Senior Manager Cyber Security Operations

The Cyber Security Operations Senior manager position is part of the Global Information Security (GIS) organization within Information Technology. The position has global responsibility for Managing all aspects of Cyber Security Operations for the company. Cyber Security operations manager is responsible for directing the activities of security personnel to ensure protection of an organization’s infrastructure against both insider and outsider threats.

The key customers of this position include but are not limited to:

- All Sylvamo employees and contractors in all facilities across all businesses that require network, systems or data access.
- External partners that access Sylvamo systems, such as customers or vendors.
- External partners that provide IT services to Sylvamo.

The key actions, outputs, deliverables, products and Services include:

- Oversee the diverse team of cyber security vendors, managed services and employees
- Manage state-of-the-art security tools to correlate threats, detect and respond to incidents, and protect our global assets
- Oversee SIEM (Security information and event management) or SOAR (Security Orchestration, Automation and Response) functions/tools
- Oversee and manage Incidence response and 24/7 SOC
- Manage policies and alerts for Network Security, IDS/IPS, Firewalls, and content filtering
- Mange Endpoint Security policies and operational functions for both endpoint and servers (antivirus, app white listing, encryption, privileged access management)
- Mange Vulnerability Management function (tool administration, automation and reporting, KPI production)
- Mange Data Loss Prevention policies for network and endpoint
- Facilitate Cyber Forensics investigations (eDiscovery, Forensics, and Investigations)
- Communicate and coordinate with other IT, Security groups and business units.
- Develop high-level strategic plans and roadmaps.
- Develop long-term threat horizons and roadmaps.

**Key Accountabilities**:

- Security Operations services on all Cyber Security technologies and services (end-to-end).
- Provide 24/7 security operational support on all of Sylvamo’s Cyber tools, policies, and processes globally. This includes following change management processes and adherence to security regulatory guidelines and industry best practices.
- Oversee the diverse team of cyber security vendors, managed services and employees
- Own, operate and drive security operations and protections for the company
- Coordinate defense in depth protections with 3rd party providers for threat intelligence, threat analysis, and threat remediation
- Respond to threats in real-time, through diagnosis, communication, and remediation
- Create a culture of accountability
- Adhere to agreed upon SLAs
- Advise and educate on security risks and issues at all levels of the organization.
- Departmental Management
- Demonstrate full support of The Sylvamo’s culture and all Human Resources people development processes and activities.
- Strategy and Innovation Leadership
- Provide strategic direction relative to the implementation/use of IS technologies and solutions at Sylvamo.
- Understand the implications of Global Cyber Security processes and technology enablement across geographic and language boundaries.
- Major/Primary Activities: Service Delivery; Support; Provisioning; Reporting; Monitoring; Metrics; Maintenance; Acquisitions & Divestitures; RFPs; Disaster Recovery; Consultation.

**Knowledge & Experience**:

- Bachelor Degree in Cyber Security, Engineering, Information Technology or a related discipline or equivalent work experience
- 10+ years of IT work experience
- 5+ years of Information Security experience
- 5+ years of direct Leadership/Management experience
- Proven leadership skills with the ability to manage conflict, deal with ambiguity, negotiate and make timely decisions.
- Ability to analyze new IT and Cyber Security solutions, identify potential security concerns, develop approaches that can be used to mitigate identified risks, and work with team members to implement

recommendations.
- Ability to work calmly under pressure in the face of adversity and threat activity
- Excellent communication skills with demonstrated ability to write clear, concise business communication for multiple levels (management, technical, and user).
- Security Certification desired: CISSP, CISM, GIAC or CISA.
- Knowledge and understanding of Operational Technology and SCADA network and design principles.
Command Skills; Technical Skills; Technical Savvy; Written Communications; Presentation Skills
- Minimal Travel (< 10%); Minimal lifting / physical requirements