Lead IR Security Engineer - Global IT Group at Allied World in Farmington, Connecticut

Job Summary:

Engineer who enjoys security work and possesses both deep and wide expertise in the security space.  

Job Responsibilities:

Reporting to the CISO, the Lead IR Security Engineer is responsible for managing the Incident Response team with duties including:

·        Lead the planning, coordination, and execution of incident response activities to identify, contain, eradicate, and recover from cyber security incidents.

·        Manage a team of incident response professionals, providing guidance, training, mentorship to develop their skills and ensure effective team operations. 

·        Analyze and interpret threat intelligence, vulnerability reports, and incident trends to proactively defend against future cyber threats.

·        Serve as the primary point of contact during incidents, coordinating with internal teams, and external partners as necessary.  Communicate complex security issues and the impacts of incidents to both technical and non-technical stakeholders.

·        Continuously evaluate and improve incident response strategies, processes, and tools to enhance the organization’s cybersecurity posture. Which also includes keeping the incident response playbooks with current and future threats up to date.

·        Prepare detailed incident reports and documentation, including post-incident analysis and lessons learned, to inform future risk management strategies.

·        Ensure all incident response activities comply with applicable laws, regulation, and industry best practices.  Keep abreast of the latest cybersecurity trends, threats, and technologies.

·        Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks

·        Assist on designing and monitoring endpoint agent deployment to provide 100% coverage across the enterprise.

·        Flexible in working hours and available afterhours/weekends during service outages and project rollouts

Job Responsibilities:

Reporting to the CISO, the Lead IR Security Engineer is responsible for managing the Incident Response team with duties including:

·        Lead the planning, coordination, and execution of incident response activities to identify, contain, eradicate, and recover from cyber security incidents.

·        Manage a team of incident response professionals, providing guidance, training, mentorship to develop their skills and ensure effective team operations. 

·        Analyze and interpret threat intelligence, vulnerability reports, and incident trends to proactively defend against future cyber threats.

·        Serve as the primary point of contact during incidents, coordinating with internal teams, and external partners as necessary.  Communicate complex security issues and the impacts of incidents to both technical and non-technical stakeholders.

·        Continuously evaluate and improve incident response strategies, processes, and tools to enhance the organization’s cybersecurity posture. Which also includes keeping the incident response playbooks with current and future threats up to date.

·        Prepare detailed incident reports and documentation, including post-incident analysis and lessons learned, to inform future risk management strategies.

·        Ensure all incident response activities comply with applicable laws, regulation, and industry best practices.  Keep abreast of the latest cybersecurity trends, threats, and technologies.

·        Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks

·        Assist on designing and monitoring endpoint agent deployment to provide 100% coverage across the enterprise.

·        Flexible in working hours and available afterhours/weekends during service outages and project rollouts

Special Responsibilities:

People in this role must be extremely good at problem solving and have strong technical ability and communication skills. They must be able to deal with ambiguity and be able to understand and provide solutions to complex problems.

Positions eligible to Supervise:

Associate Security Engineers, Security Engineers, and Consultants

About Fairfax

About Allied World

Fairfax is a holding company which, through its subsidiaries, is engaged in property and casualty insurance and reinsurance and investment management.

Allied World Assurance Company Holdings, Ltd, through its subsidiaries, is a global provider of insurance and reinsurance solutions. We operate under the brand Allied World and have supported clients, cedents and trading partners with thoughtful service and meaningful coverage since 2001. We are a subsidiary of Fairfax Financial Holdings Limited, and we benefit from a worldwide network of affiliated entities that allows us to think and respond in non-traditional ways. Our capital base is strong, our solutions anticipate rather than react to changing trends, and our teams are focused on establishing long-term relationships that are mutually beneficial.

Learn more about how we can help you manage your risk by visiting: Web: www.awac.com  | Facebook: www.facebook.com/alliedworld  | LinkedIn: https://www.linkedin.com/company/allied-world

Our generous benefits package includes: Health and Dental Insurance, 401k plan, and Group Term Life Insurance. Allied World Insurance Company is an Equal Opportunity and Affirmative Action