Security Operations Manager

5+ years of hands-on experience in security operations, incident response, or a SOC environment

Direct people management experience with analysts or security operations staff

Technical depth in SIEM platforms — log ingestion, pipeline and parsing configuration, detection engineering, and alert tuning

Demonstrated experience running or contributing to an Insider Risk or DLP investigation program, with the technical understanding to identify coverage gaps across cloud and endpoint environments

Working knowledge of vulnerability triage and risk prioritization — CVSS, asset context, business impact

Ability to triage and contextualize signals from cloud infrastructure and endpoint tooling

As the Security Manager, you will lead our security operations function — a SOC-like team responsible for monitoring the environment, triaging security signals across cloud and endpoints, running the company's Insider Risk program, and owning initial vulnerability triage.

You have a demonstrated track record of relentlessly pursuing high security standards and holding your team accountable to them.

You will manage analysts who serve as the first line of detection for the security organization, ensuring threats are identified, sized, and routed with the right context and urgency.

Your primary objective is to build a disciplined, high-signal operations function that drives down dwell time and keeps the broader security team focused on the most impactful work.

Security Operations Ownership:

Cloud & Endpoint Signal Triage: