Security Operations Manager

United States

Applications have closed

Summary/Overview

The Security Operations (SecOps) Team Lead reports to the Director of Operations and serves as the focal point for cybersecurity strategy research, development, implementation, and action. The SecOps lead will work to enable Horizon3 by ensuring a secure, highly available, distributed enterprise that supports all business units, product engineering and development, and future strategic initiatives from leadership. This role will partner with business unit leads to identify requirements necessary to ensure the confidentiality, integrity, and availability of all Horizon3 systems, services, and information.

Essential Functions 

  • Build and lead the Horizon3 security operations center (SOC)
  • Define functional requirements for capabilities necessary to support Horizon3 SOC operations, ensuring all capabilities are mapped to an operational needs statement
  • Implement and maintain capabilities necessary to secure the Horizon3 enterprise, the product platform, and customer information
  • Develop strategic and operational policies, to include continuous monitoring of such, to ensure a secure digital landscape for Horizon3, the Horizon3 product platforms, and Horizon3 customer data
  • Lead incident response actions for events taking place in the Horizon3 enterprise
  • Coordinate with all business units to ensure compliance with Horizon3 cybersecurity policies and regulatory requirements
  • Lead efforts to establish and continuously enforce compliance with required industry standards: SOC2, FedRAMP, HIPAA, etc.
  • Lead periodic cybersecurity awareness training events to include, but not limited to: Annual awareness training, periodic internal phishing tests, periodic cybersecurity tip newsletters addressing current threats being seen in the wild
  • Lead efforts to support the development of future solutions and initiatives in the Horizon3 product portfolio
  • Continuously assess cybersecurity capabilities and requirements to identify gaps in coverage and visibility, providing recommendations for improvements as necessary
  • Ability to identify gaps in SOC capabilities as mapped to common cybersecurity frameworks: MITRE ATT&CK, NIST CSF, CIS and SANS Top 20
  • Ability to identify the latest emerging technologies and threats in the cybersecurity industry

Competencies 

  • Demonstrate knowledge of SOC operations, to include team member roles and their core competencies
  • Demonstrated ability to leverage automation and orchestration to produce predictable, trainable, and scalable playbooks that serve to enable SOC, IT Operations, Network Operations, and Business Operations workflows
  • Strong leadership, problem solving and critical thinking skills. Ability to prioritize and execute autonomously, as well as communicate effectively with all levels of the company both verbally and in writing.
  • Understanding of tactics, techniques and procedures used by cyber threat actors, including the ability to identify relevant alerting, countermeasures, and threat hunting remediations. 

Travel Required 

We are a fully remote company, and this job may require up to 5% of travel to be successful. Job-related travel expenses are reviewed and must be approved by your manager.

Required Education/Experience 

  • 5+ years of general cybersecurity field experience
  • 2+ years of experience working within a Security Operations Center
  • 2+ years using SIEM and SOAR technologies
  • CISSP AND GCIH, ECIH or relevant incident handler certification

Preferred Education/Experience 

  • Bachelor's Degree Information Technology or Cyber Security
  • Demonstrated ability to lead, manage, and develop a cybersecurity team
  • Experience securing an Amazon Web Services (AWS) environment

Other duties

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee. Duties, responsibilities, and activities may change at any time with or without notice. 

Horizon3AI does not discriminate in employment on the basis of race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or other non-merit factor. To learn more, please visit the Office of Equal Opportunity.

Tags: Automation AWS CISSP Compliance FedRAMP GCIH HIPAA Incident response MITRE ATT&CK Monitoring NIST SANS SecOps SIEM SOAR SOC 2 Strategy

Perks/benefits: Team events

Region: North America
Country: United States
Job stats:  2  0  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.