Job Details

Overview
We are seeking an experienced Security Operations Manager to lead and mature our security operations program across technology, engineering, and business functions. This role is ideal for a hands-on security leader who brings the technical depth of an Information Security Manager while also understanding how security enables the business.
You will own day-to-day security operations while partnering closely with IT, Engineering, Compliance, and business stakeholders to design scalable, practical, and risk-based security solutions. The ideal candidate understands security from all angles - operations, engineering, and administration - and is highly proficient in Microsoft O365 environments and cloud infrastructure, particularly AWS.

Key Responsibilities
Security Operations & Leadership

• Lead and manage security operations, including incident response, vulnerability management, access control, and security monitoring.
• Build and mature operational security processes, runbooks, and metrics to support a growing organization.
• Serve as escalation point for security incidents, coordinating response activities and post-incident reviews.
• Develop and enforce security policies, standards, and procedures aligned with business objectives.

• Partner with engineering and infrastructure teams to design and implement secure architectures across cloud and enterprise environments.
• Oversee security tooling and integrations (SIEM, endpoint protection, identity platforms, etc.).
• Drive vulnerability remediation efforts across infrastructure and applications.
• Ensure secure configuration and continuous improvement of cloud environments, particularly on Amazon Web Services.

• Act as a subject matter expert for Microsoft O365 security capabilities, including identity, access, email security, and collaboration platforms.
• Manage and optimize conditional access, MFA, data protection, and security policies.
• Collaborate with IT on user lifecycle management, permissions, and administrative controls within the Microsoft ecosystem.

• Translate technical security risks into business impact for leadership and stakeholders.
• Partner with Compliance, Legal, and Risk teams to support audits, assessments, and regulatory requirements.
• Balance security controls with operational efficiency, ensuring solutions are practical, scalable, and business-aligned.
• Help define security roadmaps, budgets, and strategic initiatives.

• Mentor and guide security and IT staff on best practices.
• Work cross-functionally with Product, Engineering, Operations, and Executive teams.
• Provide clear reporting on security posture, risks, and improvements to leadership.

• 5+ years of progressive experience in Information Security, including hands-on operational leadership.
• Proven experience managing security operations across enterprise and cloud environments.
• Deep practical knowledge of:
  • Microsoft O365 security and administration
  • AWS cloud security architecture and controls
  • Identity and access management
  • Incident response and vulnerability management
• Strong understanding of security engineering concepts (network security, endpoint security, cloud security, logging/monitoring).
• Experience building security programs that support business objectives.
• Ability to communicate complex technical topics to non-technical stakeholders.
• Demonstrated experience balancing security, usability, and operational needs.

• Prior experience as an Information Security Manager or Security Operations Lead.
• Familiarity with compliance frameworks (ISO 27001, SOC 2, NIST, etc.).
• Experience implementing or managing SIEM, EDR, and cloud security tooling.
• Security certifications (CISSP, CISM, CCSP, or similar).
• Experience leading small to mid-sized security teams.

• Security operations run smoothly with clear processes and measurable outcomes.
• Cloud and O365 environments are well-secured, monitored, and continuously improved.
• Incidents are handled efficiently with minimal business disruption.
• Stakeholders view security as a trusted business partner - not a blocker.
• The organization's overall security maturity steadily increases under your leadership.