Technology Lead - Information Security

At Broadridge, we've built a culture where the highest goal is to empower others to accomplish more. If you’re passionate about developing your career, while helping others along the way, come join the Broadridge team.

Job Description

We are seeking a highly skilled and experienced Lead Security Incident Response Specialist to join our dynamic team. The ideal candidate will have a deep understanding of cybersecurity incident response methodologies and extensive hands-on experience in managing and leading incidents across various environments, including on-premises, cloud, and hybrid infrastructures.

Role and Responsibilities:

• Lead and orchestrate the response to security incidents, encompassing malware outbreaks, data breaches, and phishing attacks, ensuring swift and effective resolution.
• Conduct thorough investigations to identify the root cause of security incidents and recommend remediation measures to prevent future occurrences.
• Develop and deploy comprehensive incident response plans and playbooks, documenting step-by-step procedures for diverse security incidents in alignment with industry best practices and regulatory requirements.
• Conduct post-incident reviews and lessons learned activities, identifying areas for improvement, and implementing corrective actions to enhance overall incident response capabilities.
• Facilitate tabletop exercises to simulate real-world security scenarios, evaluating the efficacy of incident response plans and procedures.
• Collaborate seamlessly with cross-functional teams, including IT, legal, and compliance, to ensure the timely resolution of security incidents and compliance with regulatory guidelines.
• Provide mentorship and guidance to junior incident response team members, fostering a culture of continuous learning and professional development.
• Stay abreast of the latest cybersecurity threats and trends, proactively identifying potential vulnerabilities and recommending proactive measures to mitigate risks.
• Provide regular updates and briefings to key stakeholders on the current threat landscape and its potential impact on the organization.
• Explore opportunities to introduce automation and innovative technologies in incident response processes to enhance efficiency and reduce response times.

Requirements:

• Bachelor’s degree in computer science, Information Security, or a related field. Good to have advanced degree or relevant certifications (e.g., CISSP, CISM, GIAC).
• Minimum of 8 years of experience in cybersecurity incident response, with a proven track record of successfully managing and resolving complex security incidents.
• Hands-on experience with next-generation security technologies, encompassing Managed Detection and Response (MDR), Endpoint Detection and Response (EDR), and email security solutions.
• In-depth expertise in AWS and Azure cloud environments, including practical experience with security controls, monitoring, and incident response procedures within these platforms.
• Proficiency in utilizing Splunk/SIEM log analysis platforms for comprehensive monitoring and analysis of security events and logs across on-premises, cloud, and hybrid infrastructures.
• Demonstrated knowledge of the MITRE ATT&CK framework, showcasing the ability to map observed threats and incidents to the framework for thorough analysis and response.
• In-depth knowledge of cybersecurity frameworks, including NIST, ISO 27001, HIPPA, and PCI DSS.
• Strong analytical and problem-solving skills, with a demonstrated ability to quickly assess and respond to security incidents in high-pressure environments.
• Excellent communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and capability to communicate technical concepts to non-technical stakeholders.
• Commitment to continuous learning and staying updated on industry developments and emerging technologies.

Hiring Duration & Start Date

This is a full-time position/s and the start date to be as soon as possible.

Broadridge associates helped us envision our Connected Workplace - a work model that allows associates around the globe, dependent upon their role responsibilities, take advantage of the benefits of both on-site and off-site work to support our clients, one another, and the communities where we live and work. Our Connected Workplace is grounded in the concept of FACS: Flexible, Accountable, Connected, and Supported, which is our commitment to our associates. FACS supports our strong culture and allows us to achieve business goals while supporting meaningful work-life integration for our associates.

We are dedicated to fostering a diverse, equitable, and inclusive environment and committed to providing a workplace that empowers associates to be authentic and bring their best to work. We believe that associates can only do their best when they feel safe, understood, and valued, and we work diligently and collaboratively to ensure Broadridge is a company—and ultimately a community—that recognizes and celebrates diversity in all its dimensions.