Talent.com
Senior Manager of Cybersecurity Detection Engineering (m / w / d)

Senior Manager of Cybersecurity Detection Engineering (m / w / d)

Cox AutomotiveAtlanta, GA, United States
2 days ago
Job type
  • Full-time
Job description

The Senior Manager of Cybersecurity Detection Engineering will lead a team of Detection Engineers in designing, implementing, and maintaining advanced detection capabilities to safeguard the organization against emerging cyber threats. This pivotal role will enhance Cox Automotive's next-generation Cyber Defense practice, enabling rapid threat response and automated remediation. The position will be responsible for developing the strategy for the Detection Engineering program and establishing metrics to demonstrate continuous improvement. The ideal candidate will possess expert-level knowledge in SIEM implementation and log ingestion, SOAR, Incident Response, and Threat Intelligence that will be data-driven with strong verbal, written communication, and leadership skills.

Cybersecurity Detection Engineering :

  • Define detection engineering strategy, roadmap, and objectives to achieve.
  • Design and implement advanced threat detection techniques using tools such as SIEM, EDR, NDR, and SOAR platforms.
  • Develop innovative custom detection rules and automated remediation, playbooks, and alerts tailored to the organization's threat landscape for enterprise and customer security.
  • Leverage industry standard MITRE frameworks to identify detection coverage and close gaps.
  • Monitor, optimize, and continuously improve detection systems for performance, scalability, and effectiveness.
  • Collaborates with Threat Detection and Response team to continuously improve cybersecurity capabilities in identification, management, and response to threats in the most efficient and effective manner.
  • Performs attack simulation testing to validate efficacy of use cases and purple teaming exercises collaborating with the Vulnerability Mgmt team.
  • Manages and maintains SIEM / Data Lake data management and log ingestion infrastructure in collaboration with Cyber Defense Engineering.
  • Evaluate, validate, tune, and sunset where necessary detection capabilities
  • Maintains operational guidelines, diagrams, and documentation for security detection and response.

Incident Response Support :

  • Collaborate with the incident response team to ensure rapid detection and containment of cyber threats.
  • Provide technical expertise and guidance to develop detection use cases during high-severity security incidents.
  • Continuously improve detection and response processes based on lessons learned from incidents.
  • Other duties may be assigned as needed to address new security threats facing the enterprise.
  • Provides off hour support as needed for security administration, detection, and response activities.

    • Threat Intelligence Integration :

  • Leverage threat intelligence to enhance detection capabilities and proactively mitigate risks.
  • Identify and analyze new and emerging threat vectors and incorporate them into detection strategies.

    • Stakeholder Collaboration :

  • Partner with other Cybersecurity, Engineering, and Product teams to align detection strategies with organizational objectives.
  • Communicate detection capabilities and findings to technical and non-technical stakeholders, including executive leadership.

    • Governance and Compliance :

  • Ensure all detection processes and tools adhere to regulatory requirements and industry standards (e.g., GDPR, PCI-DSS, NIST).
  • Establish and maintain documentation of detection strategies, processes, and configurations.

    • Professional Technology Skills (the professional technology skills you need to be able to do the job)

    Ability to :

  • Proven track record of building scalable organizations that have world class threat detection capabilities.
  • Technical proficiency performing security investigations at scale; including endpoint, cloud, identity, network, and email threats.
  • Work with internal IT teams and external MSSPs for creation and operationalization of Detection Engineering use cases for WAF, DDoS Protection, Email systems, DLP, AV, and Endpoint security technologies.
  • Practical experience with Detection & Response tools for network, endpoints, cloud, and identity as well as SOAR platforms.
  • Apply security Threat Intelligence to identify new threat vectors.
  • Lead projects to improve security monitoring and response capabilities.
  • Demonstrate a strong security engineering and architecture background to best understand how to employ the most effective and efficient security monitoring.
  • Strong fundamentals of Linux, MacOS, and Windows operating system internals.
  • Demonstrate effective communication of security issues to management and others.
  • Maintain detection use case and SIEM configuration guidelines and standards for security.
  • Proficiency creating and managing operational metrics that increase team efficiency and quality.
  • Enthusiastic about managing and mentoring individuals pursuing careers in detection engineering.
  • Ability to manage effective relationships with organizational leaders, build a roadmap, and drive broad initiatives to completion.
  • Understanding of Machine Learning concepts as related to predictive analytics.

