Over the last 20 years, Ares’ success has been driven by our people and our culture. Today, our team is guided by our core values – Collaborative, Responsible, Entrepreneurial, Self-Aware, Trustworthy – and our purpose to be a catalyst for shared prosperity and a better future. Through our recruitment, career development and employee-focused programming, we are committed to fostering a welcoming and inclusive work environment where high-performance talent of diverse backgrounds, experiences, and perspectives can build careers within this exciting and growing industry.

Job Description

Ares Management is currently seeking a Security Operations professional to join the Cybersecurity team within the Technology & Information Security organization in our New York office. The IT team consists of over 200 team members globally and is responsible for the firm’s technology landscape. The Cybersecurity team within IT oversees and manages Ares’ cyber risk.  This is an exciting opportunity to join a growing and dynamic global security team, embracing opportunities to be challenged and grow with supportive and positive leadership.

The ideal candidate will be passionate about information security operations, forensic investigation, and incident response (IR).  This position will join our security operations team and will focus on security operations, forensics, and IR. The ideal candidate will have a strong background in security operations and incident response.

Primary functions and essential responsibilities

• Detects, identifies, and responds to cyber events, threats, security risks, and vulnerabilities in line with cyber security policies and procedures

• When necessary, lead and coordinate incident response investigators and stakeholders, and security operations center team to effectively investigate and neutralize a security incident

• Communicates with stakeholders and leadership to provide timely and accurate updates on the progress of the response effort

• Mentors and leads junior team members by example and through effective communication via one on one meetings, coaching, informative instructions, or other methods as required

• Completes projects on time, according to instruction, and within requirements described by stakeholders

• Identifies, documents, and blocks TTPs, IOCs, and other artifacts during incident response

• Authors content using query languages and scripting for event enrichment and efficient investigation

• Develops procedures and documentation to support incident response and forensic investigation standard operating procedures

• Contributes to the maintenance and optimization of the organization’s incident response plan

• Creates detailed timelines and incident post mortem documentation following investigations

• Conducts threat hunting and analysis using various toolsets based on intelligence gathered

• Partner with the security engineering and platform engineering teams to optimize operations

• Support a program for continuous security controls testing and validation

• Perform other duties as planned and communicated by leadership

Qualifications

Education:

• Bachelor’s degree or equivalent relevant work experience in Computer Science, Information Technology, Business, Intelligence, or Security Operations

• Professional Certifications such as CISSP, CISM, CEH, GCIH, GCIA, GSOC a plus, but are not required

Experience Required:  

• 4+ years of experience in Cybersecurity, or with a reputed Services / consulting firm offering security operations consulting or equivalent experience

• Demonstrated proficiency in IR and forensic response using a variety of toolsets

• Experience in scripting languages such as PowerShell or Python

• Experience in SOAR (Security Orchestration Automation Response) platform preferred

• Experience with one or more Security Information and Event Management (SIEM) solutions

• Experience as a leader, mentor, and trainer of team members

General Requirements:

• Experience should demonstrate a sharp security mindset, initiative to solve problems, and teamwork

• Elevated level of personal integrity, honesty, and character

• Able to professionally handle confidential matters and show an appropriate level of judgment and maturity

• Strong understanding of IR, forensic investigation, and defensive security

• Keen sense of ownership, accountability, curiosity, and independent thinking

• Comfort in dealing with ambiguity, stress, and uncertainty in a dynamic environment

• Well-developed analytic, critical thinking skills and demonstrated problem-solving abilities and decision-making skills.

• Experience in security monitoring, Incident Response (IR), and security tools configuration and tuning

• Knowledge of cyber security frameworks and attack methodologies

• Experience with EDR, email defense, and other security operations tools

• Inquisitive and committed to continual improvement/learning

• Ability to be flexible in terms of hours to coordinate effectively with team members across time zones

• Excellent communication (written, verbal, presentation, documentation) and client service skills

• Capable of interacting and coordinating with stakeholders to drive project/task/support engagement

• Ability to interact effectively at all levels with sensitivity to cultural diversity

Reporting Relationships

Manager, Security Operations Center and Incident Response

Compensation

$150,000 to $170,000

There is no set deadline to apply for this job opportunity. Applications will be accepted on an ongoing basis until the search is no longer active.