Sr Mgr Cybersecurity - 90400559 - null

SUMMARY OF DUTIES:

The Senior Manager, Defensive Cyber Engineering is responsible for leading a team of engineers focused on enhancing, maintaining, and automating enterprise defensive capabilities that safeguard the organization’s digital environment. This role drives the continuous improvement of existing security platforms, implements technical controls based on incident findings and assessment recommendations, and ensures the operational resilience of core defensive systems.The Sr. Manager champions automation and orchestration across tools to reduce manual effort, accelerate incident response, and shorten mean time to recovery (MTTR). They work closely with Cyber Defense teams to translate operational needs into technical improvements, deliver new feature enhancements, and optimize system performance and cost. The position requires a balance of strategic vision and hands-on technical oversight to strengthen the organization’s defensive posture and operational efficiency.

ESSENTIAL FUNCTIONS:

• Lead efforts to mature and expand enterprise defensive security capabilities, ensuring alignment with evolving threats and organizational priorities.
• Translate security assessment recommendations and incident response findings into actionable engineering solutions.
• Oversee design and implementation of scalable, reliable, and secure defensive architectures and integrations.
• Direct automation initiatives to eliminate repetitive manual tasks, increase efficiency, and reduce human error across security operations.
• Develop and manage cross-tool orchestration workflows that enhance situational awareness and accelerate response activities.
• Drive innovation in detection and response by leveraging scripting, APIs, and integration frameworks.
• Establish performance metrics and monitoring processes to proactively identify and resolve system issues.
• Partner with platform owners and IT teams to optimize configurations, capacity, and licensing.
• Collaborate closely with Cyber Defense teams to deliver feature enhancements and improve detection coverage.
• Act as a technical liaison with Cyber Technology, IT Operations, and Enterprise Architecture to ensure defensive solutions integrate effectively into the enterprise ecosystem.
• Communicate technical strategy, progress, and outcomes to executive leadership in a clear and measurable manner.
• Lead, mentor, and develop a high-performing team of engineers focused on defensive technologies and automation.
• Foster a culture of continuous improvement, collaboration, and accountability.
• Manage staffing, resource allocation

MINIMUM QUALIFICATIONS:

• Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, Engineering, or related field plus 9+ years of relevant experience required.
• 9+ years of relevant work experience required to satisfy education and experience requirements: systems/security engineering, systems administration, network or cloud security, cyber security analyst, penetration testing, security operations center, or incident response.
• 5+ years’ experience as technical lead for projects for medium to large enterprises
• 3+ years’ experience as technical lead for operational teams
• Professional working experience with at least one or more: Python, PowerShell, Bash/Shell scripting for task automation or tool creation.
• Experience with DevSecOps practices and security in CI/CD pipelines
• Hands-on experience with SIEM and Data Lake platforms such as Sentinel (KQL), Snowflake (SQL), or similar.
• Familiarity with cloud security best practices for AWS and Azure environments.
• Experience responding to security incidents and performing investigations.
• Hands-on experience integrating and optimizing cloud-based and on-prem security controls
• Knowledge of container security (e.g., Docker, Kubernetes)
• Strong understanding of security frameworks (e.g., NIST CSF, MITRE ATT&CK, CIS Controls)
• Proven experience designing, implementing, and operating defensive technologies such as firewalls, intrusion detection/prevention systems, endpoint detection and response, or SIEM platforms.

PREFERRED QUALIFICATIONS:

• CISSP, CISM, GIAC Engineering/Operations certifications (e.g., GSE, GCIA, GCDA), or equivalent technical credentials.
• 11+ years of relevant work experience required to satisfy education and experience requirements: systems/security engineering, systems administration, network or cloud security,

Knowledge, Skills, and Abilities

• Must have the ability to obtain and maintain certifications in Agile and/or cybersecurity. 
• Must have experience of operating at an executive level working with both business and IT executives to drive common approaches and delivery value.
• Must have experience of leading and performance managing a team to maximize their potential.
• Working knowledge of waterfall and SAFe methods 
• Skilled at providing clarity of purpose and goals to all involved and ensuring alignment across all aspects of their programs.
• Excellent communication and writing skills with the ability to formulate a clear point of view on complicated issues and create a concise and well-written narrative.
• Detail oriented possessing high organization and planning skills.
• Strong analytical skills as well as ability to work independently and within a team environment.
• Ability to manage cost center budgets in a fiscally responsible manner.

COMMUNICATIONS AND INTERPERSONAL SKILLS:

• Must have excellent oral and written communication skills.