Talent.com
Senior Cybersecurity Detection Engineering Manager

Senior Cybersecurity Detection Engineering Manager

Cox AutomotiveConley, GA, United States
9 hours ago
Job type
  • Full-time
Job description

The Senior Cybersecurity Detection Engineering Manager will take charge of a team of Detection Engineers, focusing on the design, implementation, and maintenance of cutting-edge detection capabilities to protect the organization from emerging cyber threats. This crucial role will significantly enhance the Cyber Defense practice at Cox Automotive, facilitating rapid threat response and automated remediation. The successful candidate will be responsible for shaping the Detection Engineering program strategy and establishing metrics for continuous improvement. We seek an individual with expert-level knowledge in SIEM implementation, log ingestion, SOAR, Incident Response, and Threat Intelligence, complemented by strong verbal, written communication, and leadership skills.

Key Responsibilities :

  • Develop and define the detection engineering strategy, roadmap, and objectives.
  • Design and implement advanced threat detection techniques using SIEM, EDR, NDR, and SOAR platforms.
  • Create custom detection rules and automate remediation playbooks tailored to protect enterprise and customer security.
  • Utilize MITRE frameworks to identify detection coverage and mitigate risks.
  • Continuously monitor and optimize detection systems for performance and scalability.
  • Collaborate with the Threat Detection and Response team to enhance identification and management of threats.
  • Conduct attack simulations and purple teaming exercises to validate use case efficacy.
  • Manage SIEM / Data Lake infrastructure for effective log ingestion, in cooperation with Cyber Defense Engineering.
  • Evaluate and tune detection capabilities, sunsetting when necessary.
  • Maintain comprehensive operational guidelines and documentation for security detection and response.

Incident Response Support :

  • Partner with the incident response team for rapid detection and containment of cyber threats.
  • Provide technical guidance in developing detection use cases during critical security incidents.
  • Continuously refine detection and response processes based on incident reviews.
  • Support security administration, detection, and response activities as needed.

    • Threat Intelligence Integration :

  • Leverage threat intelligence to enhance detection strategies and proactively mitigate risks.
  • Analyze new threat vectors and incorporate them into detection strategies.

    • Stakeholder Collaboration :

  • Work with Cybersecurity, Engineering, and Product teams to align detection strategies with overall objectives.
  • Effectively communicate detection findings to both technical and non-technical stakeholders, including executives.

    • Governance and Compliance :

  • Ensure adherence to regulatory requirements and industry standards (e.g., GDPR, PCI-DSS, NIST).
  • Establish and maintain documentation of detection processes and configurations.

    • Essential Skills and Qualifications :

  • Bachelor's degree in Computer Science or equivalent, with 8+ years of relevant experience.
  • Multi-cloud security experience in AWS, Azure, and GCP.
  • Expertise in Detection Engineering and Security Operations.
  • 3+ years of management or leadership experience.
  • Strong background in Information Security, Network Security, Security Monitoring, and Incident Response.
  • Experience developing SIEM / SOAR detection and automation use cases.
  • Familiarity with industry-standard security technologies and services.
  • Deep understanding of the attack kill chain and diamond model.
  • 5+ years in an Incident Response or Security Operations role, with 3+ years in a SOC or similar position.
  • Must reside within a commutable distance to North Hills NY or Atlanta GA and be available for onsite work three times a week.
  • Authorization to work in the United States without current or future sponsorship.

    • Desirable :

  • Relevant certifications such as GSEC, GCIA, GFE, GCFA, CISA, CISSP, CISM, or CIA.
  • Experience in Development, DevOps, Engineering, Network, or System Administration.

    • The salary range for this position is USD 173,900.00 - 289,800.00. Compensation will depend on factors such as location, knowledge, skills, and abilities. Additional compensation may include an incentive program.

    Benefits :

    The Company supports employees with flexible vacation policies, seven paid holidays, up to 160 hours of paid wellness leave, and additional paid time off for bereavement, voting, jury duty, volunteering, military service, and parental leave.

    Create a job alert for this search

    Senior Manager Engineering • Conley, GA, United States