Postúlate en Kit Empleo: kitempleo.com.mx/empleo/55jk0v

About the Role The Director, TSG Information Security - Cyber Threat Management is a key leadership position within Bain's Cyber Security Department, which is responsible for defining and enabling strategies to safeguard the organization's digital assets and integrity.

n

In this role, the Director will align security measures with Bain's overall business strategy, lead the development and implementation of security controls, and ensure compliance with regulatory requirements and best practices.

n

This position requires a combination of strong technical expertise, managerial skills, and business alignment to build and guide a growing cybersecurity team.

n

The Director will oversee Bain's defensive security strategy, enhance offensive security capabilities, and lead cross-functional collaboration with Technical, IT, and Cybersecurity leadership.

n

This role requires expertise across multiple cybersecurity disciplines, including:

n

? Threat Intelligence Programs

n

? Detection & Deterrence Systems

n

? Threat Exposure Management

n

? Incident Response & Forensics

n

? Pro-Active Security Probing (Red/Blue/Purple Teaming & Penetration Testing)

n

- ____________________

n

Key Responsibilities

n

Monitoring & Detection

n

- Oversee and strategize on developing advanced security monitoring, analysis, and correlation platforms to detect cybersecurity events.
- Lead cross-functional efforts in the identification and analysis of sophisticated threats, such as malware, APTs (Advanced Persistent Threats), and targeted attacks.
- Manage a wide range of security tools and technologies, including SIEM, IDS/IPS, and advanced threat detection solutions.




- Partner with vendors and organizations to integrate new data sources for improved threat visibility.

n

Incident Response & Analysis

n

- Oversee incident response processes, security runbooks, and champion automation & AI/ML technologies to improve speed and efficiency.
- Strengthen Bain's log analysis, forensic investigations, and data correlation to identify root causes and enhance security controls.
- Provide clear and strong communication to senior leadership on cybersecurity events.
- Ensure compliance with industry security standards and oversee validation of controls.
- Work towards reducing Mean Time to Respond (MTTR) and mitigating overall risk exposure.

n

Threat Intelligence

n
- Develop a threat intelligence capability, including OSINT, dark web monitoring, and industry reports to improve Bain's defensive posture.
- Utilize threat intelligence platforms to aggregate and correlate threat data.
- Coordinate with incident response teams to investigate and analyze security incidents.
- Stay current with industry best practices and continuously refine methodologies and tools.

n

Vulnerability & Threat Exposure Management

n

- Work cross-functionally across IT teams to mitigate threats to Bain.
- Implement and operationalize vulnerability management tools, processes, and best practices.




- Prioritize vulnerabilities based on risk and impact while ensuring effective mitigation strategies.

n

Pro-Active/Enhanced Security Testing

n

- Investigate advanced attack methods and assess Bain's security posture.
- Conduct risk assessments based on penetration test results and propose remediation strategies.
- Lead Red Team, Blue Team, and Purple Team exercises for proactive security improvement.

n

Professional Development & Innovation

n

- Stay up to date with emerging cybersecurity trends, technologies, and methodologies.
- Drive collaboration between security teams, IT departments, and business units to enhance Bain's overall security posture.
- Encourage and support professional certifications and training programs for team development.
- ____________________

n

Required Skills & Qualifications

n

Security Monitoring & Incident Detection and Response

n

- Expertise with Splunk (or other SIEM tools), CrowdStrike (or equivalent EDR/MDR platforms), Windows Defender, Palo Alto Networks, Cyberhaven (or other DLP tools).
- Strong knowledge of Vulnerability & Attack Surface Management tools, Threat Intelligence platforms, Risk Scoring tools, and Deception technologies.
- Experience managing ticketing systems, triage processes, and forensic analysis tools.

n

General Skills

n
- Strong communication skills, with the ability to document and explain technical information clearly.
- Analytical mindset, with a focus on problem-solving and continuous learning.
- Ability to work independently and as part of a cross-functional team.
- Entrepreneurial spirit - willing to experiment with new approaches and learn from c

Postúlate en Kit Empleo: kitempleo.com.mx/empleo/55jk0v

📌 Cyber Operations Director (México)
🏢 BainInc
📍 México