As the largest provider of health care products and services to office-based dental and medical practitioners, Henry Schein Inc. understands what it takes to be successful. Ranked first in its industry on the FORTUNE® World's Most Admired Companies list we set ourselves apart through our culture. Our Culture is defined by our values, including mutual responsibility, ethical behaviour, creativity and open communication. Approximately 25,000 Team Schein Members (TSMs) worldwide help us to keep our culture and continue to thrive as a leader in our industry.
Defensive/Offensive Cybersecurity Lead
This role will set a vision and define a compelling roadmap to build a fit for purpose defensive & offensive services portfolio, aimed at monitoring and responding to security events, and delivering measurable outcomes.
This role will develop new innovative solutions to advance the detection and remediation of cyber events, validate requirements and resulting services with HIS stakeholders, develop metrics, and structure an effective and agile experimentation framework in partnership with the rest of the cyber security team to test effectiveness of our cyber tools & processes landscape.
The lead will also oversee the financial aspects, support internal and external security audits, and report to the chief information security officer (CISO).
Supervise and manage the Global Security Operations Center (SOC)
Be responsible for penetration testing/ vulnerability management teams
Define a plan for hiring and training the defensive/offensive team members
Develop and integrating, as needed, with crisis management plans
Create reports and dashboards to monitor performance and effectiveness of the services
Design and execute periodic tabletop exercises to test incident response plans
Leveraging on HSI telemetry and thread intelligence sources, confirm, determine or investigate critical alerts
Vulnerability Management : continually identify, assess, report on, manage and remediate vulnerabilities across IT services
Penetration testing : prepare and execute, with the support of the team, an exhaustive, risk-based penetration testing plan to assess the adherence of the security controls to HSI policies and standards, as well as to industry best practices
10-15 years of experience in defensive security, including insourced/managed Security Operation Centers, threat hunting and threat intelligence, offensive/defensive toolsets and platforms
~ Knowledge and familiarity of multiple SIEM solutions including, QRadar, Splunk, And Microsoft Sentinel
~ Extensive knowledge of incident response processes and hand-on experience in cyber incident investigations
~ A Bachelor Degree is a plus