    • Knowledge, Experience & Qualifications

    Essential :

  • Bachelor's degree in Computer Science or equivalent and 8+ years of industry related professional experience. The right candidate could also have a different combination, such as a master's degree and 6 years' experience; a Ph.D. and 3 years' experience in a related field; or 20 years' experience in a related field
  • Multi-cloud security experience AWS, Azure, GCP
  • Expert level knowledge on Detection Engineering and Security Operations
  • 3+ years of management or leadership experience with direct people management responsibilities
  • Strong experience with Information Security, Network Security, Security Monitoring, and Incident Response.
  • Strong experience with developing SIEM / SOAR detection and automation use cases.
  • Working experience with industry standard security technologies and services such as Threat Intelligence, Firewalls, SASE, IPS, Endpoint Security, DLP, SIEM / SOAR, and Data Lakes.
  • Expert level knowledge on the attack kill chain and diamond model.
  • 5+ years' experience in an Incident Response or Security Operations role
  • 3+ years' leadership experience in a SOC or equivalent role
  • Must live within a commutable distance to North Hills NY or Atlanta GA and be willing to come onsite 3x a week
  • Applicants must currently be authorized to work in the United States for any employer without current or future sponsorship. No OPT, CPT, STEM / OPT or visa sponsorship now or in future

    • Desirable :

  • GSEC, GCIA, GFE, GCFA, CISA, CISSP, CISM, or CIA certification(s)
  • Development / Dev Ops / Engineering / Network / System Administration experience

    • USD 173,900.00 - 289,800.00

    Compensation :

    Compensation includes a base salary of $173,900.00 - $289,800.00. The base salary may vary within the anticipated base pay range based on factors such as the ultimate location of the position and the selected candidate's knowledge, skills, and abilities. Position may be eligible for additional compensation that may include an incentive program.

    Benefits :

    The Company offers eligible employees the flexibility to take as much vacation with pay as they deem consistent with their duties, the company's needs, and its obligations; seven paid holidays throughout the calendar year; and up to 160 hours of paid wellness annually for their own wellness or that of family members. Employees are also eligible for additional paid time off in the form of bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, and parental leave.

    Create a job alert for this search

    Manager Of Engineering • Atlanta, GA, United States

    Related jobs
    • Promoted
    Senior Director, Cyber Security Enablement & Secure DevOps

    Senior Director, Cyber Security Enablement & Secure DevOps

    Global Payments Inc.Alpharetta, GA, United States
    Full-time
    Senior Director, Cyber Security Enablement & Secure DevOps.Join to apply for the Senior Director, Cyber Security Enablement & Secure DevOps role at Global Payments Inc. The Senior Director, Cyber Se...Show moreLast updated: 2 days ago
    • Promoted
    Associate Logistics Manager - Project

    Associate Logistics Manager - Project

    Ecolab Inc.McDonough, GA, US
    Full-time
    Associate Logistics Manager – Projects.This position works cross functionally to influence, lead, develop, and execute strategic supply chain initiatives that are designed to drive growth, operatio...Show moreLast updated: 8 days ago
    • Promoted
    Senior Manager of Cybersecurity Detection Engineering and Response

    Senior Manager of Cybersecurity Detection Engineering and Response

    Cox AutomotiveEast Point, GA, United States
    Full-time
    We are seeking a dynamic and experienced Senior Manager of Cybersecurity Detection Engineering to spearhead our team of Detection Engineers. In this critical role, you will drive the design, impleme...Show moreLast updated: 2 days ago
    • Promoted
    Global Sales Director - Cybersecurity Operational Controls

    Global Sales Director - Cybersecurity Operational Controls

    HoneywellAtlanta, GA, United States
    Full-time
    The Global Director Cybersecurity Sales will be key to developing opportunities to drive a blend of Cybersecurity Services and Product solutions targeted at the Buildings space both directly and th...Show moreLast updated: 4 days ago
    • Promoted
    Senior Validation Engineering Manager

    Senior Validation Engineering Manager

    OSI EngineeringJohns Creek, GA, US
    Full-time
    Senior Validation Engineering Manager A leading chip and silicon IP provider is looking to hire a Validation Manager to join its Memory Interface Chip business unit. In this full-time role, you’ll c...Show moreLast updated: 30+ days ago
    • Promoted
    Manager, Cybersecurity Architecture

    Manager, Cybersecurity Architecture

    Southern CompanyAtlanta, GA, United States
    Full-time
    Southern Company Cybersecurity.Manager, Cybersecurity Architecture.Manager, Cybersecurity Architecture.Southern Company is seeking a dynamic and experienced cybersecurity leader to serve as the Ent...Show moreLast updated: 10 days ago
    • Promoted
    Senior Lead Cloud Security Architect

