Security Engineering Manager

ECS Tech Inc

16h•Remote

About The Position

ECS is seeking a Security Engineering Manager to work remotely. At ECS Federal, we're driven by a commitment to excellence and innovation in solving complex challenges. As a premier provider of advanced technology solutions and services, our mission is to secure and optimize the most critical commercial, government, defense, and intelligence projects across the country. Our team is composed of dynamic professionals who thrive in a collaborative and empowering environment, where our team members leverage the latest technologies and insights to make a real-world impact. Join us and be part of a forward-thinking organization that values your expertise and supports your professional growth. The Security Engineering Manager is responsible for leading the security engineering function that supports the Everforth Security Operations Center (SOC). This role oversees the design, implementation, and continuous improvement of the technologies, detections, telemetry pipelines, and automation capabilities that enable effective enterprise security monitoring and incident detection. The Security Engineering Manager ensures the reliability, scalability, and operational effectiveness of SOC technology platforms and detection capabilities. This role reports directly to the SOC Director and works closely with the SOC Manager, enterprise IT teams, and platform owners to maintain enterprise visibility and continuously improve the organization’s detection and response capabilities.

Requirements

Minimum of 10 years of cybersecurity or security engineering experience, with significant experience supporting large enterprise security programs.
Demonstrated experience managing security engineering, detection engineering, or security platform engineering teams.
Strong experience managing enterprise security platforms such as SIEM, EDR, and security telemetry pipelines.
Strong understanding of enterprise security architecture, logging strategies, and monitoring coverage across infrastructure, cloud, and identity platforms.
Experience implementing automation workflows to improve SOC operational efficiency.
Experience managing platform performance, data ingestion pipelines, and monitoring infrastructure at enterprise scale.
Familiarity with cybersecurity frameworks such as NIST Cybersecurity Framework, CIS Critical Security Controls, and ISO 27001.
Able and willing to obtain a US Security Clearance.
This role may require occasional on-call support during off-hours to respond to security incidents.

Responsibilities

Oversee the operation, maintenance, and optimization of core SOC security platforms including SIEM, endpoint detection and response (EDR), and related security monitoring technologies.
Ensure enterprise security telemetry sources are properly onboarded, normalized, and integrated into the SOC monitoring environment.
Manage the performance, reliability, and data pipelines associated with the SIEM platform, ensuring high availability and effective data ingestion across enterprise environments.
Lead the implementation of automation and orchestration capabilities to improve investigation efficiency and reduce manual analyst workload.
Provide technical expertise and engineering support to SOC analysts during complex investigations and incident response activities.
Develop and maintain the SOC security technology roadmap to support evolving enterprise security monitoring requirements.
Work closely with enterprise IT, cloud engineering, and infrastructure teams to integrate new systems, applications, and platforms into SOC monitoring.
Ensure SOC technology platforms operate with high reliability, appropriate data retention, and strong performance across enterprise telemetry sources.
Maintain technical documentation for detection logic, telemetry pipelines, automation workflows, and SOC platform architecture.
Lead and mentor the security engineering team responsible for SOC platform operations and detection development.