What does a successful Cyber Security Exercise planner do at Fiserv?
You will be responsible for the full lifecycle of cybersecurity and readiness exercise activities, to include designing, developing, conducting and post-exercise evaluation processes. These activities will focus on strengthening cybersecurity incident response and coordination processes. You will scope and build exercises and processes and coordinate with all relevant areas of the organization to communicate lessons learned from exercises to improve cybersecurity response and resilience. This position reports to the VP, Cybersecurity Threat Intelligence.
What you will do:
- Design security-focused exercises in accordance with existing playbooks and processes
- Manage exercise projects, including performing initial scoping and leading regular meetings to obtain information, provide status updates, and troubleshoot issues
- Deliver seminars, workshops, and tabletop exercises with a variety of participants from various business and technical teams
- Identify and assess gaps and opportunities to improve processes, procedures, and inter-departmental relationships
- Stay up to date on information security threats and trends, and summarize and contextualize this information to non-technical personnel
What you will need to have:
- 3+ years’ experience in the role of Cyber Exercise Planner and Facilitator
- Demonstrated experience working with technical and non-technical staff and ability to interface with executive level management and give senior level presentations
- Experience facilitating conversations with participants representing multiple disciplines, remotely or in person
- Experience conducting post-exercise interviews and debriefings; identify, record, and report on action items and exercise feedback
- Experience writing post-exercise reports for a variety of audiences, summarizing exercise events and providing next-steps guidance to report recipients
- Homeland Security Exercise and Evaluation Program (HSEEP) certification
- Adhere to company policy to work onsite from Fiserv office Monday to Friday
What would be great to have:
- 5+ years of direct experience actively managing and using threat intelligence to reduce risk and threat exposure
- In-depth knowledge of the cyber threat landscape and how to apply attacker motivation, capability, and intent to an organizational threat landscape
- Strong understanding of vulnerability/exploitation concepts and common business continuity and disaster recovery procedures
- Experience with incident response, threat intelligence, and/or incident management processes and familiarity with emergency and/or security preparedness planning
- A bachelor’s degree in a relevant field, or an equivalent combination of education, work, and/or military experience
#LI-RM1
R-10356151
