Manager, Security Detection and Response
Houston, TX, United States
USD 139K-200K (estimate) Senior-level Full Time
Tasks
- Conduct root cause analysis
- Coordinate security controls with engineering and GRC
- Develop tabletop exercises and training
- Integrate security telemetry into SIEM
- Lead SOC analyst and threat hunter team
- Lead threat hunting operations
- Maintain incident response plans
- Manage SOAR playbooks
- Manage SOC SLAs
- Mature SIEM detection content
- Optimize alert fidelity
- Oversee security documentation
- Oversee vulnerability management and penetration testing
- Partner with MDR MSSP and threat intelligence providers
- Preserve evidence chain of custody
- Run incident response operations
- Serve as incident response commander
- Support vulnerability remediation prioritization
- Track SOC performance metrics
- Translate hunt findings into detections
Perks/Benefits
- N/A
Skills/Tech-stack
AWS | Attack TTPs | Azure | CIS Controls | CrowdStrike | Cyber Kill Chain | Defender for Endpoint | Detection and Response | Detection engineering | Diamond Model | Endpoint Detection and Response | Endpoint detection | Forensics | IBM QRadar | Incident Response | Kill Chain | MITRE ATTACK TTPs | Microsoft Defender | Microsoft Defender for Endpoint | Microsoft Sentinel | Mitre Attack | NERC CIP | NGFW | NIST CSF | Network Security | Palo Alto | Palo Alto XSOAR | Proxy | SIEM | SOAR | SOC 2 | Secure Web Gateway | Secure web | Security monitoring | SentinelOne | Splunk | Splunk SOAR | Threat Intelligence | Threat hunting | Vulnerability Management | Web Gateway
Education
Bachelor of Engineering | Bachelor of Science | Master of Science
Related jobs
-
Tier 2 Cyber Threat Analyst (CTA) USD 85K-104KDDoS | Digital forensics | Enterprise Security | Evidence Preservation | Incident ResponseHigh quality deliverables | Limited supervision | On call escalation supportMid-level Full TimeFAIRFAX, VA, United States16h ago
-
Application Security | Encryption | Firewall | Intrusion Detection | Network SecurityBackground checks | Dental insurance | Medical insurance | Paid time off | Vision insuranceMid-level Full TimeTallahassee, FL, United States18h ago
-
Access Management | Authentication | Database security | Encryption | FirewallDental insurance | Medical insurance | PTO | Vision insuranceMid-level Full TimeTallahassee, FL, United States18h ago
-
Access Control | Authentication | Database Administration | Encryption | FirewallsDental insurance | Medical insurance | Paid time off | Vision insuranceMid-level Full TimeTallahassee, FL, United States18h ago
-
Access Control | IT Security | Incident Response | Information security | Risk ManagementDental insurance | Medical insurance | Paid time off | Vision insuranceMid-level Full TimeTallahassee, FL, United States18h ago
-
Automation Scripting | Cybersecurity | Endpoint detection | Event management | Event responseDental insurance | Education assistance | Health insurance | Paid time off | Public service loan forgivenessMid-level Full TimeUnited States of America-OHIO-Franklin County-Columbus20h ago
-
Cybersecurity | Incident Response | Penetration Testing | Project Management | Risk ManagementFree onsite gym | Free parking | Onsite cafeteria | Onsite childcareSenior-level Full TimeUnited States of America-OHIO-Franklin County-Columbus20h ago
-
Security Engineer USD 125K-135KAccess Control | Antivirus | Automation | Cybersecurity | DHCPBasic life insurance | Dental coverage | Education and development opportunities | Medical coverage | Paid time offMid-level Full TimeUnited States of America-OHIO-Franklin County-Columbus20h ago
-
Senior Product Manager II - SecOps USD 173K-203KB2B SaaS | Competitive Intelligence | Data analytics | Enterprise Security | Go-to-marketMid-level Full TimeUnited States or Canada (100% remote) R1d ago
-
Incident Response Engineer (R-00146) USD 164K-200KAWS | Azure | Bash | Cyber Threat | Cyber Threat Intelligence401k match | Cell phone reimbursement | Certification support | Home internet reimbursement | Maternity leaveMid-level Full TimeUnited States1d ago
-
Risk-Based Asset Manager (R-00144) USD 99K-190KAmazon RDS | Audit Logging | Automation | Azure SQL | Bash401k match | Cell phone reimbursement | Home internet reimbursement | Maternity leave | Medical insuranceMid-level Full TimeWashington DC1d ago
-
Senior-level Full TimeUnited States (Remote) R1d ago
-
Senior-level Contract Full TimeLos Angeles, California1d ago
-
Senior Manager, Strategic Operations USD 201K-236KDashboards | Enterprise Risk | Enterprise Risk Management | Executive Communication | GovernanceSenior-level Full TimeRemote - USA R1d ago
-
Information Security Engineer USD 100K-125KDigital forensics | Evidence collection | Incident Response | Log Analysis | Malware analysisCustomer consultative work | On-call support | On-the-job training | Professional developmentMid-level Full TimeLittle Chute, WI, US1d ago
-
Sr. Solutions Architect II (6543) USD 175K-220KATO | Architecture Documentation | Authorization Readiness | Continuous Monitoring | Control inheritanceMid-level Full TimeWashington, DC1d ago
-
Information Security Engineer USD 100K-125KDigital forensics | Evidence collection | Incident Response | Log Analysis | Malware analysisOn-call rotation | On-the-job training | Professional developmentMid-level Full TimeWest Des Moines, IA, US1d ago
-
Incident Response Manager USD 86K-136KAdversary Emulation | Adversary Tactics Techniques and Procedures | Adversary tactics | Cyber Threat | Cyber threat huntingConference travel opportunities | Health insurance | Hybrid work model | Life insurance | Paid time offMid-level Full TimeTampa, FL, United States R1d ago
-
Staff AI Security Engineer USD 128K-200KABAC | AI Act | AI RMF | AI Security | API Security401k | Dental insurance | Discretionary bonus | Equity | Fertility treatment benefitSenior-level Full TimeRemote - United States R1d ago
-
Information Security GRC Analyst USD 78K-116KAudit evidence | CCPA | Cloud Computing | Customer Due Diligence | Data ProtectionAnnual performance bonus opportunities | Career development | Commissions | Company-paid privacy certification exam fees | Discretionary bonusesMid-level Full TimeAtlanta, Georgia1d ago
-
Senior Security Engineer - Job ID 3104 USD 105K-151KACL management | Application Security | EDR | Endpoint Monitoring | Enterprise Linux401k matching | Dental insurance | Disability insurance | Life insurance | Medical insuranceSenior-level Full TimeBridgewater, NJ, US1d ago
-
Security Operations Engineer USD 170K-204KAWS | Auditability | Azure | CSPM | Certificate managementCell phone allowance | Comprehensive health coverage | Equity grants | Growth-focused environment | Home office setup allowanceSenior-level Full TimeRemote US R1d ago
-
Cybersecurity Engineer USD 123K-166K800-53 | ACAS | ATO | AWS | Access Control401k | Conference support | Dental/vision | Disability insurance | Federal HolidaysMid-level Full TimeUnited States - Remote R1d ago
-
Specialist, Information Security Analyst II USD 65K-95KCloud logging | Detection engineering | EDR | Firewalls | IDS/IPSPaid leave | Paid volunteer timeMid-level Full TimePittsburgh, PA, United States1d ago
-
Lead, Cloud & Security Operations Engineer USD 160K-205KAWS | Access Control | Access Governance | Access Management | Alert TuningSenior-level Full TimePalo Alto, CA1d ago