Manager, Security Engineering

About Us 

Thrive is a rapidly growing technology solutions provider focusing upon Cloud, Cyber Security, Networking, Disaster Recovery and Managed Services.  Our corporate culture, engineering talent, customer-centric approach, and focus upon “next generation” services help us stand out amongst our peers.  Thrive is on the look-out for individuals who don’t view their weekdays spent at “a job”, but rather look to develop valuable skills that ignite their passion and lead to a CAREER.  If you’re attracted to a “work hard, play hard” environment, seeking the guidance, training and experience necessary to build a lucrative career, then welcome to THRIVE!! 

Position Overview 

This position offers you the opportunity to join our rapidly growing organization.  We are in search of individuals who exhibit strong leadership, initiative, and independence, aimed at refining and advancing our Security Engineering processes and systems. 

As the Manager of Security Engineering, the successful candidate will play a key role in shaping and executing Thrive's security engineering strategy. This role demands a focused approach to managing and advancing our SIEM, SOAR, and EDR platforms, requiring a deep understanding of both technical nuances and managerial aspects of security engineering. Responsibilities include optimizing security alerts, integrating advanced cyber threat intelligence, and continuously enhancing our threat detection and response capabilities. The Manager will address technical challenges, foster innovation in our security processes, and make strategic decisions aligned with our security goals. This role requires strategic insight to harmonize our security engineering with business and operational objectives. Ultimately, the Manager of Security Engineering is pivotal in strengthening our security framework, enabling us to adeptly navigate the evolving cybersecurity landscape and significantly boost the success of our business. 

Primary Responsibilities 

• Direct and oversee Thrive's Security Engineering Team, leading strategic planning and aligning team objectives with Thrive's business and operational priorities 

• Lead a team of Security Engineers in professional growth and skill development, motivating individuals to achieve departmental goals, deliver exceptional customer service, and maintain high performance through continuous advancement 

• Responsible for the ownership, management and maintenance of Thrive’s Security platforms including our SIEM, SOAR, and EDR solutions 

• Oversee SIEM and EDR tuning and configuration tasks necessary for the deployment of security services to new and existing customers 

• Drive SIEM, SOAR, and EDR alert tuning, creation, and optimization efforts to continuously improve our alert detection capabilities 

• Supervise the strategic implementation and integration of cyber threat intelligence feeds across our SecOps tools to elevate our threat prediction, detection, and response effectiveness 

• Ensure coordination and collaboration between the SOC Team and Security Engineering teams in the effective implementation of new detection rules, SOAR playbooks, and other measures to ensure effective security monitoring 

• Collaborate with the product development team on testing and implementing new security technologies and enhancements 

• Act as an escalation point for the Security Operations teams, providing guidance, and resolving complex security platform issues 

• Actively engage in customer meetings, ensuring a collaborative approach to understand and meet their security needs effectively 

• Develop and maintain detailed reports and dashboards for both internal stakeholders and clients, focusing on key metrics to drive informed decision-making and demonstrate value 

• Define and track key performance indicators (KPIs) to enhance operational quality and efficiency in our security operations 

• Conduct annual performance reviews for all direct reports 

• Adjust priorities and balance responsibilities in a fast-paced environment 

• Other duties as required 

Qualifications 

• Bachelor’s Degree in Information Technology or related discipline preferred; or equivalent combination of education and relevant work experience 

• Relevant certifications such as CISSP or CISM 

• Minimum 5 years of information security experience, with 3+ years in a leadership role. 

• Proven expertise in managing SIEM, SOAR, and EDR platforms 

• Firm understanding of attacker tactics, techniques, procedures and means of detection. 

• Solid understanding of the MITRE ATT&CK and Cyber Kill Chain frameworks 

• Understanding of common enterprise technologies and logging capabilities including Cloud, IDS/IPS, Firewalls, Active Directory, Anti-Virus/EDR, Proxies, and Email Gateway 

• In-depth knowledge of cloud technologies, including Azure and Office 365, with experience in securing cloud environments 

• Excellent written and verbal communication skills for both technical and non-technical audiences 

• Analysis and problem-solving skills 

• Strong desire for continuous improvement