Description:
Kraft Heinz has a seat at the table for a Manager of Threat and Vulnerability. This Manager will be working with industry-leading products to deliver modern solutions to help enhance existing services to meet the increasing needs for protecting our users, devices, networks, applications, and data. This role will be part of the group within Cybersecurity responsible for network and infrastructure security services including firewall, IPS/IDS, Content Filtering, SASE, SSE, ZTNA, EDR, and microsegmentation. We are looking for someone with a passion for building and managing security programs through technology with a foundation of people and process.
What’s on the Menu?
- Continuously enhance the protection of our networks, compute, storage, servers, endpoints, mobile devices, network, and co-manages the solutions with the MSSP.
- Drive excellence across engineering practices at Kraft Heinz through partnership and oversight of in-house and external support resources for level 2 engineering for MSSP escalations for the Threat & Vulnerability Management security technologies utilized at Kraft Heinz (e.g. Security Information Event Management, ZTNA, End Point Security, etc).
- Foster strong relationships with MSSP engineers and key support personnel to ensure operational excellence.
- Provide input to the Group Lead of Information Security to ensure Threat & Vulnerability Management security technologies are maturing and operating at an optimal level.
- Monitor and ensure adherence to security standards through stakeholder engagement.
- Monitor MSSP operational excellence and ensure ongoing collaboration with greater IT.
- Maintains Threat & Vulnerability Management artifacts (strategy, decision, solution design, standards, etc.).
- Manages, configures, and monitors systems associated with Threat & Vulnerability Management solutions; provides incident and problem management support.
Recipe for Success
- I have experience working with security operations/engineering.
- I have an understanding of fundamentals for securing public cloud environments (AWS, GCP, Azure).
- I have experience in leading technical teams in designing, implementing, and operating information security solutions across multiple security domains for a complex and multinational company.
- I have experience in managing cybersecurity solutions in mission-critical, 24x7 production environments.
- I have experience with defense in depth concepts and supporting security technologies, including but not limited to: endpoint protection, zero trust network access, vulnerability management, browser isolation, firewalls, IDS/IPS, SWG, CASB, micro segmentation, and SIEM.
- I have experience in driving continuous service and process improvements and translating them into viable solutions.
- I have professional certifications such as ITIL, CCNP, CISM, CISSP, or similar