Security Operations Manager

Security Manager

Job Description:

Position Overview

The main purpose of this role is to oversee the Incident Response and Threat Detection function within ESAB. This consists of both internal team members and third party resource management / MSSPs.

Primary Duties & Responsibilities

• Oversee Team members and third parties to ensure effective and timely delivery of best in class SOC capabilities to ESAB.
• Work with the GRC and TVM organizations to proactively identify vulnerabilities , share threat intelligence information, and aid in monitoring and remediation of identified issues.
• Contain and Remediate threats identified by internal and external stakeholders and tooling.
• Proactively monitor active industry exploits and targeting to insure appropriate monitoring and detections are in place.
• Develop comprehensive SOC metrics to use with IT Leadership that demonstate effectiveness and continuous improvement
• Develop custom SIEM detections and rules and monitor overall health and effecteness of logging infrastructure
• Ensure comprehensive tool visibility across cloud, on-prem, and SaaS solutions as applicable.
• Work with third parties to ensure effective cross platform threat detection is in place and anomalous activities are quickly detected.
• Oversee incident response activities and incorporate lessons learned into ongoing processes and configurations.
• Review forensic results and learnings from incidents and incorporate into security awareness education.
• Participate in Purple Team activities.

Qualifications

       Education

Bachelor’s degree or equivalent work experience in Cybersecurity

       Experience

• Minimum 3-5 years in Security Operations Center role with deep understanding of IT operating systems, infrastructure, applications and cyber threats / remediation.
• Experience with IT and Cloud infrastructure.
• Team oversight and development.
• Good communications skills and ability to effectively work cross functionally.
• Project Management skills a plus.

      Personal Attributes

• Strong communications skills
• Team leadership experience
• Technical understanding of threat detection, incident response, and related tooling.
• Comfortable in fast paced environment and taking ownership of complex tasks in a global environment.

       Language

• Essential: Fluent in English

Experience Level

Mid Level