The Senior Manager of Cybersecurity Detection Engineering will lead a team of Detection Engineers in designing, implementing, and maintaining advanced detection capabilities to safeguard the organization against emerging cyber threats.
Requirements
- Define detection engineering strategy, roadmap, and objectives to achieve.
- Design and implement advanced threat detection techniques using tools such as SIEM, EDR, NDR, and SOAR platforms.
- Develop innovative custom detection rules and automated remediation, playbooks, and alerts tailored to the organization’s threat landscape for enterprise and customer security.
- Monitor, optimize, and continuously improve detection systems for performance, scalability, and effectiveness.
- Collaborate with Threat Detection and Response team to continuously improve cybersecurity capabilities in identification, management, and response to threats in the most efficient and effective manner.
- Perform attack simulation testing to validate efficacy of use cases and purple teaming exercises collaborating with the Vulnerability Mgmt team.
- Manage and maintain SIEM/Data Lake data management and log ingestion infrastructure in collaboration with Cyber Defense Engineering.
- Evaluate, validate, tune, and sunset where necessary detection capabilities
- Maintains operational guidelines, diagrams, and documentation for security detection and response.
- Incident Response Support: Collaborate with the incident response team to ensure rapid detection and containment of cyber threats.
- Provide technical expertise and guidance to develop detection use cases during high-severity security incidents.
- Continuously improve detection and response processes based on lessons learned from incidents.
- Other duties may be assigned as needed to address new security threats facing the enterprise.
- Provides off hour support as needed for security administration, detection, and response activities.
- Threat Intelligence Integration: Leverage threat intelligence to enhance detection capabilities and proactively mitigate risks.
- Identify and analyze new and emerging threat vectors and incorporate them into detection strategies.
- Stakeholder Collaboration: Partner with other Cybersecurity, Engineering, and Product teams to align detection strategies with organizational objectives.
- Communicate detection capabilities and findings to technical and non-technical stakeholders, including executive leadership.
- Governance and Compliance: Ensure all detection processes and tools adhere to regulatory requirements and industry standards (e.g., GDPR, PCI-DSS, NIST).
- Establish and maintain documentation of detection strategies, processes, and configurations.
Benefits
- Vacation with pay
- Paid holidays
- Paid wellness time off
- Bereavement leave
- Time off to vote
- Jury duty leave
- Volunteer time off
- Military leave
- Parental leave
- Health care insurance
- Retirement planning
- Paid days off (sick leave, parental leave, flexible vacation/wellness days, and/or PTO)
