|Job company||Delek US Holdings, Inc.|
|Job specification:||Delek US Holdings, Inc. is a diversified downstream energy company with assets in petroleum refining, logistics, asphalt, renewable fuels and convenience store retailing. We are hiring for the position of IS & Cybersecurity Operations Manager located in our Brentwood, TN corporate office.
The Cybersecurity Operations Manager is responsible for all internal security operations tasks and management of Security Operations Center (SOC) and the analyst staff associated with the SOC. The Cybersecurity Operations Manager is responsible for the technical and process direction of the SOC. The Cybersecurity Operations Manager provides direction to both the senior and non-senior analyst staff as well as a liaison to the Infrastructure Engineering and Security Engineering teams.
The SOC is responsible to provide continuous investigation of correlated security event feeds and the appropriate escalation in case of an identified security incident. The SOC is the primary contact for any suspected security incident and work together with the SIRT team on resolving incidents and remediating threats to the Delek US enterprise.
Come and #jointheenergy! We offer top of the line benefits along with health premium re-imbursements.
Serves as team leader and mentor, defining and driving goals and performance for the SOC
Responsible for driving execution of daily, weekly, and monthly metrics for statistical threats
Maintain awareness of trends in security regulatory, technology, and operational requirements
Oversight, planning and execution of any required vulnerability audits, penetration tests or forensic IT audits or related investigations. Ensure that any findings are fed into projects improving overall IT Security.
Mentor and guide SOC Analysts and perform knowledge transfer to other teams as required
Responsible for security analysis, administration and remediation procedures, workflows and tasks
Evaluate existing SIEM rules, filters, events and use cases and adapt to meet the business requirements
Work with outside teams in the development of a comprehensive set of operational security policies and standards designed to permit the organization to achieve its business objectives while effectively managing our security and compliance requirements of meeting PCI and SOX goals.
Assist in implementation of new SOC tools and applications and processes
– Education, Skills & Experience
3+ years managing a security operations center
3+ years incident response and managing significiant incidents
5+ years working within the information security field, with emphasis on security operations, incident management, and security event analysis
In-depth familiarity with security policies based on industry standards and best practices
Working knowledge of SIEM & EDR technologies (e.g. Splunk, Rapid 7, Crowdstrike)
Incident management process development and incident management experience
Ability to lead and communicate efficiently within a team environment
– Education, Skills & Experience
Experience in designing and building security operations centers
Experience in OT/loT/ICS/SCADA environments
Professional certifications to include CISSP, GIAC, GCIH
We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity or national origin, disability status, protected veteran status, or any other characteristic protected by law. Equal Opportunity Employer/Disabled/Veterans.
Construction Oil & Energy Financial Services
Other Information Technology Management