Cyber Security - Detection Engineering & Automation Manager

Position Overview: We are seeking a highly skilled and experienced Detection Engineering & Automation Manager to lead our cybersecurity initiatives. The ideal candidate will have a strong background in Security Operations Center (SOC) operations, expertise in the MITRE ATT&CK Framework, and a proven track record in implementing Security Orchestration, Automation, and Response (SOAR) solutions. This role is pivotal in enhancing our Digital Defense Center detection capabilities and streamlining security processes through automation.

Key Responsibilities:

• Lead the detection engineering team in designing, implementing, and optimizing detection strategies and solutions for the Cyber Security organization.
• Map security threats and incidents to the MITRE ATT&CK Framework to enhance threat intelligence and response strategies.
• Develop and manage SOC, Cyber Threat Intelligence, and other ops team automations to improve efficiency and effectiveness in threat detection and response.
• Collaborate with cross-functional teams to integrate SOAR solutions into existing operational workflows.
• Oversee the continuous improvement of detection and response processes through innovative automation techniques.
• Provide technical leadership and mentorship to the detection engineering team.
• Stay abreast of the latest cybersecurity trends, tools, and technologies to ensure the organization remains ahead of emerging threats.
• Define and track Outcome Based Metrics and KPIs for the Detection Engineering & Automation team

Qualifications:

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field preferred.
• 8 years working experience in Cyber Security Operations required. 
• 2+ years of SOC Analyst working experience required.
• 2+ years of Detection Engineering work experience with Splunk ES or another analytic platform required.
• 2+ years of SOAR working experience required.
• 2+ years of cyber security management or technical lead experience required.
• Relevant certifications such as OSCP, SANS GCIA/GCIH, CISSP, CISM are highly desired.
• Extensive knowledge of the MITRE ATT&CK Framework and its application in threat detection and response.
• Proven experience in implementing and managing SOAR solutions and SOC automations.
• Strong understanding of cybersecurity principles, threat intelligence, and incident response.
• Excellent leadership, communication, and interpersonal skills.
• Ability to work collaboratively in a fast-paced, dynamic environment.