Sr. Manager, Threat Engineering
TORY BURCH · Jersey City, NJ · 1 wk ago
EngineeringFull-time
About the role
This role leads the Threat Engineering pillar and represents a clear technical step above traditional security engineering or SOC leadership. You are accountable for threat modeling, detection strategy, identity-centric security, data governance, privacy engineering, audit-aligned control assurance, and adversarial validation.
Responsibilities
- Own enterprise threat management and threat modeling, identifying relevant adversaries, tactics, techniques, and procedures and ensuring those models actively drive detection engineering, vulnerability prioritization, and governance decisions.
- Apply frameworks such as MITRE ATT&CK pragmatically, with emphasis on identity-based attack paths, cloud-native threats, insider abuse, supply chain compromise, and AI-enabled abuse.
- Serve as the lead authority for detection strategy across human and non-human identities, including service accounts, workloads, APIs, pipelines, and agentic systems.
- Define and drive a threat capability maturity model covering detection, response, identity security, data governance, privacy, third-party risk, and crisis readiness.
- Assess current state, define target maturity, and lead initiatives that measurably advance capability over time.
- Ensure identity telemetry, privilege use, token issuance, and anomalous behavior are first-class detection concerns across networks, Microsoft 365, GCP, and enterprise platforms.
- Lead and mentor a Detection Engineer and partner with the Privacy, Risk & Control Engineer, ensuring threat, privacy, compliance, and audit activities are tightly integrated.
- Interrogate findings, validate exploit paths, and ensure outcomes drive improvements in detection, configuration, architecture, and response readiness rather than producing static reports.
- Design, lead, and facilitate consequence-driven tabletop exercises focused on real threat scenarios, escalation breakdowns, decision authority, and business impact.
- Establish and maintain working partnerships with internal and external crisis and incident management stakeholders, including MSSPs, legal counsel, communications, insurance providers, and executive leadership.
- Ensure roles, escalation paths, and decision rights are clear before incidents occur and exercised regularly.
- Optimize the organization’s security stack and managed security service providers to ensure full visibility, integration, and coverage.
- Challenge runtime security assumptions, configuration quality, and alert effectiveness, driving automation and workflow improvements that reduce MTTR and eliminate blind spots.
- Own risk-based threat and vulnerability management, ensuring remediation priorities reflect exploitability, adversary relevance, identity exposure, and business context rather than severity scores alone.
- Develop and deliver executive-level threat and risk reporting, including clear KPIs and key security factors that communicate detection effectiveness, control maturity, incident readiness, audit posture, and residual risk to both technical and business audiences.
Requirements
- Bachelor’s degree in computer science, engineering, information security, or equivalent practical experience.
- 10+ years of progressive experience in threat engineering, detection engineering, advanced security engineering, or closely related roles in complex cloud and identity-centric environments.
- Advanced expertise in threat modeling, threat hunting, and adversarial techniques across enterprise networks, Microsoft 365, GCP, CI/CD pipelines, ERP platforms, and data environments.
- Demonstrated experience applying MITRE ATT&CK or similar frameworks to operational threat management and adversarial validation programs.
- Strong technical depth in identity and access management, non-human identities, cloud security, configuration management, runtime security, data governance, and AI-related risk.
- Proven ability to interrogate architectures, challenge red and purple team outputs, and translate findings into concrete mitigations.
- Professional certifications such as CISSP, OSCP, GWAPT, or similar are highly desirable.
- Demonstrated ability to lead technical staff while remaining deeply engaged in threat strategy, adversarial analysis, governance, audit assurance, and executive consequence management.
Qualifications
- Fluent in modern attack paths across human and non-human identities, cloud platforms, CI/CD pipelines, ERP systems, and AI-enabled environments.
- Understand that effective threat management is driven by identity, data movement, configuration integrity, and adversary behavior, not tool accumulation.
- Understand the importance of empowering women through the company’s guiding principle and the work of the Tory Burch Foundation.
Skills
- Threat modeling
- Threat hunting
- Adversarial techniques
- MITRE ATT&CK
- Identity and access management
- Cloud security
- Configuration management
- Runtime security
- Data governance
- Privacy engineering
- Audit-aligned control assurance
- Adversarial validation
Benefits
Our benefits package includes:
- Generous employee discount and access to exclusive sample sales
- Free executive coaching on-demand
- Comprehensive health and wellness programs
- Financial planning and retirement services
- Flexible work arrangements
- Volunteer days
Pay
The compensation range for this position is 165,000.00 USD - 200,000.00 USD. Our offer will be based on your relevant experience and work location.
Schedule
We offer flexible schedules to accommodate your needs.