Security Operations Manager

stackArmor is a fast-growing cloud security and cloud migration services partner delivering compliance-focused cloud cybersecurity services. We were ranked #136 in the INC 500 fastest-growing private companies in North America. Join our growing team, we are looking for talented and enthusiastic team members to help us migrate, manage and automate common security and operations functions. Our cybersecurity engineers and cloud architects are highly proficient in FedRAMP, FISMA/RMF and CMMC compliance frameworks on cloud platforms like AWS, Google, and Microsoft Azure.

We are looking for a hands-on Security Operations and Incident Response leader to lead and grow our security operations, incident response and compliance reporting team. This role requires prior experience with leading and growing a security operations center, delivering managed security services and supporting incident response activities particularly in compliance with FedRAMP, FISMA and CMMC 2.0 requirements as well as emerging Federal cybersecurity incident reporting requirements.

Responsibilities/Duties:

• Responsible for the delivery of security and compliance services that include technical understanding of SIEM, SOAR, EDR, firewalls, network and email security tools with a variety of enterprise IT and cloud-based architectures and technologies

• Provide leadership and guidance, acting as the main contact for customers and senior management as the 24/7 senior focal point for security operations, incident management and compliance reporting services

• Oversee the continuous monitoring program including identification, intake, triage, response, remediation and resolution of customer issues related to providing security operations, and incident response while prioritizing incidents based on risk or exposure

• Manage and develop team of senior delivery managers, security engineers and security analysts including performance reviews, utilization tracking, skill development and responsible for hiring and developing training plans

• Ensure the delivery and performance of security operations, incident response and compliance reporting within the terms of the Statement of Work and implement change tracking for out of scope or new work efforts, manage customer requirements and expectations within project constraints.

• Evolve and mature the 24/7 service delivery capabilities including staffing, SLAs and service delivery management including operating a service desk

• Assist with customer relationship management with change orders, providing quotes and answering questions related to budget, scope and services delivered while ensuring high levels of customer satisfaction and contract renewals

Requirements:

• Ability to actively communicate, interact and solve critical customer problems.
• Ability to think and act strategically and proactively.
• Demonstrated experience with security operations, incident response and compliance reporting for cloud-based systems in compliance with FedRAMP, FISMA and CMMC 2.0 requirements.
• Ability to work independently with minimal direction or supervision.
• Must have experience with industry leading security technologies Splunk, Tenable Nessus, AWS, Google, Azure
• 24/7 Operations Experience is required
• Familiarity with automated response and remediation technologies

Please note US citizens eligible only.

No agencies, third party recruiters or 1099s.

Job Type: Full-time

Salary Range: $150K - $250K per year

Benefits:

• 401(k)
• Dental insurance
• Health insurance
• Paid time off
• Professional development assistance
• Vision insurance

Schedule:

• Exempt Employee

Education:

• Bachelor’s (Preferred)

Experience:

• 5+ years of technical security experience, with 3+ years of experience leading cloud security managed services and 1+ years of operating a cyber incident response or security operations team within a large enterprise organization

• Strong leadership and interpersonal skills with executive management qualities that includes excellent operational rigor with extensive real-world experience leading and responding to large scale, complex incidents

• Solid grasp of common cyber frameworks and models such as the MITRE ATT&CK, Cyber Kill Chain, as well as best practices on forensics, ransomware playbooks and modern penetration testing techniques

• Ability to communicate complex and technical issues to diverse audiences, verbally and in writing, in an easily understood, authoritative, and actionable manner