Vice President Security Engineering (Data Centers)
Role in brief
Galaxydigitalservices, a leader in digital assets and data center infrastructure, seeks a Vice President of Security Engineering. This role involves overseeing Security Operations Center (SOC) activities, enhancing threat detection, and leading incident response efforts. Candidates with strong scripting abilities, experience in cloud and on-premise security environments, and a background in SOC management should apply.
About the role
This Vice President of Security Engineering position focuses on leading and optimizing the Security Operations Center (SOC) at Galaxydigitalservices. The role involves hands-on management of daily SOC operations, including monitoring, analysis, and incident response. A key part of the work is identifying and investigating cybersecurity threats using advanced tools and SIEM platforms, ensuring robust protection for the company's digital assets and data center infrastructure.
The role also emphasizes proactive security measures through custom scripting and automation. You will develop scripts in languages like Python, PowerShell, and Bash to automate security tasks, improve threat detection capabilities, and streamline incident response workflows. This includes analyzing logs, network traffic, and system behavior to detect anomalies and potential breaches, working to continuously enhance the company's security posture.
Success in this position means effectively leading incident response activities, conducting root cause analysis, and implementing mitigation strategies. You will support the deployment and optimization of various security tools, such as SIEM, SOAR, IDS/IPS, firewalls, and EDR solutions. Collaboration with IT, DevOps, and other security teams is essential to maintain consistent security practices and contribute to the development of security policies and procedures.
The listed salary range for this Vice President position is between $120,000 and $200,000 USD.
Skills that matter here
- SOC Operations: This role involves overseeing and managing the daily operations of the Security Operations Center.
- Python: Used for developing custom scripts to automate security processes and improve threat detection.
- SIEM Platforms: Utilized for identifying and investigating cybersecurity threats through advanced monitoring and analysis.
- AWS: Experience with various cloud environments is required for managing security across different infrastructures.
- Threat Detection: A core responsibility is to identify, investigate, and respond to cybersecurity threats using advanced tools.
- Incident Response: This position leads or supports activities related to managing security incidents, including analysis and mitigation.
Who this role suits
- A leader with a proven background in managing Security Operations Centers.
- Someone adept at scripting and automation to enhance security workflows.
- An individual with experience securing both on-premise and cloud environments.
- A mentor who can guide junior team members and contribute to team development.
From the employer
- SOC Operations & Management: Oversee and manage the day-to-day operations of the Security Operations Center, including monitoring, analyzing, and responding to security alerts and incidents.
- Threat Detection & Response: Identify, investigate, and respond to cybersecurity threats using advanced monitoring tools, SIEM platforms, and other security technologies.
- Incident Management: Lead or support incident response activities, including root cause analysis, mitigation, and post-incident reporting.
- Custom Scripting & Automation: Develop and maintain custom scripts (e.g., in Python, PowerShell, Bash) to automate security processes, improve threat detection, and streamline incident response workflows.
- Security Monitoring & Analysis: Analyze logs, network traffic, and system behavior to detect potential security breaches or anomalies.
- Tool Implementation & Optimization: Support the deployment, configuration, and optimization of security tools such as SIEM, SOAR, IDS/IPS, firewalls, and endpoint detection and response (EDR) solutions.
- Collaboration with Teams: Work closely with IT, DevOps, and other security teams to ensure consistent security practices and to implement protective measures.
- Security Policies & Procedures: Participate in the development and maintenance of security policies, procedures, and best practices.
- Training & Mentoring: Provide guidance and mentorship to junior team members and contribute to the continuous improvement of the SOC team.
- Experience working in or running a SOC
- Strong scripting skills in Python, PowerShell, Bash, or similar languages, with experience in automating security tasks.
- On-prem Firewall Rule and Configuration (Palo)
- Experience with various on-prem and Cloud environments (VMware, AWS, Azure)
- Experience with security log/analysis tools such as Splunk, ELK, SumoLogic, or similar SIEM platforms.
- Experience with XDR, DLP, and UBA tools and concepts (Cortex, CrowdStrike, etc.)
- Good understanding of network protocols and system security
- Windows and Linux experience
- Experience with CI/CD and DevOps practices
- Familiarity with version control (Git)
- Excellent communication and collaboration skills
- Competitive base salary and discretionary bonus
- Flexible Time Off (i.e. unlimited paid vacation days)
- Company paid Holidays (11)
- Company paid sick leave
- Company-paid health and protective benefits for employees, partners, and other dependents
- 3% 401(k) company contribution
- Generous paid Parental Leave
- Free virtual coaching and counseling sessions through Ginger
- Opportunities to learn about the Crypto and Data Center industries
- Free daily snacks in-office
- Smart, entrepreneurial, and fun colleagues
- Employee Resource Groups
Questions about this role
What is the remote work policy for this role?
This is a fully remote position.
What is the expected salary range for this position?
The salary for this role ranges from $120,000 to $200,000 USD.
What technical skills are important for this role?
Key technical skills include experience in SOC operations, scripting in Python, PowerShell, or Bash, familiarity with SIEM platforms like Splunk or ELK, and experience with cloud environments such as AWS and Azure.