    Senior Lead Cloud Security Architect

    Cox AutomotiveBrookhaven, GA, United States
    Full-time
    The Senior Lead Cybersecurity Architect is responsible for defining the principles, standards, and design patterns to build secure products and enterprise tools for all of Cox Automotive's multi-cl...Show moreLast updated: 30+ days ago
    • Promoted
    VSOC - (Vehicle Security Operations Center) Analyst

    VSOC - (Vehicle Security Operations Center) Analyst

    Datamtx LLCPeachtree City, GA, US
    Full-time
    Job Title : VSOC - (Vehicle Security Operations Center) Analyst Duration : 12 – 24 Month Project Engagement Role Summary : The vSOC Analyst is a specialized role focused on vehicle security operations...Show moreLast updated: 8 days ago
    • Promoted
    Dean of the College of Computing and Software Engineering

    Dean of the College of Computing and Software Engineering

    InsideHigherEdKennesaw, Georgia, United States
    Full-time +1
    Dean of the College of Computing and Software Engineering.Kennesaw State University (KSU) invites nominations and applications for the position of Dean of the College of Computing and Software Engi...Show moreLast updated: 30+ days ago
    • Promoted
    Lead Application Security Engineer - 19562

    Lead Application Security Engineer - 19562

    Cox AutomotiveLithia Springs, GA, United States
    Full-time
    The Lead Application Security Engineer will partner with Security Engineering Enablement and Security Architecture to design and ship secure software : secure code reviews and help define requiremen...Show moreLast updated: 30+ days ago
    • Promoted
    Security Operations Administrator (Endpoint Security Lead)

    Security Operations Administrator (Endpoint Security Lead)

    Datamtx LLCPeachtree City, GA, US
    Full-time
    Job Title : Security Operations Administrator (Endpoint Security Lead) Duration : 12 – 24 Month Project Engagement Role Summary : The Security Operations Admin is a specialized role focused on the str...Show moreLast updated: 8 days ago
    • Promoted
    Travel Nuclear Medicine Tech - $2,082 to $2,393 per week in Fayetteville, GA

    Travel Nuclear Medicine Tech - $2,082 to $2,393 per week in Fayetteville, GA

    AlliedTravelCareersFayetteville, GA, US
    Full-time
    AlliedTravelCareers is working with Fusion Medical Staffing to find a qualified Nuclear Medicine Tech in Fayetteville, Georgia, 30214!. Facility in Fayetteville, Georgia.Fusion Medical Staffing is s...Show moreLast updated: 3 days ago
    • Promoted
    Security Architect Lead

    Security Architect Lead

    Datamtx LLCPeachtree City, GA, US
    Full-time
    Job Title : Security Architect Lead Duration : 12 – 24 Month Project Engagement Role Summary : The Architecture, Cloud, and Engineering Lead provides strategic guidance and direct leadership for the s...Show moreLast updated: 8 days ago
    • Promoted
    Security Architect

    Security Architect

    Datamtx LLCPeachtree City, GA, US
    Full-time
    Job Title : Security Architect Duration : 12 – 24 Month Project Engagement Role Summary : The Architecture, Cloud, and Engineering Lead provides strategic guidance and direct leadership for the securi...Show moreLast updated: 8 days ago
    • Promoted
    Senior Manager of Cybersecurity Detection Engineering

    Senior Manager of Cybersecurity Detection Engineering

    Cox AutomotiveLithia Springs, GA, United States
    Full-time
    The Senior Manager of Cybersecurity Detection Engineering will lead a team of Detection Engineers in designing, implementing, and maintaining advanced detection capabilities to safeguard the organi...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Lead Cybersecurity Engineer; HP NonStop Systems

    Lead Cybersecurity Engineer; HP NonStop Systems

    Capital OneAtlanta, GA, United States
    Full-time +1
    Lead Cybersecurity Engineer; HP NonStop Systems.In this key technical Lead Cybersecurity role, you'll be responsible for the overall security architecture, design, and configuration of the PULSE HP...Show moreLast updated: less than 1 hour ago
    • Promoted
    Security Engineer

    Security Engineer

    Datamtx LLCPeachtree City, GA, US
    Full-time
    Job Title : Security Engineer Duration : 12 – 24 Month Project Engagement Role Summary : The Security Engineer is a hands-on technical expert responsible for implementing, maintaining, and optimizing ...Show moreLast updated: 8 days ago
    • Promoted
    AppSec Analyst DAST (Application Security)

    AppSec Analyst DAST (Application Security)

    Datamtx LLCPeachtree City, GA, US
    Full-time
    Job Title : AppSec Analyst DAST Duration : 12 – 24 Month Project Engagement Role Summary : The AppSec Analyst DAST is responsible for finding and remediating security vulnerabilities in Client's runni...Show moreLast updated: 8 days ago