Lead of Cybersecurity Data Protection & Analytics
Click the Facebook, Google+ or LinkedIn icons to share this job with your friends or contacts. Click the Twitter icon to tweet this job to your followers. Click the link button to view the URL of the job, which then can be copied and pasted into an e-mail or other document.
Chicago, IL 60684
The Lead of Cybersecurity Data Protection & Analytics will operate as a member of the [The Edge] technology Cybersecurity leadership team reporting to the Chief Information Security Officer (CISO). This role contributes [The Edge] enterprise goals as an experienced and active cyber security professional practitioner and a skilled technologist. This role will also contribute by recruiting new cyber security professionals, practitioners and technologists through building and leading a lean Cybersecurity analytics, metrics and reporting operations functions for a cloud-first, consumer-friendly, fast-moving, agile operating model. The Lead will be accountable and responsible for delivering results, shaping culture, recruiting and cultivating cloud and data analysis talent, and operating within organizational and enterprise boundaries to rapidly analyze and use data in support of selecting, architecting, deploying and operating cloud-first Cybersecurity technology solutions. Success in this role requires an in-depth understanding of public cloud technologies, agile/DevSecOps practices and the ability to build collaborative relationships with other teams within [The Edge] (engineering, product, architecture, operations, service management, Cybersecurity, infosec, privacy, regulatory compliance, etc.) and across the broader Humana Inc enterprise (enterprise architecture, infrastructure, enterprise information protection).
The Lead of Cybersecurity Data Protection & Analytics contributes to [The Edge] enterprise goals as a hands-on, experienced and active cyber security practitioner professional and a skilled technologist. They will also recruit new Cybersecurity/cloud technology talent and lead a dynamic team of cloud Cybersecurity and data protection architects, engineers and operations technologists to protect [The Edge] assets, data, brand and consumers in a cloud-first consumer-friendly operating model. This role will be responsible for partnering with IT Architecture, IT Engineering, IT Software Engineering, IT Operations, DevOps and lines of business leaders and their teams to ensure that Cybersecurity data protection and analytics and reporting is available to be consumed help make data-driven decisions across [The Edge] enterprise and to ensure that our people, technologies and processes are adequately secured and monitored and meet Cybersecurity regulations at state, national and international levels. This role will work with a variety of data types and data storage systems in the cloud and from legacy systems to find creative and innovative ways to manage cyber-risks and to enable leaders and operational teams with data, reports, dashboards to help them make data-driven decisions. This role will need to be able to organize various data sets into structure repositories that will enable automated analysis that can populated regulatory compliance reporting and metrics for the overall health and operational effectiveness of the Cybersecurity program as part of the overall risk management and compliance programs across the [The Edge] enterprise. This is a hands-on role where the Lead is required to have the technical skills to understand the analyze complex data sets, logs and log types, event and event types, database schemas and data feeds to move data to/from/through the end to end analytics process. This role will require a Cybersecurity professional and practitioner that has the experience, confidence and technical skills to rethink routine and leverage new and innovative approaches to cyber-risk management and be able to communicate complex concepts to broad range of stakeholders and align them to the strategic and tactical actions required to execute to implementation completion to operational sustainment.
Key activities for Cybersecurity Data Protection & Analytics function:
+ Liaison for other corporate data analytics teams and lines of business outside of [The Edge] with Humana Inc and other external, contractors, service providers, vendors, law enforcement and vendors.
+ Establish data content discovery and content / file classification and tagging solutions and operational practices that track and manage risk of data content loss/leakage or unauthorized use or access or regulated/high value data and minimize the risks of data security and/or data privacy breaches
+ Partner with and support other [The Edge] technology and business leaders and teams to help them has access to actionable Cybersecurity data and analysis results that support their operations and decision-making processes in timely manner.
+ Recruit new talent to build a small Cybersecurity Data Protection & Analytics over time as [The Edge] business grows
+ Establishing and executing on data content inspection and file tagging/classification policies, standards and practices
+ Incorporate end user behavior with data content access, flow and collaboration into Cybersecurity training and awareness program to enforce data protection compliance and acceptable use policy enforcement
+ Build and maintain data structures and databases in support of Cybersecurity and cyber-operations risk management
+ Aggregate, normalize and analyze various log, event and data sources into cloud storage at Microsoft and Google cloud providers and use cloud analytics technologies to create actionable Cybersecurity intelligence that help driver operational actions.
+ Analyze data and enable machine learning, advanced analytics, and AI in support of Cybersecurity
+ Model business processes for analysis and optimization in support of Cybersecurity risk management outcomes
+ Analyze Cybersecurity events logs and alerts to identity high risk activities and use that data to trigger operational risk mitigations
+ Implement tools to visualize data analysis results
+ Create Cybersecurity risk metrics and reports and present results and interpretations to [The Edge] leadership
+ Analyze data from Cybersecurity incidents, security and privacy breaches that can aid in post event investigations
+ Analyze logs, events and alerts through the technology and operational ecosystem to derive root causes for Cybersecurity and technology operational disruptions, outages, anomalies
+ Create data movement/piping scripts to bulk move data around securely to facility the data aggregation and data analysis processes (batch, stream, push, pull, trigger, schedule, etc.)
+ Use data analysis results to adjust, tune and otherwise making changes and improvements to our Cybersecurity operational processes, technologies, policies, standards and overall practices that drives down Cybersecurity risks to acceptable levels
+ 8+ years of experience in cyber security and/or information protection practitioner and/or leadership role
+ Clear understanding of cloud data/log/event collection, storage, analysis and computing and how SaaS, PaaS and IaaS solutions can accelerate innovation and delivery, while generating operational efficiencies.
+ 4 or 5 years’ undergraduate degree in STEM (science, technology, engineering, mathematics) or Computer Information Sciences or related discipline or 10+ years of experience in role/field Cybersecurity profession.
+ 2+ years of experience or working knowledge of HIPAA Security and HIPAA Privacy regulations and requirements or Health Information Trust Alliance (HITRUST) Common Security Framework (CSF) or NIST Special Publication 800 series Cybersecurity standards
+ 2+ years of experience in managing a team of 4 more direct reports whether full time equivalents or contractors or a combination of both.
+ 3 or more years of experience in Cyber Data Protection and/or Data Leakage Prevention and/or Cyber Data Analytics
+ 2+ years of experience with a public cloud platform in one or more of the following cloud environments (Google Cloud