Senior Manager, Information Security Operations
Benchmark · Tempe, AZ · 6 days ago
Information TechnologyFull-time
Responsibilities
- Leadership & Strategy
- Develop and execute the cybersecurity operations strategy, processes and playbooks aligned with organizational objectives.
- Lead a team of security analysts and engineers, fostering a culture of accountability, collaboration, and continuous learning.
- Drive continuous improvement in security operations through automation, threat intelligence integration, and advanced analytics.
- Serve as a trusted advisor to senior leadership on operational security risks, emerging threats, and mitigation strategies.
- Security Operations Management
- Oversee 24/7 Security Operations Center (SOC) activities, including threat detection, analysis, and incident response, ensuring timely escalation and root cause analysis.
- Establish and track operational KPIs and metrics to measure the effectiveness of security tools, processes and risk exposure.
- Maintain and test incident response plans and disaster recovery procedures.
- Manage vulnerability assessment and remediation programs across IT and OT (Operational Technology) environments.
- Collaborate with IT and business units to ensure timely patching and configuration hardening.
- Threat Intelligence & Risk Management
- Integrate threat intelligence into operational workflows to proactively mitigate risks.
- Maintain compliance with relevant regulations and standards (e.g., ISO 27001, NIST CSF, GDPR, CMMC) applicable to the manufacturing sector.
- Develop and enforce security policies, procedures, and operational playbooks.
- Conduct regular audits and assessments to validate security posture and operational effectiveness.
- Technology & Process Optimization
- Evaluate and implement advanced security tools for threat intelligence, SIEM, EDR, and OT security monitoring.
- Collaborate with IT and OT teams to secure industrial control systems (ICS) and IoT devices.
- Drive automation and orchestration initiatives to improve efficiency and reduce response times.
- Cross-Functional Collaboration
- Partner with IT, engineering, and business stakeholders to embed security into processes and projects.
- Serve as a key point of escalation for critical security incidents and executive communications.
Qualifications
- Bachelor’s degree in Cybersecurity, Computer Science, or related field (Master’s preferred).
- 8 - 10 years in information security, with at least 5 years in a leadership role focused on security operations.
- Proven experience managing SOC, incident response, and vulnerability management programs.
- Hands-on experience with SIEM, EDR, IDS/IPS, vulnerability management tools, and incident response processes.
- Strong knowledge of security frameworks (NIST, ISO 27001) and regulatory compliance requirements (e.g., PCI, HIPAA, CMMC).
- Excellent leadership, communication, and stakeholder management skills.
- Relevant certifications (CISSP, CISM, GIAC, etc.) highly desirable.
- Experience with cloud security operations (AWS, Azure, GCP).
- Knowledge of automation tools and scripting for security workflows.
- Strong understanding of SIEM, EDR, SOAR, and threat intelligence platforms.
- Ability to operate in fast-paced, high-pressure environments.