Sr Director Security Architecture
Discovery Communications
Sterling, VAThis was removed by the employer on 2/12/2020 5:32:00 AM PST
Not to worry we have many other jobs on the site;
Browse all jobs
Browse the Executive Positions Category
Browse the IS/IT Category
Search for Sr Director Security Architecture jobs in Sterling-VA
Search all Sr Director Security Architecture postings
Full Time Job
Our Team
As Discovery portfolio continues to grow – around the world and across platforms – the Global Technology & Operations team is building media technology and IT systems that meet the world class standard for which Discovery is known. GT&O builds, implements and maintains the business systems and technology that are critical for delivering Discovery’s products, while articulating the long-term technology strategy that will enable Discovery’s growing pay-TV, digital terrestrial, free-to-air and online services to reach more audiences on more platforms.
Within our Information Security team, there has never been a busier or more urgent time to obtain the best talent we can for a function so critical to Discovery. In light of the constant threats and attacks occurring in companies across the globe, and across all industries, the Information Security Team at Discovery is a growing group of cyber security professionals, that are using the latest tools and resources to protect the assets from our internal infrastructure to the shows we broadcast across the globe on HGTV, Food Network Kitchen, Discovery Channel, Animal Planet, Discovery ID, TLC, EuroSport, 2020 Tokyo Olympic Games Broadcasts in Europe and more. From the US to Singapore, India to LA, we are tasked with protecting, training, and implementing the best of the best in tools, resources, monitoring, threat detection, and more.
The Role
The Sr. Director, Information Security, is a No. 2 role, reporting to the Global Vice President, of InfoSec Operations, Engineering and Architecture. The Sr. Director role has direct responsibility for designing/architecting IT security solutions, lead operational security activities, serves as an expert in cybersecurity protections, detection, response, and recovery activities, and be able to lead Cyber Incident Response activities 24x7 across the globe. This position will also be including working with various third parties providing operational activities and leadership across the global Discovery, Information Security Program.
Responsibilities
1. “Second-in-Command” for the VP of Information Security Operations, Engineering, & Architecture
2. Perform IT security architecture assessments, prepare IT security action plans, evaluate information security products, and perform other activities necessary to ensure a secure environment.
3. Lead and manage team members
4. Implement the requirement of Discovery and other information systems security policies, standards, baselines, guidelines, and procedures.
5. Reviewing current system security measures and recommend and implement enhancements.
6. Conducting regular system tests and ensuring continuous monitoring of cloud security environments and network security is appropriate for current world threats.
7. Ensuring all personnel have access to the IT system limited by need and role.
8. Document detailed technical requirements and security baselines for technologies.
9. Provide consultation to business lines on information security architecture, to include but not limited to cloud environments
10. Conduct after action reviews into any alleged IT or network security compromises, incidents, or problems and provide mitigating controls.
11. Review the status of the computer and network security.
12. Monitor changes in the security landscape and coordinate appropriate responses.
13. Build security requirements for security projects and initiatives
15. Design and architect secure security solutions with deliverables that reflect the design and can be referenced for future reference.
16. Strong foundational knowledge in multiple information security domains such as identity and access control, cloud security, network security, operations security, application security, cryptography, computer forensics, security architecture and design, and mobile device security.
Requirements
* One or more cyber security certification(s)
* Solid understanding of security protocols, cryptography, authentication, authorization and security
* Good working knowledge of current IT risks and experience implementing security solutions
* Strong experience implementing multi-factor authentication, single sign-on, identity management or related technologies
* Ability to interact with a broad cross-section of personnel to explain and enforce security measures
* Excellent written and verbal communication skills as well as business acumen and a commercial outlook
* Minimum of 7 years in a cyber security role including at least 5 years in a Security Operations/Incident Response role.
* Must have experience in managing and developing teams
* Understanding of technologies and be an SME in Cloud Security
* Experience in SIEM, IPS, IDS, NAC, Threat Assessments and network security
* Ability to assess the current environment and design an architecture including diagrams and documentation
* Experience in leading and managing information security teams
* Experience in leading critical cybersecurity areas including: cyber incident response, disaster recovery, cyber security monitoring, remediation and information governance.
* Ability to operate in a dynamic environment with the ability to respond and react decisively in a changing set of circumstances and priorities. Ability to quickly assess complex situations and take appropriate action, such as during security incidents
* Thorough understanding of IT systems and security tools, including methods, procedures, equipment and software used for delivery; deep understanding of Cloud and IoT.
* Experience in Digital and Broadcast tech environments a plus
* Strong influencing skills to getting things done; a collaborative approach with the ability to partner with peers across the enterprise.
* Experience implementing IT Security technologies, including encryption, network security, intrusion detection and digital forensics
* Building strong relationships across the enterprise in order to implement appropriate security controls for cloud environments.
* High level of personal integrity, and the ability to professionally handle confidential matters and demonstrate the appropriate level of judgement and maturity in balanced risk decision making
* Partner closely with leadership, especially infrastructure and engineering, to ensure that all applications and platforms adhere to cybersecurity requirements, as well as secure processing systems
* Strong understanding of application and database architectures of distributed, highly available systems
* Experience knowledge of TCP/IP, networking design, and routing architectures
* Experience knowledge of network security systems and protocols, including firewalls, Radius and TACACS , IPSEC and IKE, SSH, etc.
* Strong proficiency in vulnerability and threat management
* Ability to develop and implement security procedures and controls
* Bachelor’s degree in Information Security, Computer Science or IT-related field, 10 years equivalent experience without a degree
* Extensive knowledge of NIST framework, CSC framework, CSF framework, ITIL, PCI, and ISO 27001-2x.
* Must have the legal right to work in the United States
* Position is in Sterling, Virginia, VA