Security Engineering Manager

About The Position

Requirements

• 10 or more years of experience in relevant job or field of technology. Experience in an advanced role or technical capacity.
• Bachelor's degree in information systems, Business, Computer Science, or related field.
• 3 or more years' experience directly responsible for managing, guiding, training and onboarding team members in relevant technologies, capabilities or skills.
• Strong understanding of cybersecurity principles, threat vectors, and incident response processes.
• Familiarity with industry frameworks and standards such as NIST, ISO/IEC 27001, MITRE ATT&CK, and CIS Controls.
• Ability to analyze security alerts, logs, and telemetry from various monitoring tools to assess threat impact and determine response actions.
• Proven ability to collaborate across IT and business functions and communicate effectively with both technical and non-technical stakeholders.
• Skilled in writing security documentation, response reports, and policy compliance summaries.
• Deep understanding of compliance, audit, and regulatory requirements impacting all aspects of Security.
• Ability to travel as needed to support enterprise and brand teams (estimated 25%).

Nice To Haves

• Master's degree in Business Administration, Information Systems, or related discipline.
• Demonstrated success driving transformation within complex, federated business environments.

Responsibilities

• Monitor and Enforce Security Policies: Oversee adherence to IT security policies and controls, partnering with Global Security to ensure enterprise-wide compliance and alignment.
• Manage Incident Response Procedures: Maintain and execute the ADUSA Incident Response Plan across various threat scenarios, including documentation, escalation, and assurance activities.
• Threat Tracking and Investigation: Continuously monitor threat intelligence feeds, analyze alerts from SOC and SIEM systems, and coordinate cross-functional investigations with Group Security, IT, and business stakeholders.
• First-Line Incident Response: Act as the first point of contact for potential security incidents, triaging alerts, initiating response protocols, and ensuring timely communication with IT and Group Security leadership.
• Security Operations Engagement: Coordinate with Security Operations Center (SOC) and Group Security threat detection to ensure effective threat monitoring, alert tuning, and response workflows.
• Reporting and Assurance: Provide regular reporting on security incidents, response metrics, and policy adherence to IT leadership and governance forums, supporting continuous improvement and risk mitigation.
• Ensure operational stability of a 24/7/365 grocery retail environment by providing technical support, system monitoring, and issue resolution which may be required during off-hours, weekends, and holidays as needed.