POSITION SUMMARY:
The Manager of Cyber Crisis Management is responsible in leading the development and implementation of comprehensive cyber crisis response plans to address cyber incidents and threats effectively. This role entails driving the incident response team to conduct incident investigation and documentation, as well as coordinating communication with internal and external stakeholders during cyber crisis. The role involves analyzing post-incident response to improve cyber crisis management strategies and contribute to the development of cybersecurity policy and procedures to mitigate future risks.
The role is to build out a mature cyber crisis response capability for Melco and ensure that the cyber crisis response is advanced and repeatable within the organization.
PRIMARY RESPONSIBILITIES:
Develop and maintain detailed cyber crisis response plans to address various cyber incidents and threats.
Work with other appropriate teams to ensure fully documented and complimentary Cyber Incident Response and Emergency Management Team plans.
Develop and coordinate the technical incident response efforts for cyber-attacks impacting Melco to determine root cause, impact and appropriate remediation measures, ensuring stakeholders at multiple levels of seniority are briefed and engaged on the ongoing incidents.
Develop communication strategies and protocols for internal and external stakeholders to maintain transparency during cyber incidents.
Coordinate communication with internal stakeholders, executives, legal and external partners during cyber crisis.
Provide cyber incident reporting to different audience groups, e.g. executives and legal.
Develop the Incident Response capability and associated best practices.
Coordinate with the global team SOC and incident Response team and MSSP ensuring round the clock support for cyber incidents.
Conduct detailed post incident reviews to assess response effectiveness, identify areas for improvement and implement lessons learned.
Ensure that processes for tracking actions and findings identified during and after a cyberattack are effective.
Liaise with Risk and Governance teams to track finding through to completion.
Take the lead to coordinate regular tabletop exercises across all levels of the Melco Group up to and including working with the executive committee to prepare them to respond to cyberattacks.
Work across management to train and educate teams on their response readiness.
QUALIFICATIONS:
Experience
Minimum 5+ years of IT experience with progressive responsibilities, and with at least 3 years of Cyber Security experience.
3+ years Cyber incident response experience.
Security professional with a proven leadership experience within the security industry.
Excellent knowledge of emerging cyber security, technologies, threats and vulnerabilities
Experience with Red/Blue teaming exercises and familiarity with MITRE ATT&CK framework.
Ability to create or review procedures for protection of systems and applications.
Knowledge of information security principles, concepts, practices, systems software, database software, and immediate access storage technology to carry out remediation activities.
Experience with security tools and platforms including SIEM, IPS/IDS, SecOps, Endpoint and Server protection, Network protection, Firewalls, etc.
Extensive experience in Cyber threat and vulnerability analysis and remediation.
Forensic examination and data preservation.
Ability to provide expert technical advice, guidance, and recommendations to management and other technical specialists on critical information technology security issues.
Knowledge of cyber security law, regulation and compliance (e.g. GDPR, PCI, MCSL).
Experience in emergency response / operations or incident management.
Effective reading, writing and oral communication skills.
Education
Bachelor of Science degree in management information systems, computer science, engineering or other IT-related major is required, or 5+ years of relevant experience.
Information Security Certification (CISSP, CISSM, GSEC, GEIR, GCFA, GCFR, etc.) or other related security certification is highly desired.
Skills / Competencies
Must possess certain traits of flexibility, assertiveness, approachability and foresight.
Being able to handle stressful situations.
Must have excellent communication skills to coordinate different stakeholders in cyber incident calls.
Proven excellence in researching, organizing, writing, and presenting technical information.
Capacity to work independently and in a team environment, with proven leadership ability and project management skills.
Must have excellent analytical skills, have the ability to multi-task and have solid project management skills.
Ability to understand the relationship between business processes, priorities, risk and their underlying technologies and security risks.
Ability to keep pace with a fast pace and growing company.
Achieves agreed objectives and accepts accountability for results.
Displays the highest level of integrity.
Ability to maintain discretion.
PERSONAL COMPETENCIES:
Displays a high commitment to delivering results.
Leads others to achieve business objectives.
Communicates effectively.
Achieves agreed objectives and accepts accountability for results.
Displays the highest level of integrity.
Ability to maintain discretion.
Self-motivated.
Approachable.