Overview:

The Tech & Ops Lead will be responsible for securing the information asset and the enterprise through the governance, management, and operations of security technology and tools, security operations, processes, and pragmatic use of information security strategy and risk management.

This position reports to Senior Director, GIS.

Responsibilities:

• Govern, supervise, and run the operation of information security technology platforms, solutions and controls in conjunction with the respective IT teams (e.g. IT Enterprise Infrastructure and IT Enterprise Application).
• Lead and manage the lean GIS Tech & Ops team and work closely with key people with security responsibilities in different functions in the IT organization and business units. Where necessary, develop pragmatic security guidelines and operational documents, review and suggest changes to existing infosec related processes and procedures to improve the overall security posture of the enterprise.
• Provide technical support and expertise for the risk management, audit, and compliance activities. Coordinate and participate in the resolution of outstanding security and IT audit issues related to security technology, controls, and operations. Develop and provide meaningful security reports and measurements to measure the performance of security controls and processes, identify improvement areas, and report to the management as necessary. Escalates issues and problems demanding management attention and resolution.
• Govern, manage, and work closely with the 24x7 Security Operations Center provider in monitoring and responding to the security threats and incidents across the organization. Lead and coordinate the incident response activities and team consisting of the internal teams and external parties (e.g. cyber breach coach and digital forensic investigator).
• Participate in the selection, implementation, and operation of information security technology and key infrastructure solutions that are aligned with the strategic objectives and priorities of the business and ensure that they are compliant with approved / agreed security policies and requirements as well as relevant regulations. Take the lead on security projects, processes, and operational security.
• Participate and contribute to the development of technical information security architecture, strategy, and framework. Maintain a strong understanding of relevant security standards, security technology, and threats that may affect the organization. Where necessary, review and suggest new security technologies to strengthen the overall systems, network, and cloud security posture, and communicate to the relevant IT team leaders and security champions.
• Assess existing critical IT infrastructure and applications to ensure they are protected from security exposures, and they are monitored end to end. Provide mitigating recommendations for gaps identified.

Qualifications:

• Typically 10 years and above of working with and/or performing administration and operations of various security technology such as firewall, SIEM, SSL VPN, DLP, EDR, NDR, Secure Web Gateway, PAM, endpoint privilege management, and NAC, with minimum 5 years of experience in managing 24x7 information security operations.
• Familiar with cloud technology and security, such as Azure and AWS security, Microsoft 365 security, CASB, and other cloud security technology such as CSPM and CNAPP.
• Track record in leading small, lean team that handles ISO 27001, SOX, NIST CSF, and CIS CSC aligned security controls and operations.
• Demonstrated ability to work with people from various level of management, from operational and working level people to senior management level. Effective oral and written communication skills.
• Able to work alone with minimum supervision/guidance.
• Working experience in global multi-national company with multicultural people, dealing with people from diverse cultural background and cross-border team across multiple time zones.
• Broad understanding of security strategy, technology and operations.
• Bachelor's degree from an accredited institution, with degree preferred in Computer Science or Information technology systems, cyber security, or related field.
• Having security certification such as Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) Certification will be advantageous.
• Strong Emotional Intelligence with demonstrated sustained leadership in a large organization involving multiple stakeholders.
• Demonstrated management skills, e.g., budget development and administration, policy development and implementation, personnel administration, staff training and development.

Company Overview

Founded in 1951, Kulicke and Soffa Industries, Inc. (NASDAQ: KLIC) specialize in developing cutting-edge semiconductor and electronics assembly solutions enabling a smarter and more sustainable future. Ever-growing range of products and services supports growth and facilitates technology transitions across large-scale markets.

Please refer to the website for more details: www.kns.com.

Equal Opportunity

Kulicke & Soffa recruits on the basis of merit (such as skills, experience or ability to perform the job), regardless of age, race, gender, religion, marital status and family responsibilities, or disability.