Senior Cybersecurity Detection Engineering Manager

Join our dynamic team as a Senior Cybersecurity Detection Engineering Manager, where you will lead a skilled group of Detection Engineers in the development and implementation of cutting-edge detection capabilities to protect our organization from emerging cyber threats. This crucial role will enhance our next-generation Cyber Defense practices, enabling swift threat response and automated remediation.

Your responsibilities will include:

• Developing the overarching strategy for our Detection Engineering program, along with establishing metrics for ongoing improvements.
• Designing and implementing advanced threat detection techniques utilizing tools like SIEM, EDR, NDR, and SOAR platforms.
• Creating innovative custom detection rules and automated remediation processes tailored to our enterprise and customer security needs.
• Using industry-standard MITRE frameworks to identify and close detection coverage gaps.
• Monitoring, optimizing, and continuously enhancing the performance and effectiveness of detection systems.
• Collaborating closely with the Threat Detection and Response team to improve our capabilities in identifying and responding to threats effectively.
• Conducting attack simulation testing to validate the effectiveness of our use cases and engaging in purple teaming exercises with the Vulnerability Management team.
• Managing the SIEM/Data Lake infrastructure in collaboration with Cyber Defense Engineering.
• Evaluating, validating, tuning, and retiring detection capabilities as necessary.
• Maintaining comprehensive operational guidelines, diagrams, and documentation for security detection and response.

Incident Response Support: Collaborate with the incident response team for swift detection and containment of cyber threats. Provide technical guidance and develop detection use cases during critical security incidents.

Threat Intelligence Integration: Leverage threat intelligence to enhance our detection capabilities and proactively mitigate risks, while analyzing new threat vectors for incorporation into strategies.

Stakeholder Collaboration: Work with other Cybersecurity, Engineering, and Product teams to align strategies with organizational objectives, effectively communicating findings to both technical and non-technical stakeholders, including executive leadership.

Governance and Compliance: Ensure our detection processes and tools meet regulatory requirements and industry standards (e.g., GDPR, PCI-DSS, NIST) while documenting strategies, processes, and configurations.

To succeed in this role, you should have:

• A proven track record of building scalable organizations with top-tier threat detection capabilities.
• Technical expertise in conducting security investigations across endpoints, cloud, identity, network, and email environments.
• Experience collaborating with internal IT teams and external MSSPs to operationalize Detection Engineering use cases across multiple security technologies.
• A solid understanding of security Threat Intelligence for identifying new threat vectors.
• Strong foundational knowledge of Linux, MacOS, and Windows OS internals.
• Effective communication skills for conveying security issues to various stakeholders.

Qualifications Required: Bachelor's degree in Computer Science or equivalent, with at least 8 years of professional experience. Consideration will be given to candidates with a master’s degree and lesser experience or substantial relevant experience (20 years). You should also have:

• Multi-cloud security experience (AWS, Azure, GCP).
• Expert-level knowledge in Detection Engineering and Security Operations.
• 3+ years of management experience with direct oversight of team members.
• Significant experience in Information Security, Network Security, Security Monitoring, and Incident Response.
• Demonstrated capacity for developing SIEM/SOAR detection and automation use cases.

We offer a competitive compensation range of $173,900.00 - $289,800.00, which may vary based on location and the selected candidate’s qualifications. Additionally, you will benefit from:

• A flexible vacation policy with paid time off as needed.
• Seven paid holidays and up to 160 hours of annual wellness time.
• Additional leave options, including bereavement, military leave, and parental leave.

We welcome applicants who are currently authorized to work in the United States without sponsorship and reside within a commutable distance. This is a hybrid role requiring 3 days of onsite work each week.