Business Wire, a Berkshire Hathaway company, is the global market leader in press release distribution and regulatory disclosure. We are on a mission to redefine how organizations connect with their audiences – and that’s just the beginning!
Organizations, large and small, depend on us to accurately publicize market-moving news and multimedia, and generate social engagements that develop interactions with their target audiences.
About the Role
Business Wire is committed to delivering secure and reliable software solutions to our internal stakeholders and external customers. We are looking for a talented Principal of Security Operations to join our team and drive our Security Operation, Detection & Response initiatives to new heights. As the Principal of Security Operations, you will be a key leader responsible for overseeing and advancing our security operations function. You will play a critical role in safeguarding our systems, data, and reputation by implementing and optimizing various security technologies and processes. You will enhance the security resilience of Business Wire, working closely with various teams to proactively protect our valuable assets and uphold our commitment to providing secure and reliable services to our clients.
What You’ll Do
- Security Operations Leadership: Provide mentorship, direction, and guidance to enhance our security capabilities associated with monitoring, detection, and response.
- Detection Platform Management: Oversee the management and optimization of our Security Information and Event Management (SIEM) platform to ensure timely detection and response to security incidents.
- Endpoint Protection: Implement and manage Endpoint Detection and Response (EDR) solutions to protect our endpoints from advanced threats and intrusions.
- Monitoring and Analysis: Establish and maintain a robust monitoring and analysis program to identify and respond to security events in real-time.
- Investigation and Forensics: Conduct thorough investigations into security incidents, analyzing root causes and providing remediation recommendations.
- Threat Hunting: Proactively search for and identify potential security threats and vulnerabilities, staying ahead of emerging attack vectors.
- Incident Response Leadership: Lead incident response efforts, coordinating with internal and external stakeholders to effectively contain and mitigate security incidents.
- AWS Detection and Incident Management: Lead and manage security incidents and response procedures within AWS environments, utilizing native AWS security features effectively.
- Preventive Capabilities Management: Oversee and optimize preventive security technologies, including DLP, CASB, Crowdstrike XDR, and others to mitigate potential threats.
- AWS Security Best Practices: Implement and maintain security controls in AWS environments, adhering to industry best practices and ensuring compliance with security standards.
What You’ll Need
- 12+ years of hands-on and leadership experience in security operations, incident management, and threat hunting, including 5+ years within an AWS environment.
- Deep understanding of security technologies and tools, including SIEM, EDR, threat intelligence platforms, and other security monitoring and detection solutions.
- Proven experience managing security investigations and implementing security best practices within AWS environments.
- Demonstrated expertise in leading and managing incident response efforts, with a strong understanding of incident handling best practices. Extensive experience handling and leading complex incident response activities across a dynamic technical ecosystem.
- Demonstrated knowledge of preventive security technologies such as DLP, CASB, Crowdstrike XDR, as well as their integration into security operations.
- Proven leadership skills with the ability to inspire and motivate a team, collaborate with cross-functional stakeholders, and drive positive change.
- Exceptional communication skills to effectively collaborate with cross-functional teams, present security findings to executives, and articulate complex technical concepts to non-technical stakeholders.
- Strong analytical mindset and problem-solving abilities to assess complex security incidents and develop effective solutions.
- Ability to develop and execute long-term security operations strategies, aligning security goals with business objectives.
- Familiarity with threat intelligence sources and experience in applying threat intelligence to enhance security operations.
- A mindset focused on continuous improvement, staying up-to-date with the latest security trends, and proactively adopting new security technologies and practices.
- Ability to adapt to dynamic security challenges and work in a fast-paced environment.
- Certifications such as CISSP, CISM, GIAC, or AWS security certifications are a plus.
- Ability to work remotely
- Excellent health benefits that begin on your first day of employment
- $100 monthly fitness allotment, a tuition reimbursement program, and enhanced mental health resources
- 401(k) plan with generous company match, and annual profit sharing contribution (subject to company performance)
- PTO, Floating Holidays, Wellness Day Off, Birthday Day Off, and more!
Business Wire will not sponsor a new applicant for employment authorization for this position.
What We Offer
The base salary range for this position is $160K to $210K/year. Offered salary will be determined by several factors, including but not limited to: applicant’s education, experience, knowledge, skills and abilities, as well as internal equity and alignment with geographic market data. Business Wire reserves the right to modify this salary range at any time.
Business Wire’s total rewards include:
A pre-employment background check will be required after the acceptance of an offer. Business Wire is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Pursuant to the San Francisco Fair Chance Ordinance and other similar state laws and local ordinances, and its internal policy, Business Wire will also consider for employment qualified applicants with arrest and conviction records.