onsite
Manager, Security Operations Hands On/Technical - Gartner
Systems Engineer
Lead a high‑performing security operations team, driving incident response, threat hunting, and SIEM management across multiple centers of excellence. Leverage cloud security expertise to protect enterprise assets and ensure compliance.
About the role
Key Responsibilities
- Lead and mentor a distributed SOC team, ensuring 24/7 coverage and rapid incident response.
- Design, implement, and optimize SIEM solutions to detect, analyze, and remediate security events.
- Conduct proactive threat hunting and vulnerability assessments across on‑prem and cloud environments.
- Collaborate with engineering, compliance, and risk teams to enforce security policies and regulatory requirements.
- Develop and maintain playbooks, runbooks, and automation scripts to streamline response workflows.
Requirements
- 5+ years of experience in security operations, incident response, or SOC leadership.
- Hands‑on expertise with SIEM platforms (e.g., Splunk, QRadar, ArcSight) and threat intelligence feeds.
- Strong knowledge of cloud security (AWS, Azure, GCP) and related compliance frameworks (SOC 2, ISO 27001).
- Excellent communication skills and ability to translate technical findings to non‑technical stakeholders.
- Certifications such as CISSP, CISM, or CEH are a plus.