensation/Total Reward Packages that include:
- Health Benefits (Health/Dental/Vision)
- Paid Time Off (PTO) & Volunteer Time Off (VTO)
- 401K – Company Match
- Annual Bonus Incentives
- Parental Stipend
- Tuition Reimbursement
- Student Debt Program
- Charitable Match
- Wellness Program
- Health Benefits (Health/Dental/Vision)
- Work on global projects with diverse, energetic, team members who respect each other and celebrate differences.
Salary:
The annual base salary range for this position is $156,000 to $234,000.
Envestnet is an Equal Opportunity Employer.
#LI-SC1