Cyber Operations Manager I | Remote, USA

Join to apply for the Cyber Operations Manager- Threat Operations | Remote, USA role at Optiv.

The Cyber Operations Manager for Threat Detection & Response is responsible for ensuring early and accurate detection, response, and containment of threats against our clients. This technical management role requires deep security expertise, experience as a security practitioner, systems management, service management skills, and the ability to attract and retain talent. The position involves mentoring, developing, and evaluating team members, as well as improving Security Operations services.

1. Lead 24x7 Threat Detection and Response Analysts, overseeing operational and strategic planning, resource allocation, and daily operations.
2. Collaborate with customers on reporting, stewardship calls, and escalations.
3. Enforce policies and procedures related to security, disaster recovery, standards, and service delivery.
4. Drive continuous improvement of detection, response, and incident management processes.
5. Oversee security of client systems via the Advanced Fusion Center (AFC) service.
6. Stay updated on vendor updates, expansion opportunities, and technological directions relevant to the client environment.
7. Work with other managers to advance the Security Operations organization and Optiv's overall capabilities.
8. Improve processes and documentation continually.
9. Manage staffing activities including recruitment, supervision, scheduling, development, and evaluations.
10. Create an educational environment for ongoing knowledge and performance improvement.
11. Conduct staff performance appraisals.
12. Report security control gaps and vulnerabilities to clients in a timely manner.
13. Prepare and analyze metrics and trends related to SLAs and KPIs for clients and support staff.
14. Keep abreast of evolving risks, industry developments, and best practices in threat management and response.
15. Participate in industry events and network with peers to enhance risk mitigation strategies.
16. Oversee threat intelligence reports to communicate analysis results effectively.
17. Coordinate data normalization from various security assessments and projects.
18. Maintain communication with executives and other department heads regarding relevant activities.
19. Develop staff through training, communication, and performance management to boost morale and motivation.
20. Report on security issues and metrics regularly to stakeholders.

• 12+ years in IT and Information Security.
• 5+ years leading Threat Detection and Response teams.
• 5+ years in cyber operations centers.
• 3+ years in managed services.
• Certifications such as Security+, GSEC, GCIA, GCIH, CISSP, CISM, CISA, or similar.
• Strong decision-making and problem-solving skills under pressure.
• Deep knowledge of SIEM solutions like LogRhythm, QRadar, Splunk, Exabeam.
• Deep understanding of EDR solutions such as Crowdstrike, Cylance, Carbon Black, Microsoft ATP.
• Knowledge of regulatory standards like NIST, SOX, HIPAA, NERC CIP, PCI.
• Understanding of cybersecurity laws across regions.
• Familiarity with Security Orchestration, Automation, and Response (SOAR).
• Experience with ticketing and knowledge management systems like ServiceNow.
• Experience with ITIL practices.
• Experience with security analytics platforms like Kibana.
• Experience with reporting tools such as DOMO and PowerBI.

• A commitment to Diversity, Equality, and Inclusion.
• Work/life balance.
• Professional training resources.
• Opportunities for creative problem-solving and complex projects.
• Volunteer opportunities through “Optiv Chips In”.
• Remote work technology support where applicable.

Optiv is an equal opportunity employer. All qualified applicants will be considered regardless of race, color, religion, sex, gender identity, sexual orientation, pregnancy, age, marital status, genetic information, national origin, disability, military or veteran status, or other protected categories.

We respect your privacy. By applying, you agree that Optiv may collect and process your personal information as detailed in our Privacy Notice.