ABOUT US

NextCapital is the leader in enterprise digital advice. NextCapital partners with world-class institutions to deliver personalized planning and managed accounts to individual investors, whether they’re saving for retirement in a 401(k) or IRA or investing in a taxable brokerage account. Our open-architecture digital advice solution provides better outcomes for our partners and individual investors by offering integrated account aggregation, analytics, planning and portfolio management, and customizable advice methodology and fiduciary roles.

Learn more about NextCapital at www.themuse.com/companies/nextcapital

JOIN OUR TEAM

We're looking for an organized and highly motivated Director of Cyber Security to join our team. Our Security team is responsible for enterprise-wide risk management, information security strategy, planning and delivery of security measures which align with the organization’s and our partners’ business and strategic objectives. This includes vulnerability management, security monitoring, data loss protection, etc. You will be responsible for mentoring and working with a team of security professionals responsible for designing, building, testing and implementing security systems across the footprint of NextCapital.

The ideal candidate has an equally wide range of technical knowledge and hands on skills. The Director will be expected to be a mentor, and a security leader. The Director will be in the trenches with their peers and direct reports during security investigations, and will advise and support incident response efforts for active threats.

WHAT YOU’LL DO

• Lead day-to-day cybersecurity monitoring, threat detection and incident response operations
• Evolve our design and implementations of Security Automation, comprehensive Monitoring and alerting, AWS Security Services Configuration and Policies Management Automation, SIEM and Access Management Provisioning Automation
• Continuously enhance disaster recovery procedures and conduct periodic breach of security drills
• Promptly responding to all security incidents and providing thorough post-event analyses
• Communicate deep technical security threat & operations awareness across the Security department, including CISO, IT Director, VP of Engineering and CTO
• Benchmark all monitoring, analysis, and incident response processes and technology against industry
• Develop, follow, and maintain 'playbooks' which provide a visual depiction of various operational Incident Response workflows
• Identify and enhance processes where automation has the potential to improve efficiency
• Lead Incident Management in developing key performance indicators to measure success of the Incident Response process
• Coordinate with Chief Information Security Officer and other stakeholders throughout the organization in clarifying security risks, and roles and responsibilities related to ongoing Incident Response cases
• Provide SME-level guidance and direction on best practices for the protection of information
• Maintain updated knowledge of best practices in Cybersecurity Operations and Incident Response processes to identify and recommend new technologies and/or processes with the potential to enhance operations
• Provide support to operational & cybersecurity strategy development
• Help identify and hire industry-leading talent

Requirements

WHO WE’RE LOOKING FOR

• Key Skill Sets: Linux, Chef, Ansible, AWS Security Services, Splunk
• You have at least 5 years experience within a regulated or financial institution environment
• You have at least 7 years of experience in cyber security
• You have at least 5 years experience monitoring on-premise, Cloud, and hybrid environments
• You have at least 3 years experience managing and implementing security monitoring, correlation and cyber response tools
• You have at least 2 years of experience securing AWS environments
• You have AWS Security Engineering, Architecture or Security Specialty Certification(s).
• You have experience architecting and implementing identity and access management and SSO solutions, including SAML 2, OAuth 2, OIDC.
• You have experience architecting and implementing the securing and monitoring of Amazon Web Services multi-account environments with hands on experience with VPC, SGs, IAM, ELB, EC2, Lambda, S3, RDS, SNS, SQS, etc.
• You ideally have experience with AWS Security Services Configuration, Policies Management Automation and Monitoring/Alerting.
• You have experience with operational, monitoring tools and frameworks on AWS such as Splunk ES, Privilege Escalation, AWS System Manager, Cloudwatch, Cloudtrail, fluentd, HIDS, Qualys, NetSkope, etc.
• You are holding an Information Security Certification in good standing (e.g. CISSP)
• You have a Bachelor’s degree in Cyber Security, Information Security, Computer Science, or a related field

Benefits

WHY YOU’LL LOVE IT

• Disrupt the financial advice industry by bringing affordable, easy to use financial tools to millions of people
• Enjoy a laid back work environment & learn from FinTech’s best & brightest
• Receive great benefits like stock options, 401(k) match, and employer contributions to health, dental and vision coverage
• Join a fast growing company where you can have a real impact on the company's future
• Participate in company-sponsored cornhole leagues, company outings, wine tastings, fantasy football leagues, hackathons and other fun events
• Enjoy a newly built out office on Michigan Avenue with a view of Millennium Park and Lake Michigan.
• Sip locally roasted coffee, kombucha, or craft beer at your modular sitting/standing desk
• Participate in women in tech events and service days at local organizations
• Relax with monthly, company wide, guided meditation sessions