Senior Vice President, Cybersecurity Engineering
|Published||May 25, 2023|
|Location||Culver City, CA|
Over the last 20 years, Ares' success has been driven by our people and our culture. Today, our team is guided by our core values - Collaborative, Responsible, Entrepreneurial, Self-Aware, Trustworthy - and our purpose to be a catalyst for shared prosperity and a better future. Through our recruitment, career development and employee-focused programming, we are committed to fostering a welcoming and inclusive work environment where high-performance talent of diverse backgrounds, experiences, and perspectives can build careers within this exciting and growing industry.Job DescriptionAres Management is currently seeking a Senior Vice President of Cybersecurity Engineering to join the Cybersecurity team in one of our North American offices. The IT group consists of over 200 team members globally and is responsible for the firm's technology landscape. The Cybersecurity team within IT oversees and manages Ares' global information security governance, controls engineering, and operations.The ideal candidate will be passionate about information security, engineering solutions to security challenges, and dealing with the latest threats. This position will require hands-on experience with engineering innovative solutions, building process around solutions, and supporting the tools and processes that are implemented. The candidate must interact with various IT functions to properly design solutions that balance business enablement with security. The ideal candidate will have a background in system, application, network, and cloud security supporting large, public and/or regulated enterprises, running both Windows and Linux.This role will also be active in defining, implementing, monitoring, and improving operational security processes; leveraging threat intelligence and automation; and if required, investigating events to determine appropriate response. This role will work closely with other members of the Cybersecurity and Information Technology teams, as well as with stakeholders across the business.Primary functions and essential responsibilitiesEffectively interact with colleagues across the Cybersecurity team, as well as the broader Technology and business operations teamsArchitect and design a secure environment where business tasks are supported in a way that enables the users to perform them efficiently and securelyAbility to clearly identify, capture, articulate, design, implement, and maintain security operations use casesAuthor system and operational documentation on any new controls and processes implementedExperience working with SOAR or general scripting to automate repetitive tasks and drive efficiencies so analysts can work on more advanced tasksSystems Management and administration of information security systems and related controlsIdentification and development of critical alerts and signals for monitoringAdvise production operations, network engineering and IT Infrastructure on technical security issuesPartner with the security operation team to improve tool usage and workflow, as well as with the platform engineering team to mature monitoring and response capabilitiesDetermine security requirements by evaluating business strategies and needs; research information security standards; conduct system security and vulnerability analyses and risk assessments; study architecture/platform; identify integration issues; prepare cost estimatesEngage in information security projects that evaluate existing security infrastructure and propose changes as defined by security leadership and architectsDeliver projects on time, within budget and in accordance with service level agreements (SLAs)Influence the planning and execution of incident response and postmortem exercises, with a focus on creating measurable benchmarks to show progress (or deficiencies requiring additional attention)Work in tandem with architects, the security operations center (SOC), incident responders (in cases of anomalous activity and host compromise), and technology infrastructure and development team membersPerform other duties and projects as assignedQualificationsEducation: Bachelor's degree in Computer Science, Information Technology, Business, or Discipline involving Data AnalyticsCISSP; other related professional Certifications such as GSEC, GCIA, OSCP, etc. are preferredExperience Required: 10+ years of experience in Enterprise Cybersecurity or with a reputed services/consulting firm offering Security Consulting, Implementation or Managed Security servicesExperience in working with relevant control and governance frameworks; including identifying gaps and engineering or improving related controlsExperience in managing or architecting highly available and secure Windows and Linux environmentsExperience working in 24x7 operational environmentsExperience in scripting languages such as Powershell or PythonExperience in SOAR (Security Orchestration Automation Response) platform preferredGeneral Requirements: Excellent communication (written, verbal, presentation, documentation) and client service skills; capability of interacting with stakeholders to drive project/task/support engagementStrong understanding of the offensive and defensive aspects of cybersecurityStrong knowledge of application, system, database and network securityExperience with security information and event management (SIEM) systems, threat intelligence platforms, security automation and orchestration solutions, intrusion detection and prevention systems (IDS/IPS), file integrity monitoring (FIM), data loss prevention (DLP), cloud security monitoring, and other network and system monitoring toolsDriving measurable improvement in monitoring and response capabilities at scaleWell-developed analytic, qualitative, and quantitative reasoning skills and demonstrated creative problem-solving abilities.Strong team player; ability to collaborate well with others to solve problems and actively incorporate input from various sources; mentor junior team membersAbility to manage challenging workflow in-fast paced, dynamic organization, managing multiple assignments in a deadline driven environmentStrong sense of ownership and accountabilityInquisitive and committed to continual improvement/learningAbility to work independently within a fast-paced environment with a hands-on approachAnalytical and problem-solving mindset with demonstrated effective decision-making skillsAbility to be flexible in terms of hours in order to coordinate with team members across time zonesComfort in dealing with ambiguity and uncertainty in a dynamic environmentDependable, great attitude, highly motivated and a team playerAbility to resolve issues with minimal supervisionReporting RelationshipsChief Information Security OfficerCompensationThe anticipated base salary range for this position is listed below. Total compensation may also include a discretionary performance-based bonus. Note, the range takes into account a broad spectrum of qualifications, including, but not limited to, years of relevant work experience, education, and other relevant qualifications specific to the role.$200,000.00 - $250,000.00The firm also offers robust Benefits offerings. Ares U.S. Core Benefits include Comprehensive Medical/Rx, Dental and Vision plans; 401(k) program with company match; Flexible Savings Accounts (FSA); Healthcare Savings Accounts (HSA) with company contribution; Basic and Voluntary Life Insurance; Long-Term Disability (LTD) and Short-Term Disability (STD) insurance; Employee Assistance Program (EAP), and Commuter Benefits plan for parking and transit.Ares offers a number of additional benefits including access to a world-class medical advisory team, a mental health app that includes coaching, therapy and psychiatry, a mindfulness and wellbeing app, financial wellness benefit that includes access to a financial advisor, new parent leave, reproductive and adoption assistance, emergency backup care, matching gift program, education sponsorship program, and much more.