• Monitor and respond to cybersecurity events and incidents using established processes, creating process and procedures where none are already established. Also, provide technical and process leadership to an offshore Cybersecurity Operations team.
• Enforces cybersecurity policies and procedures by administering and monitoring security profiles.
• Monitoring of cybersecurity events in the SIEM, other security feeds and then take appropriate action based on the company cybersecurity policy. Perform process improvements to reduce incidents and MTTR with the further goal of eliminating recurring incidents and false positives.
• Supports internal investigations by performing e-discovery, forensics, and other investigative techniques.
• Detailed analyses of various cybersecurity event sources.
• Create and execute a cyber-war gaming or range exercise incorporating multiple business line scenarios.
• Ability to identify compromised computers using logs, packet capture, and related computer centric evidence sources.
• Develop advanced capabilities necessary to monitor and detect indicators of compromise using cybersecurity scripts, tools and services.
• Serve in a leadership role facilitating the incident response process while ensuring the appropriate urgency and discretion is applied to the incident.
• Communicate upwards according to incident response guidelines. Provide feedback to Cybersecurity Governance and Architecture teams regarding improvements found in day-to-day activities.
• Travel will be required to meet with Cybersecurity and Operations teams.
• Be a security advocate and change leader for security initiatives and operational processes with a goal of improving the overall culture.

Required Experience:

• Bachelor's degree in Cybersecurity or related Computer Science field
• 5+ years of Information Technology experience.
• Experience with ITSM, ITIL, NIST, and ISO 27001 frameworks.
• Proven ability to lead and manage multiple priorities.
• Proven organizational skills with the ability to manage multiple tasks with changing priorities.
• Experience with leading onshore and offshore global teams.
• Strong ability in multiple technologies, analytical techniques, and leadership skills.

Preferred Qualifications:

• Experience with ITSM, ITIL, ISO, and NIST Frameworks.
• Excellent organizational, communication, documentation and project management skills.
• In-depth knowledge of Operational Processes (Event, Incident, Change, Problem).
• In-depth knowledge of SIRP (Security Incident Response Process).
• Has familiarity and general understanding of Microsoft Cybersecurity tool set .
• Has familiarity and general understanding of data security, common vulnerabilities, and attack patterns.
• Excellent analytical and problem-solving skills.
• Proven ability to utilize data to drive continuous improvement.

Preferred Certifications:

• CISSP: Certified Information Systems Security Professional
• CompTia + Certifications (Network+, Security+, CySA+)
• Ethical Hacker Certification
• ITIL Certification

Please note this position is based in Lexington, KY and relocation assistance will not be provided for this particular role.

#LI-KB1

How to Apply ?

Are you an innovator? Here is your chance to make your mark with a global technology leader. Apply now!

We are proudly an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based on race, color, religion, gender, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression.

Global Privacy Notice

Lexmark is committed to appropriately protecting and managing any personal information you share with us. Click to view Lexmark's Privacy Notice.