Global Head of Cyber Security Content Development & Advanced Detectio

Key Skills

Aartificial intelligence, Analytical and Problem solving, Big Data Technology, Content development, Cyber Security, Cybersecurity, Data Analytics, Effective communication skills, English Proficiency, French language, German Language, Italian Language, Leadership, Machine learning techniques

Job Description

Your role

Are you skilled in Cyber Security? Do you have experience leading highly technical cyber defenders to protect the enterprise against cyber-attacks? You will operate in a fast-moving environment and will manage complex and challenging operational cyber-security issues, under pressure and constrained timelines. As an experienced leader and cyber security professional, we will call upon your creativity and innovation, in additional to your operational and technical expertise, to drive agile transformation and operational excellence globally. We will seek a fine balance of technical and management/leadership skills, operating comfortably in evolving situations under cyber-attack. As a strong advocate for advancing the security posture of UBS, you will have the ability to exercise significant positive impact in the organization.

We are looking for a Global Head of Content Development & Advanced Detection (CDAD) who will:

• Lead the global content development team in developing and implementing advanced use cases within the SIEM and SOAR platforms, driving the strategic direction through partnerships with relevant Cyber Security teams
• Develop ongoing innovation in the Content Development services' strategy, roadmap, technology, people and operating model, following a threat driven approach
• Work with respective engineering team and threat modelling to articulate the clear requirements of attributes related for each data feeds required for creating use cases
• Work with the SOC, threat intelligence team, and other key stakeholders in outlining the value of each use case, the threat model based reasoning, and support the SOC in moving the use case in production
• Integrate, enrich and monitor threat intel feeds on the SIEM and SOAR platforms
• Monitor and track threat feeds ingestion and best utilization of threat feeds
• Oversee the performance of advanced detection systems and ensure their compliance with internal policies and external regulations
• Manage the use case life cycle, including research, development & maintenance of the use case library
• Review and define the sustainability/remit/scope of the Content Development Service to ensure ongoing design effectiveness
• Lead the required governance for content development, resolving ambiguity and ensuring effective and timely communication of risks
• Provide effective KPI and KRI metrics that resonate with stakeholders and provide clarity in communicating our security posture
• Provide leadership, mentorship, and direction to the CDAD team ensuring a high-performance culture and promoting professional development.

Your team

You'll be leading a global content development and advanced detection team. You will be exposed to a peer function and will support, Proactive Hunting, Insider Threat, and a global 24x7 Security Operations Center. We are global team with the presence in Switzerland, USA and Singapore focusing on proactive defense capability supported by active intelligence consumption.

Your expertise

You have:

• 15+ years of experience working in IT or Technical Operational teams
• 5+ years of relevant experience in creating and managing security use cases and detection content across a broad array of platforms
• Experience leading and building globally distributed teams
• Strong understanding of the information security space with an emphasis on threat detection and how to empower it leveraging the latest technologies (e.g. AI / ML, big data analytics, etc.)
• Strong operational leadership skills combined with a comprehensive understanding of technology
• Highly Experienced and expert understanding of IT Security practices and Cyber Threat Landscape trends
• Proven experience with security processes, process improvement and standard operating procedures of global organizations in the financial sector or related. Experience includes the creation, maintenance, and enhancement of standard operational procedures (SOPs), incident and problem management, and change requests
• Proven experience setting strategic vision and executing on that strategy
• Analytical, problem-solving and synthesizing skills (you know how to figure stuff out and find a solution to a problem)
• A confident communicator that can explain technology to a non-technical audience
• Positive attitude and interested in working in a highly dynamic fast paced environment
• Possession of at least one of the industry recognized cyber security certifications (CISM, CEH, CISSP, SANS GIAC) would be a huge benefit

You are:

• Self-driven professional passionate about Cyber Security
• Always keen to know all recent news and innovative developments in Cyber Security field
• Innovative, creative and always taking the lead to improve yourself and the team by going an extra mile
• A team-player taking ownership, challenging inefficient processes and suggesting improvements
• Great collaborator
• Capable of understanding client, stakeholder needs and translating requirements into products and services
• Fluent in English, and preferably at least one of the Swiss official languages (German, French, Italian)

About us

UBS is the world’s largest and only truly global wealth manager. We operate through four business divisions: Global Wealth Management, Personal & Corporate Banking, Asset Management and the Investment Bank. Our global reach and the breadth of our expertise set us apart from our competitors.

With more than 70,000 employees, we have a presence in all major financial centers in more than 50 countries. Do you want to be one of us?