Director, Cyber Defense
Hanesbrands
- Winston-Salem, NC
- Permanent
- Full-time
- Develop and implement comprehensive cyber defense strategies and initiatives to protect against advanced cyber threats.
- Lead a team of cybersecurity professionals in monitoring, detecting, and responding to security incidents.
- Oversee the design, implementation, and management of security controls and technologies to defend against cyber threats.
- Conduct regular security assessments and vulnerability testing to identify and mitigate risks.
- Collaborate with cross-functional teams to ensure cybersecurity best practices are integrated into business processes and projects.
- Establish and maintain effective relationships with external cybersecurity partners, vendors, and law enforcement agencies.
- Keep abreast of the latest cybersecurity trends, threats, and technologies to continually enhance the organization's cyber defense capabilities.
- Prepare and present regular reports to senior management on cyber defense performance, incidents, and risk posture.
- Plan and execute regular incident response and postmortem exercises, with a focus on creating measurable benchmarks to show progress (or deficiencies requiring additional attention).
- Automate repetitive tasks and drive efficiencies so analysts can work on more advanced tasks.
- Manage security event investigations, partnering with other departments as needed.
- Evaluate and update SOC policies and procedures as appropriate.
- Develop metrics and scorecards to measure risk to the organization, as well as effectiveness and efficiency of SOC associates.
- Partner with the security engineering team to improve tool usage and workflow, as well as with the advanced threats and assessment team to mature monitoring and response capabilities.
- Minimum Education/ Experience: Bachelor's degree with 10+ years relevant work experience including prior management experience; 4+ years of equivalent work experience can be substituted for Bachelor's degree
- Preferred Education/ Experience: Master's degree with 8+ years relevant work experience
- Required Certification(s): Security Essentials - SEC401 (GSEC certification), Computer Forensic Investigation - Windows In-Depth - FOR408, Security Incident Handling and Forensic - FOR 508 Certified Ethical Hacker (CEH)
- Preferred Certifications: Relevant cybersecurity certifications (e.g., CISSP, CISM, GIAC) preferred.
- Excellent analytical and problem-solving skills with the ability to assess complex security issues and develop effective solutions.
- Strong communication and interpersonal skills, with the ability to communicate cybersecurity concepts to non-technical stakeholders.
- Strong leadership skills with demonstrated experience in managing and developing cybersecurity team
- Data Fluency
- Written/verbal communication and listening
- Strong interpersonal and relationship skills
- Teamwork and collaboration
- Results orientation
- Adaptability
- Play to Win - We expect to win, working together to drive results. We push ourselves to simplify and innovate. When we fail, learn from it. We will break with the past when necessary to move forward.
- Act Like Owners - We take action. We build relationships across functions so we can see the company holistically and seek out opportunities for improvement. We're willing to sacrifice in one area if that leads to our overall success.
- Do What's Right - We behave ethically. We are transparent. We share information about the factors influencing our actions. Our behavior aligns with our values. Our products make the world a better place.
- Create Opportunity for All - With success comes opportunity. Everyone is respected and included. We provide opportunities for all associates to reach their Full Potential.