Loading...
 

(CEN) CYBERSECURITY OPERATIONS LEAD

Apply now »

Date: Nov 25, 2021

Location: Monterrey, NLE, MX, 64000

Company: CEMEX

Job Description

The Cyber Security Operations Lead manages a 24/7 CSOC team (outsourced) protecting CEMEX people, assets, and reputation. Leads, guides, and directs daily operations; in partnership with the infrastructure and service delivery manager, the Cybersecurity operations Lead develops, implements and supports Global Security strtegy, Data Center Security, and Crisis Management initiatives, processes and best practices to support strategic goals and drive performance metrics. Monitors events and threats that have the potential to compromise the safety and security of CEMEX personnel, assets, and data.

Manages the resolution, escalation and communication of security issues.

Main Responsibilities

  • Be responsible for the leadership and management of CEMEX IT Security Operations defining and validating the right execution of the services through an effective management of outsourcing program complying with the committed service levels and security regulations to detect, prevent and respond on security threats, managing efficiently IT security operations, cybersecurity incidents, and forensic activities.
  • Develop and maintain cyber metrics with necessary reports and follow up the right execution of Security services together with our Outsourcing services, always working on continuous improvement
  • Lead on the development and implementation of policies, protocols, procedures, and related security initiatives
  •  Keep up to date with developments in security standards, technology and working methods, ensuring they are fully investigated and adopted where appropriate to ensure that services remain economically efficient, customer focused and fit for purpose.
  • Design, coordinate and oversee monitoring capabilities to verify the security of systems, networks, databases, user behavior, file integrity, and cloud environments, and manage the remediation of identified risks and vulnerabilities

Position Challenges

  • Implement new standard technologies with the minimal disruption to the operations Identify areas of improvement required to comply with state-of-the-art security program
  • Manage IT security services through an outsourcing supplier on offshore locations
  • Engage different Cemex areas to remediate detected vulnerabilities in IT services
  • Maintain standard configurations and practices across all the infrastructure and services all over the organization

Qualifications

Bachelor’s Degree in systems or Information Technology areas

Language: Spanish and English spoken and written fluent

Certifications: Certified Information Systems Auditor (CISA), Security administration and operations (SSCP), Certified Ethical Hacker (CEH). Or equivalents

Technical background in key aspects of IT security (Antivirus, Antispam, Network Intrusion Prevention Systems, Firewalls, Encryption, Vulnerability management, Identity and access management, Incident management, Web Content Filtering, Cybersecurity procedures, incident and response processes, disaster recovery processes, data loss prevention)

Experience

  • 6+          IT Security Operations experience
  • 5+          Proven knowledge in Vulnerability Management, Malware, Firewalls, IDS / IPS (Intrusion Detection / Intrusion Prevention)
  • 2+          Experience in managing Supplier relationships and outsourcing contracts
  • 3+          Data center knowledge and experience in Infrastructure

Internal/External Relations

Internally

  • Legal Counsel
  • Local IT Managers
  • IT Operations Director
  • Corporate security and risk managers
  • Internal Control manager

External

  • IT Delivery Manager – outsourcing supplier for servers and systems operations
  • Network Delivery Manager - outsourcing supplier for telecom services
  • Audit Partner – KPMG
  • Security Operations Center DPE - IBM

CEMEX Diversity and Inclusion Statement

At CEMEX, we recognize the diversity of the world in which we live and in which we do business. We respect diversity, we address the inclusion and non-discrimination of any talented person, regardless of gender, physical ability, age, sexual orientation, culture, ethnicity, religion, political affiliation, marital status, pregnancy / maternity / paternity and nationality. We promote a culture of equity for the construction of a sustainable business and the well-being and development of CEMEX employees.