Sr. Principal, Cyber Threat Defense - Remote, United States - MetLife

Description

Description and Requirements
TITLE: Senior Principal Cyber Threat Defense Technology
LOCATION: Cary, NC
The Team You Will Join
This role reports into the Cybersecurity team within Global Security. The team is responsible for preparing for, detecting and responding to cyber threats against MetLife. The team manages both offensive and defensive cybersecurity tools and technology and operates 24x7x365 globally. The team works closely with other teams both in Global Security and Global Technology to ensure MetLife networks and systems are built and maintained in defensible manner.
The Opportunity
The Senior Principal of Cyber Threat Defense Technology will be the most senior technical role across the Cybersecurity organization and be responsible for designing and architecting the key technologies that protect MetLife from cyber-attack. This role will be instrumental in defining the technical strategy for NextGen SOC, which is a Global Security top program (and has been communicated to the BoD). While this role in an individual contributor without direct reports, it will be highly influential and guide MetLife's cyber threat defense technology strategy going forward.
How You'll Help Us Build a Confident Future (Key Responsibilities)

• Define the NextGen SOC technical strategy, reference architecture, operational architecture and low-level design.
• Create and maintain design and architecture documents for core cyber threat defense platforms including EDR/EPP, NDR, XDR, IDTR, Web Proxy/SASE, SIEM/UEBA, SOAR and other custom platforms
• Collaborate with other security leaders and technical SMEs to develop integration strategies for telemetry from endpoint, network/firewall, secure access service edge, identity, email, cloud, application, asset and threat intelligence products
• Keep abreast of emerging trends, threats and countermeasures and provide strategic guidance on technology selection, investment, and budgeting
• Drive continuous improvement and maximize ROI across threat defense infrastructure thru adoption of cutting-edge features, integration, and automation and where necessary convergence, decommissioning and divestment
• Mentor and guide more junior SMEs, architects and engineers across global security
• Develop and implement security engineering and architecture best practices, methodologies, and processes
• Monitor and report on the performance, availability, reliability, and scalability of threat defense systems
• Manage key vendor relationships and run proof of concepts and pilots

What You Need to Succeed (Required Qualifications)

• Bachelor's Degree in Computer Science or equivalent
• Advanced security certifications including CISSP/CISM and SANS GCIA/GCIH
• 12 + years of increasing responsibility in cybersecurity with experience in security monitoring and operations technologies and processes, and security metrics and analytics reporting
• Demonstrated experience complex, global enterprises required
• Specialized in architecting, building and maintaining EDR, SIEM, SOAR and other cyber threat defense platforms
• Extensive experience working with Managed Security Service Providers and integrating workflows between SIEM, SOAR and other security platforms including DLP, Credential Vaults, Intel Feeds, EPP/EDR tools, Active Directory, Vulnerability Management Tools, etc.
• Solid understanding of security frameworks, threat intelligence, intrusion detection, threat and vulnerability management, web application security, malware analysis, identity management
• Expert understanding of the cyber-attack lifecycle/kill chain, cybersecurity frameworks, threat defense & incident response principles, and process, methodologies
• Experience designing Cyber Security solutions, including creating artifacts, models, and strategy presentations
• Solid understanding of the end-to-end information technology (IT) process, including architecture, design & engineering, implementation, and operations
• Experience performing security design reviews to assess security implications for introduction of new or differing technologies within the environment
• Ability to provide direction and guidance on architectural use cases and requirements

The wage range for applicants for this position is $157,800 to $210,400. This role is also eligible for annual short-term incentive compensation and stock-based long-term incentives. MetLife offers a comprehensive benefits program, including healthcare benefits, life insurance, retirement benefits, parental leave, legal plan services and paid time off. All incentives and benefits are subject to the applicable plan terms.
Benefits We Offer
Our U.S. benefits address holistic well-being with programs for physical and mental health, financial wellness, and support for families. We offer a comprehensive health plan that includes medical/prescription drug and vision, dental insurance, and no-cost short- and long-term disability. We also provide company-paid life insurance and legal services, a retirement pension funded entirely by MetLife and 401(k) with employer matching, group discounts on voluntary insurance products including auto and home, pet, critical illness, hospital indemnity, and accident insurance, as well as Employee Assistance Program (EAP) and digital mental health programs, parental leave, volunteer time off, tuition assistance and much more
About MetLife
Recognized on Fortune magazine's list of the 2023 "World's Most Admired Companies" as well as the 2023 Fortune 100 Best Companies to Work For , MetLife , through its subsidiaries and affiliates, is one of the world's leading financial services companies; providing insurance, annuities, employee benefits and asset management to individual and institutional customers. With operations in more than 40 markets, we hold leading positions in the United States, Latin America, Asia, Europe, and the Middle East. Our purpose is simple - to help our colleagues, customers, communities, and the world at large create a more confident future. United by purpose and guided by empathy, we're inspired to transform the next century in financial services. At MetLife, it's #AllTogetherPossible. Join us
Benefits We Offer
Our U.S. benefits address holistic well-being with programs for physical and mental health, financial wellness, and support for families. We offer a comprehensive health plan that includes medical/prescription drug and vision, dental insurance, and no-cost short- and long-term disability. We also provide company-paid life insurance and legal services, a retirement pension funded entirely by MetLife and 401(k) with employer matching, group discounts on voluntary insurance products including auto and home, pet, critical illness, hospital indemnity, and accident insurance, as well as Employee Assistance Program (EAP) and digital mental health programs, parental leave, volunteer time off, tuition assistance and much more
About MetLife
Recognized on Fortune magazine's list of the 2023 "World's Most Admired Companies" as well as the 2023 Fortune 100 Best Companies to Work For , MetLife , through its subsidiaries and affiliates, is one of the world's leading financial services companies; providing insurance, annuities, employee benefits and asset management to individual and institutional customers. With operations in more than 40 markets, we hold leading positions in the United States, Latin America, Asia, Europe, and the Middle East.
Our purpose is simple - to help our colleagues, customers, communities, and the world at large create a more confident future. United by purpose and guided by empathy, we're inspired to transform the next century in financial services. At MetLife, it's #AllTogetherPossible . Join us
Equal Employment Opportunity/Disability/Veterans
If you need an accommodation due to a disability, please email us at This information will be held in confidence and used only to determine an appropriate accommodation for the application process.
MetLife maintains a drug-free workplace.
#BI-Hybrid