Cybersecurity Manager - Incident Response- WA or TX

 This is an environment unlike anything in the high-tech world and the secret of Costco’s success is its culture. The value Costco puts on its employees is well documented in articles from a variety of publishers including Bloomberg and Forbes. Our employees and our members come FIRST. Costco is well known for its generosity and community service and has won many awards for its philanthropy. The company joins with its employees to take an active role in volunteering by sponsoring many opportunities to help others. In 2018, Costco contributed over $39 million to organizations such as United Way and Children's Miracle Network Hospitals.

Costco IT is responsible for the technical future of Costco Wholesale, the second-largest retailer in the world with wholesale operations in twelve countries. Despite our size and explosive international expansion, we continue to provide a family, employee-centric atmosphere in which our employees thrive and succeed. As proof, Costco consistently ranks in the top five of Forbes “America’s Best Employers”.

As a member of the IT Management Team, you are responsible for managing, developing, and leading a team of employees. Your role includes leading the specific functional responsibilities of your team, which involves overseeing team performance and deliverables. However, your role as a leader within our organization requires more than the management of resources and day-to-day operations. As a steward of the company, you are charged with the development and execution of your team’s strategic vision and plan, and ensuring that your team’s actions align with the larger goals of the company and the IT Division.

The Cybersecurity Incident Response Manager is a highly visible and vital role. The role oversees and prioritizes actions during the detection, analysis, and containment of an incident. This role is also responsible for conveying the special requirements of high severity incidents to the rest of the company.

As the primary conduit between your employees and upper leadership, your role in communicating and modeling the values and guiding principles of our company culture is of vital importance. All members of IT Management should strive to consciously and consistently foster a culture of engagement, trust, and “open door” communication.

If you want to be a part of one of the BEST “to work for” companies in the world, simply apply and let your career be reimagined.

ROLE

• INTEGRITY: When achieving benchmarks and goals, use methods/strategies that are consistent with the Code of Ethics and the Standard of Ethics for Managers and Supervisors. Always leads by example. Appropriately handles employee concerns and follows through to resolution.
• MEMBER SERVICE: Provides and ensures staff provides an exceptional member experience.
• ADMINISTRATION: Ensures proper department coverage (writing schedule and break aids if needed). Understands department budget, able to research and explain budget variances.
• MANAGING PERFORMANCE: Coaches and mentors employees to provide support and guidance. Has regular open and honest conversations with employees to discuss work performance and career development. Identifies learning opportunities to strengthen employee knowledge, skill and ability.
• COMMUNICATION: Regularly shares information with employees via meetings and one-on-one conversations. Successfully navigates difficult conversations with employees, members, and suppliers. Listens, expresses empathy and adapts to get point across. Addresses issues immediately to ensure a timely resolution and to avoid escalating the situation. Consistently demonstrates business knowledge during interactions with senior management.
• SELF-MANAGEMENT: Demonstrates sound judgment, taking a partner when necessary. Ability to maintain self-control in the face of hostility or provocation or in intense, hectic situations.
• INCLUSION: Encourages different approaches and ideas to work and to accomplish goals. Seeks employee input. Takes the time to get to know or reach out to candidates who show potential that may not come forward on their own.
• COMPLIANCE AND SAFETY: Takes measures to ensure employee and member information is kept confidential and adheres to IS security policy.
• Leads the investigative process for network intrusions and other Cybersecurity incidents to determine the cause and extent of the cyber-attack.
• Escalates incidents to management in a timely manner with appropriate information regarding risk, action times, and root cause analysis.
• Leads the design and execution of the enterprise Cybersecurity operations processes, procedures, and playbooks.
• Summarizes events/incidents effectively to different constituencies such as legal counsel, executive management, and technical staff, both in written and verbal forms.
• Attracts, develops, and retains a Cybersecurity Incident Response team of technical incident response analysts and Engineers.
• Defines operational metrics, objectives, and key performance indicators to assure the team achieves operational excellence.
• Helps define and execute strategy for detection, investigation, and incident response.
• Collaborates well with partner teams for the efficient, large-scale response.
• Solves problems in unique ways with an automation-first mindset. Leverages new and existing tools to resolve long-standing challenges in ways that do not generate additional work for the teams.
• Helps develop and leads cyber threat intelligence efforts to identify and analyze long-term and short-term cyber threat actor groups, techniques, and tactics to inform information security defenses and technology decisions.
• Provides management with weekly, monthly, and quarterly metrics for both risk and performance and measurements of colleague performance.
• Develops and maintains relationships with external sources of Cybersecurity information that can be used to manage our security program.
• Escalates incidents to management in a timely manner with appropriate information regarding risk, action times, and root cause analysis.
• Coordinates response, triage, and escalation of security events affecting the company's information assets and activities within the incident response leadership team.
• Works with analysts to prioritize and normalize an event to determine if it meets the threshold of a potential incident and declare a major incident, if required, following the documented process.
• Performs post-incident review of the process and steps taken to remediate an incident, suggest and implement improvements in the environment (such as improving technical controls) and/or improve the incident response process.
• This is a full-time management/leadership position (45+ hours per week).

REQUIRED

• 10+ years’ Cybersecurity experience.
• 7+ years’ managing large operational type teams and experience in Cybersecurity incident handling and forensics skills, including knowledge of common probing and attack methods, network/service discovery, system assessment, viruses, and other forms of malware.
• Excellent troubleshooting skills and the ability to logically think through problem situations.
• Excellent verbal and written communication skills.
• Solid understanding of Network technologies, Application security, and infrastructure architecture.
• Able to work effectively and produce consistent results with minimum supervision.
• High level of personal integrity and the ability to handle confidential matters with proper judgment.
• Skillset, mindset, and experience to manage multiple conflicting priorities in a high-stress environment.
• Possess a high sense of urgency.
• Intellectually inquisitive nature with the ability to be open-mindedon-call to varying opinions.
• Ability to lead a team under pressure.
• Ability to travel internationally as necessary.
• Able to support off-hours work as required, including weekends, holidays, and 24/7 on call responsibilities on a rotational basis.

Recommended

• CISSP, GCIH, CEH, CISM, or other security certifications.
• NIST CSF knowledge and understanding.
• ITIL Knowledge and understanding.
• Familiarity with Mitre Framework.
• Experience with Agile preferred.
• Self-motivated individual with leadership and organizational skills.
• Able to manage individual tasks, projects, team members, and is process oriented.
• Able to explain complex technical problems to a non-technical audience.
• Familiarity with SIEM and SOAR tools and abilities.
• Digital forensics or enterprise investigation experience is a plus.

California applicants, please click here to review the Costco Applicant Privacy Notice.process-oriented

Apart from any religious or disability considerations, open availability is needed to meet the needs of the business. If hired, you will be required to provide proof of authorization to work in the United States.

Apply Here:- https://phf.tbe.taleo.net/phf02/ats/careers/