Head of Information Security Operations

Описание вакансии

A CAREER WITH POINT72’S TECHNOLOGY TEAM

As Point72 reimagines the future of investing, our Technology group is constantly improving our company’s IT infrastructure, positioning us at the forefront of a rapidly evolving technology landscape. We’re a team of experts experimenting, discovering new ways to harness the power of open source solutions, and embracing enterprise agile methodology. We encourage professional development to ensure you bring innovative ideas to our products while satisfying your own intellectual curiosity.

The mission of our Information Security team is to ensure the development, implementation, and management of a comprehensive program that effectively protects the confidentiality, integrity, and availability of our information assets. Our team is comprised of security professionals with expertise in a diverse portfolio of security disciplines.

WHAT YOU’LL DO

As the Head of Security Operations, you will oversee and manage the information security operations of Point72. You will play a critical role in safeguarding our systems, networks, and data by proactively identifying and mitigating security threats. 

Specifically, you will:

•    Oversee a team of security professionals responsible for defending our global infrastructure, intellectual property, and sensitive data

•    Manage our comprehensive threat monitoring strategy and 24/7 Security Operations Center (SOC), ensuring rapid detection and response to security events across our global infrastructure

•    Lead cyber incident response for the firm, coordinating with internal stakeholders, technology partners, external incident handlers, and law enforcement 

•    Direct our threat intelligence program reacting to and anticipating emerging threats targeting financial services.  Leverage threat intelligence by integrating actionable insights into threat hunts, detection mechanisms, vulnerability management, preventative controls, and tabletop exercises. 

•    Manage threat hunting initiatives to proactively identify sophisticated adversaries that have evaded detection 

•    Drive vulnerability operations program, ensuring timely remediation of prioritized security weaknesses

•    Execute penetration tests to identify and treat findings to harden our infrastructure

•    Continually enhance threat detection capabilities by tuning and introducing new detection alerts

•    Conduct purple team exercises to introduce and test detection against simulated attacks. 

•    Design and facilitate cybersecurity tabletop exercises that test our response capabilities against financial services-specific attack scenarios

WHAT’S REQUIRED

This role requires a deep understanding of information security principles, experience with incident response and the ability to lead a team of security professionals in protecting our firm's sensitive financial data and intellectual property. Specifically, you should have:

•    Proven experience (10+ years) in leading security operations

•    Strong knowledge of information security principles, practices, and technologies, including threat monitoring, threat intelligence, threat hunting,  vulnerability management, incident response, and security operations

•    Experience with security monitoring tools, SIEM solutions, EDR platforms, and security incident response platforms

•    Demonstrated experience leading penetration testing programs, interpreting results and managing remediation

•    Experience designing and facilitating effective tabletop exercises for various security scenarios

•    Familiarity with relevant regulatory frameworks and industry standards (e.g., SEC requirements, NIST Cybersecurity Framework, etc.)

•    Excellent leadership and management skills, with the ability to inspire and motivate a team

•    Strong analytical and problem-solving abilities, with keen attention to detail

•    Excellent communication and collaboration skills, with the ability to effectively interact with stakeholders at all levels of the organization

•    Commitment to the highest ethical standards

•    Experience securing algorithmic trading environments and quantitative research platforms

•    Knowledge of cloud security architecture and containerization security

•    Understanding of data protection techniques for highly sensitive financial information

We take care of our people

We invest in our people, their careers, their health, and their well-being. When you work here, we provide:

• Fully-paid health care benefits
• Generous parental and family leave policies
• Mental and physical wellness programs
• Volunteer opportunities
• Non-profit matching gift program
• Support for employee-led affinity groups representing women, minorities and the LGBT+ community
• Tuition assistance
• A 401(k) savings program with an employer match and more

About Point72

Point72 Asset Management is a global firm led by Steven Cohen that invests in multiple asset classes and strategies worldwide. Resting on more than a quarter-century of investing experience, we seek to be the industry’s premier asset manager through delivering superior risk-adjusted returns, adhering to the highest ethical standards, and offering the greatest opportunities to the industry’s brightest talent. We’re inventing the future of finance by revolutionizing how we develop our people and how we use data to shape our thinking. For more information, visit www.Point72.com/working-here

The annual base salary range for this role is $300,000-$350,000 (USD) , which does not include discretionary bonus compensation or our comprehensive benefits package. Actual compensation offered to the successful candidate may vary from posted hiring range based upon geographic location, work experience, education, and/or skill level, among other things.