Head of Security Operations

About Us

How This Role impacts Live Oak and its People

The Head of Security Operations will lead the effort to safeguard the organization’s computer networks and systems. This person will plan and carry out security measures to prevent, detect and respond to infiltration and cyber-attacks against sensitive data and systems.

What You’ll Do at Live Oak

Under the leadership of the Chief Information Security Officer (CISO), the Head of Security Operations is tasked to protect information assets in support of business objectives and in conformity with policies. The Head of Security Operations will manage security and risk programs to identify, classify, remediate, monitor, and mitigate technical security risks and vulnerabilities throughout the company. Primary responsibilities include management of a Security Operations team, overseeing technology security measures throughout the organization, monitoring, processes, risk assessment programs, development and review of assessment reports and statistics and briefing of risk findings to company stakeholders. This includes management of controls associated with on-prem, and cloud infrastructure; detection and monitoring capabilities; incident response; threat intelligence; and security engineering/architecture activities as needed.

How You’ll Do It

• Develops, manages, and improves technology security risk-based programs to ensure the integrity, confidentiality, and availability of information assets
• Leads and directs the work of of the Security Operations team
• Leverage automation and AI to ensure efficiency, and reduce the need for manual work.
• Support information security risk assessment processes and works effectively with other groups in the enterprise in implementation of security measures and alignment to risk appetite.
• Develop and implement security policy, standards, guidelines, and procedures for the Security Operations program.
• Own and manage enterprise security monitoring and detection capabilities.
• Own and manage incident response plans, procedures and activities.
• Evaluates new security technology, trends, services, evolving threats, risks and vulnerabilities and provides recommendations to strengthen internal and external information security environment
• Coordinate definition, production, and continual improvement of metrics for the Security Operations program.
• Define and manage controls related to detection, incident response, vulnerability management and cloud security.
• Partner with peers to analyze and collect risk data and metrics from existing vulnerability, vendor management, security operations, threat management, and application related processes
• Provide leadership, training, and guidance to staff members
• Recommend security controls and/or corrective actions for mitigating technical and business risk
• Prepare financial forecasts and budgets for the Security Operations program.
• Participate in technology and security strategy planning processes to ensure identified risk mitigation is addressed in departmental planning
• Create and advocate for a culture of cyber security across the enterprise; drive behavioral and process changes for the business, especially in areas that correlate to observed operational issues.
• Serve as a key member of the information security leadership team.

Required and Preferred Experience

• Minimum of 8+ years in an advanced information security, information technology or related role with progressively increasing responsibility.
• 5+ years of cloud computing experience in AWS and/or Azure.
• Experience in developing Information Security policies and procedures, as well as successfully executing programs in a dynamic fast-paced environment
• Proven track record in leading Security teams.
• Experience leading incident response, security technology deployments, and vulnerability management programs in a cloud-first environment.
• Experience maintaining managed security services provider (MSSP) relationships for maximum operational effectiveness
• Working knowledge and experience in the policy and regulatory environment of information security, specifically the financial industry and banking
• Experience with advanced security monitoring solutions (SEIM, IDS, IPS, etc…), corporate security tools, and penetration testing assessments to include proof-of-concept testing and procurement of new security products and services
• Experience leveraging automation and AI to reduce manual workloads.
• Must be an innovator, keeping up to date on security initiatives and standards
• Must be a critical thinker, with strong problem-solving skills
• Must have strong organization, and executive communication skills (written, and oral).
• Must operate with an impeccable level of integrity and trust
• Bachelor’s degree in Computer Science, Information Systems or equivalent experience is required; industry security certifications preferred (CISSP, CISA/M, CEH, GSEC, SSCP, etc…)

Our Values

• Dedication: Possess a deep commitment to Live Oak Bank’s mission and core values, exemplified through a strong work ethic, adaptability and pride in your work.

• Ownership: Take initiative to deliver positive results by proactively and creatively solving problems, while maintaining a high degree of quality.

• Respect: Treat everyone wi.th courtesy, politeness, and kindness.

• Innovation: Embrace fresh ideas and fearlessly contribute new solutions to emerging or existing problems.

• Teamwork: Foster collaboration, accountability, and trust with others and understand that together, we do more

For a detailed overview of our employee benefits please visit: http://www.liveoakbank.com/careers/

Live Oak Bank is an Affirmative Action and Equal Opportunity Employer, Minorities/Women/Veterans/Disabled. We consider applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, veteran status or disability. Equal access to programs, service and employment is available to all persons. Those applicants requiring reasonable accommodation to the application and/or interview process should notify human resources at careers@liveoak.bank

EEO is the Law

Commitment to Diversity
Live Oak Bank is committed to creating and maintaining a workplace in which all employees have an opportunity to participate and contribute to the success of the business and are valued for their skills, experience, and unique perspectives. This commitment is embodied in company policy and the way we do business at Live Oak Bank and is an important principle of sound business management.

Please note that we provide at least the minimum requirement of paid sick leave to our employees who reside in states that require employer-paid sick leave, including but not limited to Arizona, California, Colorado, District of Columbia, Maine, Maryland, Massachusetts, Michigan, Nevada, New Jersey, New Mexico, New York, Oregon, Rhode Island, Vermont, and Washington.