Manager, Security Operations
About The Position
Figma is growing its team and looking for a Security Operations Manager to lead the strategy and execution of its security operations program. This role involves building and scaling systems, processes, and tooling to protect Figma and its community. The manager will collaborate with Security Engineering, Platform Security, IT, GRC, and Legal to enhance detection and response capabilities, improve operational resilience, and shape the future of DART and SOC functions. This is a full-time position that can be based in one of Figma's US hubs or remotely within the United States.
Requirements
- 7+ years of experience in security operations, incident response, or a related security engineering function.
- Hands-on experience building and automating detection and response workflows using scripting, APIs, or security automation platforms.
- Deep expertise with SIEM and SOAR technologies in a cloud-native or SaaS environment.
- Demonstrated success building, scaling, or significantly improving a detection and response program.
- Experience leading complex security incidents and partnering with Legal, Privacy, and business stakeholders during high-impact events.
Nice To Haves
- Operated in a public company environment with SOX, ISO 27001, SOC 2, or FedRAMP requirements.
- Applied AI risk management frameworks such as NIST AI RMF, OECD AI Principles, or ISO 42001.
- Utilized AI-powered tools to automate security operations workflows and improve team efficiency.
Responsibilities
- Own Figma's security monitoring and incident response program, from detection engineering through post-incident review and continuous improvement.
- Build and automate security operations workflows, including alert triage, enrichment, investigation, and response actions using SOAR and custom tooling.
- Develop and maintain incident response run books, escalation procedures, and communication plans for security events of varying severity.
- Lead incident response preparedness initiatives, including tabletop exercises, red team engagements, and response capability assessments.
- Improve the effectiveness of SIEM and SOAR platforms by reducing noise, increasing signal fidelity, and closing detection coverage gaps.
- Build and operationalize threat intelligence capabilities to identify adversary behaviors, prioritize investments, and strengthen detection and response programs.
- Partner with Legal, Privacy, and Communications teams to support breach notification and regulatory response obligations during significant security incidents.
- Drive security operations strategy through vendor management, operational metrics, and cross-functional initiatives spanning IAM, vulnerability management, DLP, and exposure reduction.
Benefits
- Health, dental & vision insurance
- Retirement with company contribution
- Parental leave & reproductive or family planning support
- Mental health & wellness benefits
- Generous PTO
- Company recharge days
- Learning & development stipend
- Work from home stipend
- Cell phone reimbursement
- Sales incentive pay for most sales roles
- Annual bonus plan for eligible non-sales roles
- Equity
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Manager
Education Level
No Education Listed
