As the largest provider of health care products and services to office-based dental and medical practitioners, Henry Schein Inc. understands what it takes to be successful. Ranked first in its industry on the FORTUNE® World's Most Admired Companies list we set ourselves apart through our culture. Our Culture is defined by our values, including mutual responsibility, ethical behaviour, creativity and open communication. Approximately 25,000 Team Schein Members (TSMs) worldwide help us to keep our culture and continue to thrive as a leader in our industry.
Exciting Job Opportunity: Defensive/Offensive Cybersecurity Lead
This position will be located close to one of our offices in Madrid / Milan / Paris
This role will set a vision and define a compelling roadmap to build a fit for purpose defensive & offensive services portfolio, aimed at monitoring and responding to security events, and delivering measurable outcomes.
This role will develop new innovative solutions to advance the detection and remediation of cyber events, validate requirements and resulting services with HIS stakeholders, develop metrics, and structure an effective and agile experimentation framework in partnership with the rest of the cyber security team to test effectiveness of our cyber tools & processes landscape.
The lead will also oversee the financial aspects, support internal and external security audits, and report to the chief information security officer (CISO).
Essential Responsibilities:
* Set the strategic direction for Incident response, and all offensive and defensive practices for Henry Schein
* Supervise and manage the Global Security Operations Center (SOC)
* Be responsible for penetration testing/ vulnerability management teams
* Define a plan for hiring and training the defensive/offensive team members
* Create processes and playbooks to handle security events and incidents
* Assess and prioritize security events, including dispatching them to other key groups
* Oversee the continuous improvement of rules and procedures
* Develop and integrating, as needed, with crisis management plans
* Create reports and dashboards to monitor performance and effectiveness of the services
* Design and execute periodic tabletop exercises to test incident response plans
Areas in scope for the role:
* Security Event triaging and Incident Response : Leveraging on HSI telemetry and thread intelligence sources, confirm, determine or investigate critical alerts
* Threat Hunting : based on indicators of attack and compromise, proactively look for threats inside the organization
* Vulnerability Management : continually identify, assess, report on, manage and remediate vulnerabilities across IT services
* Penetration testing : prepare and execute, with the support of the team, an exhaustive, risk-based penetration testing plan to assess the adherence of the security controls to HSI policies and standards, as well as to industry best practices
* Offensive/Defensive technologies and standards : with the support of the security architecture team, identify the best solutions to deliver best-in-class offensive/defensive security services
Desired Qualifications:
* 10-15 years of offensive security experience
* 10-15 years of experience in defensive security, including insourced/managed Security Operation Centers, threat hunting and threat intelligence, offensive/defensive toolsets and platforms
* Knowledge and familiarity of multiple SIEM solutions including, QRadar, Splunk, And Microsoft Sentinel
* Extensive knowledge of incident response processes and hand-on experience in cyber incident investigations
* Worked with large scale MSSP and customers
* Offensive Security and/or incident response certifications are a must
* Other technical certification are a plus
* A Bachelor Degree is a plus