Director, Information Security - Network Security Strategy & Analysis

Job Classification

Technology - Information Security

Are you interested in building capabilities that enable the organization with innovation, speed, agility, scalability, and efficiency? The Global Technology team takes great pride in our culture where digital transformation is built into our DNA! When you join our organization at Prudential, you'll unlock an exciting and impactful career - all while growing your skills and advancing your profession at one of the world's leading financial services institutions.

As a Director, Information Security Operations leading the Network Security Strategy & Analysis team within the Network Security function, part of the Information Security Office (ISO), you will partner with other security professionals to improve network security controls, design for the future of Zero Trust networking, and manage a team of analysts focused on reducing technical debt/risk in the network security space while functioning as an ISO SME on network security.

You will determine methods and procedures on new assignments as a strategic leader within the organization. You will work on significant and unique issues where analysis of situations or data requires an evaluation of risk and controls to ensure security of our products and customers! In addition to a deep technical understanding of network security, zero trust principles, security architecture/advisory experience, governance /standards frameworks, and security tool design and operationalization experience, you will bring excellent problem solving, communication and teamwork skills, along with agile ways of working, strong business insight, an inclusive leadership attitude and a continuous learning focus to all that you do.

• Oversee project and operational work, while guiding and transferring knowledge to more junior team members
• Function as an escalation point for analytical work handled by more junior staff on the team, managing and resolving issues independently
• Leverage network security and tool/process specific knowledge as well as organizational and industry knowledge to resolve complex technical/process/people problems
• Partner with leadership to set direction for the future of the network security program, while ensuring an accurate understanding and in-depth knowledge of daily operations to enhance and improve information security processes and controls
• Prioritize technical debt/risk reduction in the network security space, while managing a team of network security analysts to harden the environment
• Drive prioritized risk reductions/tech debt eliminations with the businesses and technology owners
• Bring a deep understanding of network security, cybersecurity governance frameworks, and emerging risks to give direction to team members and embed learning and innovation in the day-to-day of the network security strategy & analysis team

• Bachelor of Computer Science / Engineering or Information Technology or experience in related fields
• Ability to lead oneself and a team independently with minimal guidance and effectively leverage diverse ideas, experiences, and perspectives to the benefit of the organization
• Experience with agile development /program management methodologies
• Knowledge of business concepts, information security tools, and processes that are needed for making sound decisions in the context of the company's business
• Demonstrated network security related experience, inclusive of experience with net sec tooling, governance, design/architecture, etc.
• Experience with Zero Trust concepts and Zero Trust Network Access (ZTNA)
• Ability to learn new skills and knowledge on an on-going basis through self-initiative and tackling challenges
• Excellent problem solving, communication, and collaboration skills

• Network security tooling and design experience, inclusive of FW/Proxy/ZTNA tooling (including Zscaler), etc.
• Management of analyst teams, specifically to drive risk reductions and elimination of technical debt/environmental hardening
• Experience with data analytics /SIEM platforms (including Splunk) to find risk, scope, and eliminate risk/tech debt
• Security Architecture, Security Advisory, or Security Engineering experience directly related to network security tools/process/risk reduction
• NIST and ISO 27000 Standards
• Information Security Policy, Standards, Procedures, and Engineering Specifications
• Information Security Risk Assessment processes
• Information Security governance and control processes
• Metrics creation and reporting

• Applicable SANS Certifications
• Industry and tool certifications related to network security tooling, processes, or governance
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)

Join a team and culture where your voice matters; where every day, your work…