About the role

Director of Security Operations overseeing incident response tasks at Gartner. Leading a geographically dispersed team and improving capabilities for detecting and responding to threats.

Responsibilities

Drive operational excellence of a geographically dispersed Security Operations team.
Serve as the Incident Commander during the incident response process.
Continuously seek out opportunities to improve the team’s ability to rapidly and effectively respond to security incidents.
Work with key business stakeholders to detect, respond to, and remediate security issues.
Provide mentorship and guidance to team members, promoting a culture of open communication, continuous improvement, and operational excellence.
Drive automation initiatives, enhancing analyst capabilities and workflows while eliminating monotonous tasks.
Develop innovative and cutting-edge detection content aligned with ATT&CK, Cyber Kill Chain, and various other cyber security frameworks.
Bring your own ideas and solutions to a fast-paced, growing, and evolving team centered around operational excellence.
Ensure smooth handover of alerts and incidents between team members located in various geographic locations.

Bachelor’s in Computer Science, Information Security, Engineering, or 6+ years of experience in Information security.
Previous experience leading a SOC, Hunt, and/or Incident Response Team or progressive growth in responsibilities in a SOC environment.
Demonstrated ability to prioritize and analyze security events, enabling swift decision-making on appropriate courses of action and initiating timely and proportional responses.
Expertise in conducting and driving analysis and investigation of cybersecurity incidents.
Experience articulating technical findings and creating detailed incident reports.
Extensive experience in leveraging security tools such as SIEM, EDR, web proxy and email security tools.
Experience driving security projects from requirements gathering to completion.
Ability to mentor, motivate, and coach team members, leading to operational excellence.
Passion for security and solving tomorrow’s problems.
Certifications like CISSP, GCIH, GCFA or equivalent are a plus.
Cloud experience (AWS, Azure, GCP).
Demonstrated ability to transform and shape teams.
Scripting or programming experience (Python, PowerShell, Bash).

Competitive compensation.
Limitless growth and learning opportunities.
Ongoing mentorship and apprenticeship; Leadership courses, development programs, technical courses, certification opportunities and more!
A collaborative and positive culture - join a diverse team of professionals that are as smart and driven as you.
A chance to make an impact – your work will contribute directly to our strategy.
Enjoy the flexibility of working from home and the energy of collaborating with peers in our dynamic offices.
20+ PTO days plus holidays and floating holidays in your first year.
Extensive medical, dental insurance and vision plan.
401K with corporate match, immediate vesting.
Health-and-wellness-related allowance programs.
Parental leave.
Tuition reimbursement.
Employee Stock Purchase Plan.
Employee Assistance Program.
Gartner Gives Charity Match.
And much more!