Offers “Volvo”

New Volvo

Team Leader Cybersecurity Americas

  • Curitiba (Curitiba)
  • IT development

Job description

Transport is at the core of modern society. Imagine using your expertise to shape sustainable transport and infrastructure solutions for the future? If you seek to make a difference on a global scale, working with next-gen technologies and the sharpest collaborative teams, then we could be a perfect match. 

Who we are

We, at Enterprise IT Security, are on a mission to secure the IT journey for the Volvo Group. We work closely together with stakeholders across several Business Areas (BAs), Truck Divisions (TDs), and Group Functions (GFs). While the BAs are responsible for driving the business, the TDs provide research, development, purchasing, manufacturing, and assembly. Within Volvo Group, the GFs own the Group agenda, provide strategic direction, and have global responsibility in group-wide functions such as IT, legal, compliance and security.   

With Enterprise IT Security, you will be part of Group Digital & IT (Group Function). A global and diverse team of highly skilled professionals who work with passion, trust each other, and embrace change to stay ahead. Enterprise IT Security (EITS) works in close collaboration with both Group Security function and security functions within TD’s, BAs and GFs. Together we work to build a security posture that is best in class.    

What you will do

Lead the cybersecurity operations center (CSOC) during the assigned shift and escalate relevant issues to the Head of SOC. Provide guidance and management to CSOC analysts on a daily basis. Communicate regularly with the Head of SOC to provide updates on Cybersecurity Monitoring posture. Designs, develops, and implements cybersecurity capabilities to investigate, identify, and actively defend the Volvo Group infrastructure against Advanced Persistent Threats. Works closely with Head of SOC as well as other supervisors to meet/exceed service levels.  

 

Primary Duties & Accountabilities:  

 

·  Supervise on-duty CSOC personnel. Perform and document work activities relating to ongoing Incident Response (IR) and active investigations. Work closely with Head of SOC as well as other supervisors to perform duties in support of the CSOC mission. 
·  Provide a point of escalation for Security Monitoring analysts. Provide direction and support in the identification, detection, containment, eradication, and recovery of incidents. Correlate incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation. Perform analysis of log files from a variety of sources (host logs, server logs, network traffic logs, firewall logs, intrusion detection/prevention system [IDS/IPS] logs) to identify possible threats to the Volvo Group digital infrastructure. 
·  Maintain and enforce adherence to the Volvo Group Cyber Defense Center standards, policies, and procedures 
·  Participate in efforts to analyze and define security filters and rules for a variety of security parameters. Recommend short- and long-term adjustments to controls for immediate and future identification, containment, and remediation. Provide direction on signatures, rules, alerts, parsers, and custom scripts to enhance the Volvo Group defensive perimeter. 
·  Oversee updates to documentation of the CSOC. Contribute to process definitions and development. Maintenance and audit of documented procedures and playbooks, including process integration with managed service providers, 3rd party vendors, internal IT organizations and truck division/business area/group functions. Write and publish cyber defense techniques, guidance, incident response documentation, and reports to appropriate constituencies. Perform cyber defense trend analysis and reporting.  
·  Remain up-to-date on the latest cybersecurity information in order to validate the identification, detection, and investigation capabilities of the Volvo Group’s security operations technologies and capabilities.  

Who are you?

Do you dream big? We do too, and we are excited to grow together. In this role, you will bring: 

 

·  Bachelor’s degree in Computer Science, Information Technology, or a 4-year technical degree in a related discipline (or a minimum of 5 years of IT experience) and 4-7 years of solid, diverse experience in cyber security incident response, or in lieu of a degree, 6-9 years oc a combination of education and relevant work experience 
·  One or more of the following: GIAC Certified Intrusion Analyst – GCIA, GIAC Certified Incident Handler – GCIH 
·  Knowledge of computer networking services, protocols, and technologies  
·  Experience in incident classification, incident response, and timelines for responses 
·  Working knowledge of incident response and handling methodologies 
·  Have utilized intrusion detection methodologies and techniques for detection of host and network-based intrusions 
·  Knowledge of network traffic analysis methods 
·   Experience with system and application security threats and vulnerabilities, injections, race conditions, covert channel, replay, return-oriented attacks, malicious code 
·  Understanding of what constitutes a network attack and the relationship between vulnerabilities and threats, and different classes of cyber attack vectors (passive, active, insider, close-in, distribution)  
·  Strong understanding of general cyber attack stages (reconnaissance, weaponization and delivery, exploitation, installation, command and control, actions on objectives) 
·  Previous experience with network security architecture concepts including topology, protocols, components, and principles (defense-in-depth) 
·  Knowledge of OSI model, and system administration, network, and operating system hardening techniques

 

Preferred Qualifications: 

 

·  Graduate degree in cybersecurity or related area of expertise 
·  Ability to demonstrate analytical skills, technical knowledge, and practical application of cyber and information security principles to business leaders and technical personnel 
·  Direct experience in cybersecurity and incident response (SOC, SIRT, C-SIRT, Crisis Management) investigating targeted intrusions through complex enterprise networks 
·  Demonstrated skill identifying, detecting, containing, and reporting malware 
·  Skill in using security event correlation tools 
·  Demonstrated knowledge of cyber defense policies, procedures, and regulations 
·  2-3 years of supervisory experience in an operations center 

What’s in it for you?

We offer a solid package of compensation and benefits, plus you will enjoy:  

 

•    Great work life balance including generous paid time off benefits
•    Competitive base salary as well as eligible for annual company bonus
•    Comprehensive group health benefits package
•    Excellent 401(K) with company match as well as additional contribution percentage
•    Tuition Reimbursement Program 

Ready for the next move?

•    Are you excited to bring your skills and disruptive ideas to the table? We can’t wait to hear from you. Apply today! 
 

We value your data privacy and therefore do not accept applications via mail. 

 

Who we are and what we believe in 
Our focus on Inclusion, Diversity, and Equity allows each of us the opportunity to bring our full authentic self to work and thrive by providing a safe and supportive environment, free of harassment and discrimination. We are committed to removing the barriers to entry, which is why we ask that even if you feel you may not meet every qualification on the job description, please apply and let us decide.

 

Applying to this job offers you the opportunity to join Volvo Group . Every day, across the globe, our trucks, buses, engines, construction equipment, financial services, and solutions make modern life possible. We are almost 100,000 people empowered to shape the future landscape of efficient, safe and sustainable transport solutions. Fulfilling our mission creates countless career opportunities for talents with sharp minds and passion across the group’s leading brands and entities.

 

Group Digital & IT is the hub for digital development within Volvo Group. Imagine yourself working with cutting-edge technologies in a global team, represented in more than 30 countries. We are dedicated to leading the way of tomorrow’s transport solutions, guided by a strong customer mindset and high level of curiosity, both as individuals and as a team. Here, you will thrive in your career in an environment where your voice is heard and your ideas matter.

Job Category:  Information Technology

Organization:  Group Digital & IT

Travel Required:  Occasional Travel

Requisition ID:  15903

Make every future a success.
  • Job directory
  • Business directory