At Broadridge, we've built a culture where the highest goal is to empower others to accomplish more. If you're passionate about developing your career, while helping others along the way, come join the Broadridge team.

Role and Responsibilities:

• Lead and orchestrate the response to security incidents, encompassing malware outbreaks, data breaches, and phishing attacks, ensuring swift and effective resolution.
• Conduct thorough investigations to identify the root cause of security incidents and recommend remediation measures to prevent future occurrences.
• Develop and deploy comprehensive incident response plans and playbooks, documenting step-by-step procedures for diverse security incidents in alignment with industry best practices and regulatory requirements.
• Conduct post-incident reviews and lessons learned activities, identifying areas for improvement, and implementing corrective actions to enhance overall incident response capabilities.
• Facilitate tabletop exercises to simulate real-world security scenarios, evaluating the efficacy of incident response plans and procedures.
• Collaborate seamlessly with cross-functional teams, including IT, legal, and compliance, to ensure the timely resolution of security incidents and compliance with regulatory guidelines.
• Provide mentorship and guidance to junior incident response team members, fostering a culture of continuous learning and professional development.
• Stay abreast of the latest cybersecurity threats and trends, proactively identifying potential vulnerabilities and recommending proactive measures to mitigate risks.
• Provide regular updates and briefings to key stakeholders on the current threat landscape and its potential impact on the organization.
• Explore opportunities to introduce automation and innovative technologies in incident response processes to enhance efficiency and reduce response times.

• Bachelor's degree in computer science, Information Security, or a related field. Good to have advanced degree or relevant certifications (e.g., CISSP, CISM, GIAC).
• Minimum of 8 years of experience in cybersecurity incident response, with a proven track record of successfully managing and resolving complex security incidents.
• Hands-on experience with next-generation security technologies, encompassing Managed Detection and Response (MDR), Endpoint Detection and Response (EDR), and email security solutions.
• In-depth expertise in AWS and Azure cloud environments, including practical experience with security controls, monitoring, and incident response procedures within these platforms.
• Proficiency in utilizing Splunk/SIEM log analysis platforms for comprehensive monitoring and analysis of security events and logs across on-premises, cloud, and hybrid infrastructures.
• Demonstrated knowledge of the MITRE ATT&CK framework, showcasing the ability to map observed threats and incidents to the framework for thorough analysis and response.
• In-depth knowledge of cybersecurity frameworks, including NIST, ISO 27001, HIPPA, and PCI DSS.
• Strong analytical and problem-solving skills, with a demonstrated ability to quickly assess and respond to security incidents in high-pressure environments.
• Excellent communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and capability to communicate technical concepts to non-technical stakeholders.
• Commitment to continuous learning and staying updated on industry developments and emerging technologies.