Manager

Summary

Join New Era Technology's Cyber Defense Center as a Manager, overseeing advanced cybersecurity technologies and processes. Oversee the operation and management of SIEM, SOAR, Threat Hunting, and Incident Response technologies. Manage and coordinate responses to major cybersecurity incidents, ensuring minimal business impact. Lead a team of cybersecurity professionals, developing and maintaining incident response plans. Conduct post-incident analysis and stay current on emerging cyber threats. Develop and deliver incident response reports to senior leadership. This role requires strong leadership, technical skills, and communication abilities.

Requirements

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field
• Minimum of 7-10 years of experience in cybersecurity, with at least 3-5 years in a leadership role
• Proficiency in SIEM, SOAR, threat hunting, and incident response technologies and methodologies
• Strong leadership and team management skills, with the ability to motivate and inspire a team
• Excellent verbal and written communication skills, with the ability to effectively communicate complex technical concepts to non-technical stakeholders
• Strong analytical and problem-solving skills, with the ability to think strategically and make data-driven decisions
• Candidate must be flexible to operate during off business hours and weekends to handle the Cyber Incident Response function (only when needed)

Responsibilities

• Oversee the continuous monitoring of networks, systems, and applications for security incidents or anomalies, utilizing various Cyber Defense tools and technologies
• Develop and maintain incident response plans, procedures, and playbooks to effectively respond to cyber security incidents
• Serve in the role of Incident Manager as a primary point of contact for cyber security incidents, coordinating communication and collaboration with internal teams and external stakeholders
• Lead investigations into security incidents to determine the root cause, scope, and impact of the incident
• Continually develops and manages strategy and maturity of the cybersecurity operations program by partnering with key stakeholders across the organization
• Manage Cyber Defense Team (Security Operations Center) operating in 24x7x365 for detection and response
• Conduct post-incident analysis and lessons learned reviews to identify areas for improvement and implement corrective actions to prevent future incidents
• Provide leadership and guidance during crisis situations, including coordinating cross-functional teams and communicating with senior leadership and stakeholders
• Stay current on emerging cyber threats, attack techniques, and trends, and incorporate relevant insights into incident response strategies and procedures
• Develop and deliver incident response reports, presentations, and other communications to senior leadership and stakeholders
• Lead and manage the 24/7 Cyber Defense Center team, providing guidance, mentorship, and support to ensure effective performance and professional development
• Oversee the deployment, configuration, and management of SIEM and SOAR platforms to ensure optimal performance and threat detection capabilities
• Develop and implement threat hunting strategies to proactively identify and mitigate potential security threats
• Lead daily operations of the Security Incident Response Team and serve as incident commander for major incidents
• Work closely with other departments, including IT, Risk Management, and Compliance, to ensure a cohesive and comprehensive approach to cybersecurity
• Stay current with the latest cybersecurity trends, threats, and technologies, and continuously improve the Cyber Defense Center’s capabilities and processes
• Recommend and produce key metrics, KPIs, and New Initiatives reports for internal review and for Senior Leadership Team
• Lead roadmap development and stay current with program capabilities, suggesting enhancements as needed
• Provide thought leadership for program improvements and new initiatives

Preferred Qualifications

• Relevant certifications such as CISSP, CISM, CEH, or equivalent are highly desirable
• A master’s degree is preferred