Lead Cybersecurity Engineer, Security Operations

Based inPasadena, California,Dine Brands Global, Inc.(NYSE: DIN), through its subsidiaries, franchises restaurants under Applebee's Neighborhood Grill + Bar, IHOP and Fuzzy's Taco Shop brands. With over 3,500 restaurants combined in 18 countries and 354 franchisees as of December 31, 2023, Dine Brands is one of the largest full-service restaurant companies in the world. For more information on Dine Brands, visit the Company's website located atwww.dinebrands.com.

Job Location Type

-

The Lead Cybersecurity Engineer, Security Operations is responsible for security operations. Security operations is responsible to ensure asset protection, vulnerability management, threat monitoring and security incident response. This function provides operational oversight of the Security Operations Center, responding to incidents, conducting internal investigations and maintaining the procedures/playbooks to perform the security incident response functions. Additionally, this function is responsible for defending infrastructure and systems from adversaries and insider threats. This includes using tools to analyze and respond to threats, real time response and promote routine readiness exercises including engagement with third party IR firm, law enforcement and cross-functional teams as needed.

This role will drive strategic security initiatives, strengthen our cross-functional alignment and ensure delivery excellence.

Responsibilities:

• Oversight of the vulnerability management program to reduce threats of security breach by addressing critical security patches
• Oversight of the security operations and management of level 1 security alert triage activity
• Ensure all assets are properly reporting into the centralized security monitoring process
• Deliver a cross-functional incident management program, including incident response plans and procedures
• Conduct practice exercises and drills to ensure readiness to respond to security events
• Facilitate threat monitoring and intelligence gathering to proactively action
• Conduct regular security assessments and testing
• Act as a key escalation point for franchise related security events
• Manage the day-to-day delivery of multiple security monitoring functions and outcomes, including triage, escalations, proactive hunting, and tactical response
• Adapt the team's approach to security monitoring to ensure complete coverage
• Develop and deliver long term strategies and roadmaps for security monitoring of our internal networks and security monitoring for company owned restaurants
• Lead the development of processes and procedures to improve system and service uptime, maintenance, and delivery
• Stay informed on security developments, including research industry trends, ongoing security threats, and new security tools
• Identify, improve, and measure meaningful security monitoring metrics, including defining and delivering against objectives and key results
• Target Salary $160k-$175k depending on experience

Skills & Requirements:

• 7+ years of lead experience in cybersecurity, IT, and cyber management roles
• 5+ years in incident response, investigation and management of threat intelligence gathering
• Bachelor's degree in computer science, Engineering or related discipline preferred.
• CISSP, CISM, CSSP or equivalent certificate preferred.

Work Experience

• Mid to Senior Level with minimum 7 years of progressive experience in security and IT industries.
• Minimum 5 years' experience in a security operations and cyber incident management role with experience in delivering security projects.
• Experience with implementation of security controls, including:
  • Single sign-on and multifactor authentication for applications.
  • Implementation of security solutions such as encryption, mobile device management, identity access management solution, password management, system secure configuration baseline, cloud security platforms including O365, Azure, AWS, and Oracle clouds.
• Experience or working knowledge of penetration testing methods.
• A proven ability to interface and effectively communicate across Dine's organization, and analytical demeanor.
• Excellent written and verbal communications skills.
• Ability to adjust to changing priorities while multitasking effectively.
• Working knowledge of security and compliance frameworks, standards and best practices (e.g., NIST, COBIT, PCI DSS, SOX, data privacy and breach laws).

Equal Employment Opportunity Statement

Dine Brands Global strongly supports equal employment opportunity for all applicants regardless of race, color, religion, sex, gender identity, pregnancy, national origin, ancestry, citizenship, age, marital status, veteran status, physical disability, mental disability, medical condition, sexual orientation, genetic information, or any other status protected by federal, state, or local law. All employment is decided on the basis of qualifications, merit, and business need.

Qualified applicants with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act and/or other applicable laws and regulations in other jurisdictions.

Dine Brands reviews criminal history in connection with a conditional offer of employment. The following is a list of all material job duties which Dine Brands reasonably believes that criminal history may have a direct, adverse, and negative relationship, potentially resulting in the withdrawal of a conditional offer of employment: provide effective solutions for company technology and information management; maintain cybersecurity systems that protect confidential, proprietary, and trade secret information belonging to the company; and prevent unauthorized disclosure of personal, financial, and medical information belonging to employees and third parties.

For information on how we collect and use your personal information, please visit our Applicant & Employee Privacy Notice.