Director, Cyber Operations

Position Summary:

Responsible for demonstrating strong leadership qualities, a solid work ethic, a deep understanding of technology across all layers of the stack, a passion for security, and the ability to work in a fast-paced environment.  Comfortable operating in a strategic and supervisory role while sustaining the technical knowledge necessary to embrace new technologies and anticipate emerging threats. 

Responsibilities:             

• This position will lead the day-to-day operations and continued evolution of the organization's Cyber Incident Response program and Global Cyber Security Operations Center.
• The Leader is expected to be a subject matter expert in cyber forensics, industry best practices and incident response process
• The Director will have overall accountability for a timely and appropriate response to security threats and incidents.
• Lead, manage and mature the people, process, and technologies present in a 24x7 global security operations center.
• Collaborate with stakeholders such as Crisis Management and Business Continuity to support security larger initiatives, assessments, and resilience testing.
• Develop and direct the Enterprise Incident Response Program ensuring continuous maturity.
• Define and maintain dashboards and metrics that support Incident Response Program and Cyber Security Operation Center maturity efforts.
• Provide cyber security briefings, status updates, and consultancy to various audiences, including technical and executive leadership teams.
• Leverage the incident response program to conduct cyber table-top simulations and educational sessions with stakeholders Provide leadership for incident response investigations, coordinate response activity and brief senior leaders while maintaining confidentiality Skills and Abilities Management and Leadership.
• This includes directing a team on managing, maintaining, and increasing visibility into the organization and applying threat intelligence to proactively mitigate risk.
• Collaborates with Privacy leadership to develop comprehensive plans to address internal security requirements, as well as external regulatory and legal requirements.

Requirements:

• Demonstrates knowledge of, adherence to, monitoring and responsibility for compliance with state and federal regulations and laws as they pertain to this position.
• A strong knowledge of how to effectively architect, engineer, and operate security technologies across the stack.
• A deep working knowledge of attack techniques, the cyber kill chain, and vulnerability management methodologies.
• An understanding of the incident response lifecycle, including containment, eradication, and recovery.
• A strong technical background in enterprise networking, firewall, storage options, server infrastructure, operating systems, database technologies, applications and desktop security.
• A comprehension of security standards and frameworks, rules and regulations, and system trust principals, such as OWASP, SANS Top 20, PCI-DSS, SOX-404, CFPB, FDIC, FFIEC, SSAE-16/18, and SOC2.
• The ability to discern patterns from large amounts of disparate information.
• Experience with the tools and techniques used in security event analysis, incident response, computer forensics, malware analysis, or other areas of security operations.
• Strong understanding of advanced persistent threats, attacker methodologies, attack lifecycle, cyber kill chain, diamond modeling and the MITRE framework.
• Preferred Qualifications Advanced certification in cyber security a plus, CISSP, GCIH, GCFE, GCIA, CISM or similar.
• Experience within a highly regulated industry (banking, finance, investments, etc.)
• Experience assessing risk and implementing enterprise administrative and technical mitigation controls.
• Minimum five (5) years of management experience preferred.
• Bachelor’s Degree required in Business, Computer Science, Engineering, Mathematics, or other related area and/or equivalent experience. Minimum of (8) years combined experience in one or more of the following fields: Information Security, Information Technology, Business Management, or other related fields.

Why work for #teamloanDepot:

• Work with other passionate, purposeful, and customer-centric team members
• Aggressive earning potential with good career growth
• Inclusive, diverse, and collaborative culture where people from all backgrounds can thrive
• Extensive internal growth and professional development opportunities including tuition reimbursement
• Comprehensive benefits package including Medical/Dental/Vision
• Wellness program to support both mental and physical health
• Generous paid time off options to support work-life balance

About loanDepot:

loanDepot (NYSE: LDI) is a digital commerce company committed to serving its customers throughout the home ownership journey. Since its launch in 2010, loanDepot has revolutionized the mortgage industry with a digital-first approach that makes it easier, faster, and less stressful to purchase or refinance a home. Today, as the nation's second largest non-bank retail mortgage lender, loanDepot enables customers to achieve the American dream of homeownership through a broad suite of lending and real estate services that simplify one of life's most complex transactions. With headquarters in Southern California and offices nationwide, loanDepot is committed to serving the communities in which its team lives and works through a variety of local, regional, and national philanthropic efforts.

Base pay is one part of our total compensation package and is determined within a range. This provides the opportunity to progress as you grow and develop within a role. The base pay for this role is between $170,0000 and $212,000 per year. Your base pay will depend on multiple individualized factors, including your job-related knowledge/skills, qualifications, experience, and market location.

We are an equal opportunity employer and value diversity in our company. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.