Manager/Cybersecurity Operations

About The Position

Requirements

• This position requires at least ten years of experience in cybersecurity, including leading offensive teams and/or directing an organization's incident response.
• The candidate should also have in-depth knowledge of EDR, CDR, and SIEM technologies and a strong understanding of cloud security, particularly in Azure and AWS environments.

Nice To Haves

• A bachelor’s in computer science or Cybersecurity is preferred, along with certifications in penetration testing and incident handling; however, experience may substitute for these.

Responsibilities

• Develop and implement department goals that are aligned with Information Security objectives.
• Lead a team of cybersecurity technical professionals on offensive and defensive security practices, ensuring comprehensive and proactive threat detection and mitigation.
• Foster collaboration between the team and various departments to maximize the effectiveness of an adaptable defense strategy in protecting the people and technology against cyber threats.
• Conduct regular cybersecurity assessments and vulnerability evaluations while incorporating threat intelligence to identify and address potential weaknesses in systems and applications.
• Plan, organize, and conduct investigations, both internal and external to the Company, based on cybersecurity events.
• Lead incident response and recovery efforts, ensuring effective communication and coordination during cybersecurity incidents.
• Prepare detailed reports of findings, recommendations, and progress, presenting them to senior management and stakeholders.
• Oversee implementation, maintenance, and services of security solutions, as well as monitoring and configuration based on threats.
• Maintain compliance with relevant regulatory standards and frameworks (e.g., GDPR, ISO 27001, MITRE, NIST) and ensure that security controls align with industry best practices.
• Stay current with the latest cybersecurity trends, technologies, and threats to assess potential risks and recommend appropriate countermeasures.
• Collaborate with engineering and other teams to drive automation for analysis efficiency, containment, and remediation activities.
• Manage relationships with cybersecurity service partners, negotiate contracts, and monitor against contractual terms.
• Lead the preparation and management reporting of the O&M and capital plans and provide variance analysis.
• Understand the business drivers and associate culture of the enterprise and partner with relevant stakeholders to ensure regulatory compliance, data protection, and associate protection are in place
• Manage and develop staff and exercise authority regarding promotions, transfers, evaluations, compensation, disciplinary actions and terminations
• Perform related duties and responsibilities as assigned
• Regular and predictable attendance is a condition of employment and is an essential function of the job