Global Head of Security Operations Center
What's the role?
The Global Head of Security Operations Center runs and further develops the Hilti Security Operation Center (SOC) in Kuala Lumpur. In close collaboration and partnership with the IT engineering and IT operational teams, the Global Head of Security Operation Center and his/her team select, develop, implement and run security solutions and integrate managed security services for the Hilti Group. Furthermore, the role involves defining the risk-based use case target landscape and cross-tool stack detection logic of the Hilti SOC for IT, IoT and OT, managing security incidents, leading investigations and making actionable cyber threat intelligence accessible to internal stakeholders.
Who is Hilti?
If you’re new to the industry, you might not have heard of us. We provide leading-edge tools, technologies, software, and services for the global construction sector. We have a proud heritage, built over more than 75 years, and a worldwide reputation for pioneering products and exceptional service. With some 30,000 people in more than 125 countries, which we are looking to expand, we’re a great place for you to show us your worth, step up to new challenges and grow your career.
Global IT within Hilti is a truly global team with main hubs in Buchs (Switzerland), Kuala Lumpur (Malaysia) and Plano/Tulsa (USA). All locations have highly competent teams who work very closely together. Hilti`s Global IT team is known for their focus on sustainable value creation by translating latest IT innovations into value creating solutions & services and this is also the home of the Chief Cyber Security Officer Organization.
What does the role involve?
You will report to the Chief Cyber Security Officer (CCSO) and be part of the CCSO leadership team. From our office in Kuala Lumpur, you lead an international team of security experts and together with your team take end-to-end ownership in all aspects of the Hilti Security Operations Centre (governance, people, process, technology).
As a passionate team builder and to support our people growth commitment you drive recruiting, hiring, coaching, upskilling and training of your team.
Together with your engineers you define, select, develop, implement and run security solutions (SIEM, SOAR, TIP, EDR) and integrate third-party provided managed security services (24/7 monitoring, vulnerability management) for the Hilti Group in close collaboration and partnership with the IT engineering and IT operational teams
You defined the risk-based use case target landscape and cross-tool stack detection logic of the Hilti SOC for IT, IoT and OT to aggregate these elements into a holistic “situational awareness” that can be readily adapted to new or emerging cyberthreats.
Together with your security incident responders you manage, contain and resolve security incidents according to our playbooks and incident response plans in a timely, appropriate and reproducible manner. You also lead forensic investigations, proactive threat hunting and make sure actionable cyber threat intelligence is propagated to internal stakeholders.
As an ambassador for all SOC-related topics you continuously support cyber risk management, reporting and project related activities and you take an active role in managing our stakeholders by actively advising & coaching our IT engineering and IT operational teams.
What do we offer?
We’ll give you the tools you need to excel in your role. You’ll enjoy a rare combination of autonomy and camaraderie, as you’ll manage your own project while being part of a friendly team. You’ll not just be another pair of hands but a fully integrated team member with lots of self-responsibility. From there, we’ll trust you to do whatever it takes to deliver outstanding results. Go the extra mile and we’ll reward you with strategic development discussions and career opportunities.
Why should you apply?
We want to mature into leading SOC organization with highly automated and extremely adaptive capabilities using latest technologies. We work in classical IT environments but also in IoT and OT environments where we anticipate a lot of progress and capability building in the future.
For this position, we are seeking a highly motivated innovator, agile implementer, user-centric service deliverer and a passionate team builder.
You feel comfortable when it comes to explaining the latest threats to the CIO as well as fine-tuning and tweaking a SIEM use case together with an engineer at console. You are self-starter with a demonstrated ability to work both independently in a matrix as well as in a global leadership team. If you combine a strong analytical skillset with knowledge and experience in state-of-the-art cyber security technology and processes, and with excellent oral & written communication skills, you are exactly what we are looking for.
What you need is:
- Must Have; BSc/MSc degree in cybersecurity, computer science, information systems, engineering or a related technical discipline related to information security, or computer network defense
- 5+ years’ proven leadership experience in managing a SOC end-to-end or leading a functional area in a SOC with more than 5 people (e.g. security incident response or cybersecurity engineering) for 5+ years
- Must have had previous hands-on experience in engineering/operating SIEM/SOAR/TIP/EDR, NTA solutions
- Strong analytical and problem-solving skills
- Clear track record in at least two of the following: risk management, third party supplier management, compliance management, project management
- Excellent interpersonal skills and well balanced, adaptive communication style; ability to explain complex topics in simple terms
- Fluent in English (verbally and written)
- Good to have; Working experience in the manufacturing industry
- Familiarity with multi cloud environments
- Previous exposure to IoT or OT
- Knowledge of NIST and SANS incident response frameworks and best practices
- A thirst to learn and challenge yourself
Come Join Us!