Security Detection & Response Manager
Copenhagen V, DK
Would you like to use your security operations expertise and development skills to help transform our Security Operations Center into a leading practice SOC with extended integra-tions and automation at the world’s largest jewelry brand?
At Pandora we have combined all our tech, digital and data talents to accelerate and drive Pandora’s digital journey. As we are in the process of revamping the digital landscape and strengthening our cyber security posture, we are growing our digital team and searching for a Security Detection and Response Manager to join our growing Cyber Security Operations team who can help us on this journey.
Position:
As the Security Detection and Response Manager, you will be the key link between our in-ternal security operations engineering team and our external SOC analysts. You will play a crucial role in optimizing detection and incident response across the organization. Addition-ally, you will be responsible for advancing the orchestration and automation of investigations and response actions to the next level.
Having spent the last few years building and refining our technology infrastructure, process-es, and playbooks for security operations, we are now seeking an experienced incident man-ager. This person will drive continuous improvement and facilitate daily collaboration be-tween the SecOps internal engineering team and the external SOC. The role also involves working closely with detection engineering to ensure our detection capabilities align with incident response strategies. We are looking for someone who excels in process creation, documentation, and optimization — not just on paper, but by leveraging our cutting-edge technology tool stack.
You will take charge of coordinating and directing the external SOC team, ensuring effective and seamless incident management and daily cooperation. Moreover, you will be responsi-ble for identifying gaps and areas of improvement in the technologies supporting detection creation and incident management, and you will work with the wider team to enhance these systems. As the internal authority on security incident response, you will act as the primary voice toward our external SOC, ensuring alignment with our ambitions and goals.
You will report directly to the Director of SecOps, with a primary focus on managing the re-lationship and coordination with the external SOC while driving collaboration with internal engineering teams.
You will be part of an on-call rotation to handle escalations and critical security incidents outside of regular business hours. This is a shared responsibility across the entire SecOps team to ensure swift and effective response to urgent issues, minimizing the impact on the organization.
Key Responsibilities:
- Incident Management & Response: Own the end-to-end process for managing and responding to security incidents, ensuring timely detection, containment, and eradication.
- Support Detection Engineering: Collaborate with internal engineering teams to enhance detection mechanisms, ensuring alignment between detection strate-gies and incident response.
- MSSP Coordination: Act as the primary point of contact with the external MSSP SOC, ensuring they are properly tasked and guided on incident response activi-ties, escalations, and required actions.
- Process & Engineering Mindset: Identify unmet or unknown gaps in processes and supporting technology related to security incident management, and apply a process-driven and engineering-focused approach to design and implement improved versions of these processes, ensuring continuous enhancement of in-cident management effectiveness.
- Operational Data Analysis: Utilize operational data from our platforms and in-terpret feedback from the external SOC to identify and implement improve-ments in logging, detection, and response actions.
- Incident Reporting & Documentation: Produce documentation of incidents, in-cluding timelines, root cause analysis, and lessons learned. Additionally, sup-port the design and implementation of reporting mechanisms to enable data-driven continuous improvement in incident management processes.
- Incident Response Preparedness: Maintain and regularly update incident re-sponse plans, align dependencies, and ensure the execution of recurring testing to validate the effectiveness of response actions, ensuring the organization re-mains prepared for potential security incidents.
- Post-Incident Review: Conduct detailed post-incident reviews, analyze re-sponse effectiveness, and identify areas for process improvement.
- Training & Awareness: Provide training and guidance to the IT and Security teams on incident management processes, tools, and best practices.
Skills & Qualifications:
- 3+ years of experience working in a cybersecurity operations center or incident management function(s).
- Experience working with SOC teams, including tasking and managing external MSSP teams, and using incident response tools such as SIEM, SOAR, and EDR.
- Experience with incident response frameworks and methodologies, such as NIST, SANS, or similar.
- Experience in process improvement, with a focus on documenting, refining, and enhancing security incident management workflows.
- Proven experience in proactively identifying and improving tooling and process-es.
- Strong understanding of network protocols, operating systems, and security technologies.
- Solid understanding of cloud infrastructure, and container-based platforms.
- Ideally, demonstrated experience developing code and automation using Py-thon, PowerShell, or similar.
- Strong quantitative and analytical skills in data manipulation.
- Excellent communication skills, with the ability to effectively convey complex technical issues to non-technical stakeholders.
- Ability to remain calm under pressure and manage multiple incidents concurrently.
About Pandora
Established in 1982, Pandora designs, manufactures and markets hand-finished jewellery made from high-quality materials at affordable prices. Pandora’s products are available in more than 100 countries on six continents through more than 6,500 points of sale, including around 2,500 concept stores.
Headquartered in Copenhagen, Denmark, Pandora employs 32,000 people worldwide and crafts its jewellery at two LEED certified facilities in Thailand, using mainly recycled silver and gold. The company plans to be carbon neutral by 2025 and has joined the Science Based Targets initiative to reduce emissions across its full value chain. Pando-ra is listed on the Nasdaq Copenhagen stock exchange and generated a revenue of DKK 28.1 billion in 2023.
At Pandora, we believe that creating an inclusive and diverse workplace and reflecting societal diversity in our customer engagement is essential to delivering on our company purpose: to give a voice to people’s loves. We dedicate ourselves to fostering, cultivat-ing and preserving a culture of inclusion and diversity where everyone feels respected and valued.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation Cloud EDR Incident response NIST PowerShell SANS SecOps SIEM SOAR SOC
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.