Consulting Director - Incident Response

CNA

Sorry, this job was removed at 7:09 p.m. (CST) on Wednesday, April 22, 2020

View 264 Jobs

Find out who's hiring remotely in Chicago.

See all Remote Cybersecurity + IT jobs in Chicago

View 264 Jobs

Apply

By clicking Apply Now you agree to share your profile information with the hiring company.

Save job

Job Summary

The Consulting Director, Information Security Response executes the evaluation, development, implementation, and monitoring of information security strategies, tools, and technologies for effectively detecting and responding to enterprise security incidents. A key aspect of this role is staying abreast of threat actor activity and leveraging an understanding of attacker behavior to drive investigations. This position interacts with CNA business leadership during stressful enterprise security incidents and is a key part of the daily security operations and security incident response teams and any remediation protocols. This position is a key member of incident management and is responsible for global incident handling and advanced analysis. This role is to be a subject matter expert capable of improving the end-to-end process of incident response.

Essential Duties & Responsibilities

Performs a combination of duties in accordance with departmental guidelines:

1. Establishes and governs security event detection and cyber threat hunting capabilities and serves as the subject matter expert regarding all information security incident responses for the enterprise.

2. Provides governance for and leads the information security response process; directs the response to escalated security events and drives the security incident response process.

3. Leads the evaluation, development, and implementation of security standards, procedures, and guidelines for multiple system platforms across diverse application environments.

4. Works with other senior IT and business leaders on potential data breaches. Works with E-Discovery and Forensics groups to support Human Resources, Legal, and other key stakeholders while maintaining appropriate chain of custody.

5. Provides end-to-end problem management and root cause analysis for security incidents across the Enterprise. Works with forensic vendors, penetration testers, and strategic partners to architect advanced solutions to address issues.

6. Performs and/or directs the independent analysis of complex problems and threats and provide clear and decisive mitigation strategies. This includes emulation of threat actor activity based off tactics, techniques, and procedures identified as indicators of compromise (IOCs).

7. Actively provides consistent communication to key IT and business stakeholders on metrics and measures and the potential of new threats.

8. Actively stays up to date on current attack risks and trends through independent and collaborative industry research.

9. Works with IT Leadership to proactively develop and monitor information security strategies to protect the CNA IT enterprise from existing and future threats.

May perform additional duties as assigned.

Reporting Relationship

Typically reports to Director or above.

Skills, Knowledge & Abilities

1. In depth understanding of SIEM operations and the CSIRT process

2. Proven experience with industry standard security technologies, such as advanced endpoint detection technologies, threat intelligence aggregation tools, open sourced investigative technologies, EDR Technologies, and threat hunting.

3. Proven experience applying information security principles to secure platforms and prevent threats.

4. Proven ability to interact effectively with senior business leadership to effectively resolve information security incidents when necessary.

5. Working knowledge of regulations (e.g., SOX, privacy, etc.) and internal controls as they apply to IT.

6. Strong understanding of malware in static and dynamic environments and mitigation strategies to protect against it.

7. Superior analytical and problem-solving skills and the ability to effectively communicate highly technical information to business leaders.

8. Proven ability to influence change and adoption of information security protocols and concepts.

9. Ability to work extremely well under pressure while maintaining a professional image and approach

10. Preferred insurance industry knowledge.

Education & Experience

1. Bachelor’s Degree required or equivalent work experience. Master’s Degree in Computer Science or technical field preferred.

2. Minimum of ten years of information security experience

3. CISSP, GIAC, CISM or equivalent certifications preferred.

Read Full Job Description

Technology we use

Engineering
Product
Sales & Marketing

- JavaLanguages
- JavascriptLanguages
- KotlinLanguages
- PerlLanguages
- PythonLanguages
- RLanguages
- SqlLanguages
- jQueryLibraries
- jQuery UILibraries
- ReactLibraries
- Node.jsFrameworks
- SpringFrameworks
- AccessDatabases
- DB2Databases
- Microsoft SQL ServerDatabases
- MySQLDatabases
- OracleDatabases
- PostgreSQLDatabases
- Google AnalyticsAnalytics
- ConfluenceManagement
- JIRAManagement
- Microsoft ProjectManagement
- SalesforceCRM
- SendGridEmail
- MarketoLead Gen

An Insider's view of CNA

How would you describe the company’s work-life balance?

Work-life balance has always been a priority for me. It always will be. CNA’s hybrid working model allows me to not only maximize collaboration with my peers but also take advantage of increased flexibility by combining remote and in-office work. I’m empowered to take control of my schedule based on what works best for me and my team.

Alison Massey

Agile Scrum Master Consultant

How does the company support your career growth?

Throughout my five-year career, I’ve seen CNA value creating thinking and continuous learning. My managers actively encourage me to pursue rewarding professional development opportunities. Those opportunities have had a direct impact on my career growth. At CNA, the opportunities are endless and your career aspirations matter.

Alaina Cole

Underwritting Specialist

What unique initiatives do you have that encourage innovation?

We have an Innovation program and team that designs processes to encourage creative thinking and capture ideas across CNA. In addition to collaborating with and learning from world-class technology partners, we also host events such as our Innovation Summit and Hackathon, which bring winning competition ideas to life in real products and services.

Keith Zhang

Architecture Consulting Director

What's the biggest problem your team is solving?

A primary focus of my team is reducing the time-to-market associated with machine learning models. By leveraging cutting-edge cloud services and streamlining processes, we’re enhancing the model development lifecycle. That enhancement allows us to use efficient, effective predictive analytics when making business decisions.

Ryan Gulden

Senior AI/ML Engineer

What are CNA Perks + Benefits

CNA Benefits Overview

One of the many advantages of working at CNA is the benefits program we offer you and your eligible dependents,
beginning on the first day of your employment. The program features a variety of plans that provide health care
benefits, well-being, disability and survivor protection, and 401(k) savings, among others. Below are highlights
of the offerings.

Culture

Volunteer in local community

Partners with nonprofits

Open door policy

OKR operational model

Open office floor plan

Flexible work schedule

Remote work program

Diversity

Dedicated diversity and inclusion staff

Diversity employee resource groups

Health Insurance & Wellness Benefits

Flexible Spending Account (FSA)

Disability insurance

Dental insurance

Vision insurance

Health insurance

Life insurance

Wellness programs

Financial & Retirement

401(K)

401(K) matching

Company equity

Employee stock purchase plan

Performance bonus

Charitable contribution matching

Child Care & Parental Leave Benefits

Generous parental leave

Family medical leave

Adoption Assistance

Vacation & Time Off Benefits

Generous PTO

Paid holidays

Paid sick days

Office Perks

Relocation assistance

Onsite gym

Professional Development Benefits

Job training & conferences

Tuition reimbursement

Lunch and learns

Online course subscriptions available

View full list of perks + benefits