Senior SOC and IR Manager

Vaga não está no LinkedIn

🕒 Maio 7

🦌 Connecticut – Remoto

🦌 Connecticut – Remote

⏰ Tempo Integral

🟠 Sênior

👔 Gerente

Candidatar-se

Encontrar Vagas Remotas Similares

Receber Emails de Vagas Remotas

📊 Verifique sua pontuação de currículo para esta vaga

Melhore suas chances de conseguir uma entrevista verificando sua pontuação de currículo antes de se candidatar.

Enviar Currículo

Crane Cryogenics

SiteLinkedInTodas as Vagas

1001 - 5000 funcionários

Fundada em 1855

⚡ Energia

🔧 Hardware

🤝 B2B

Energy • Hardware • B2B

A Crane Cryogenics é uma divisão da Crane ChemPharma & Energy que projeta, fabrica e faz a manutenção de equipamentos criogênicos e sistemas de tubulação com isolamento a vácuo para aplicações industriais. Seu portfólio de produtos inclui mangueiras de transferência isoladas a vácuo, baionetas criogênicas, separadores de fase de pressão ajustável, dispositivos de ventilação e soluções completas de tubulação criogênica utilizadas em hidrogênio, GNL, ciências da vida e outras indústrias de serviço severo. A empresa foca na engenharia de hardware e no fornecimento B2B para clientes dos setores de energia, químico e industrial, oferecendo instalação, suporte técnico e soluções criogênicas sob medida.

Descrição

• Lead and continuously improve the SOC and incident response program, including operating model, standard work, and outcomes. • Serve as incident commander for high-severity investigations, coordinating cross-functional response and driving clear decisions, timelines, and communications. • Lead and develop a distributed team of analysts/engineers; build a strong culture of learning, quality, and operational excellence. • Own detection and response capability across endpoint, network, cloud, SaaS, and identity telemetry; improve signal quality and reduce noise through tuning and engineering. • Define, maintain, and test playbooks/runbooks and escalation paths, drive readiness through exercises and continuous improvement. • Drive automation and orchestration (SOAR) to streamline triage and response, integrate systems, and reduce manual effort. • Guide thoughtful adoption of AI-assisted workflows to accelerate investigations and reporting, with appropriate validation, governance, and analyst enablement. • Manage SOC tooling, service partnerships, and performance; ensure clear expectations, measurable SLAs, and continuous value delivery. • Develop and maintain program metrics, KPIs, and executive-ready reporting; track effectiveness and drive improvements in speed, quality, and consistency. • Partner with Legal, Privacy, HR, GRC, Risk Management, and IT to align response processes, documentation, and communication practices. • Evaluate, plan, and implement security operations improvements and supporting solutions; keep practices aligned with evolving standards and best practices.

🎯 Requisitos

• 7+ years relevant professional experience in security operations and incident response • 3+ years managing or leading others in a security operations/incident response context • Degree in a related field or equivalent practical experience preferred • Advanced professional security certifications (e.g., CISSP, CISM, GIAC or similar) preferred • Experience managing, leading, and developing remote/distributed teams with diverse backgrounds and skill levels • Demonstrated success designing and running SOC and incident response processes across traditional enterprise environments and modern cloud/SaaS services. • Strong, current knowledge of security operations tradecraft: alert triage, investigation, containment/recovery coordination, post-incident reviews, and continuous improvement • Expertise with security telemetry and analytics: SIEM engineering, log normalization, detection content development, alert tuning, and correlation across endpoint/network/cloud/identity sources • Working knowledge of security automation/orchestration (SOAR) and integration patterns (APIs, webhooks, scripting) to reduce toil and improve response consistency • Strong fundamentals in Windows and Linux administration, networking, and modern enterprise services • Solid understanding of identity and access controls (SSO, MFA, conditional access concepts) and the role of identity telemetry in detection and response • Ability to lead high-severity investigations with calm, clarity, and strong judgment; comfortable serving as incident commander and coordinating across teams • Excellent written and verbal communication skills, including executive-ready status updates, post-incident reporting, and roadmap/strategy presentations • Familiarity with relevant privacy, regulatory, and eDiscovery considerations for incident response • Strong project leadership skills with a track record of delivering measurable improvements • Flexibility to support incident response needs outside of standard business hours, as required • Ability to travel both domestically and internationally (est. no more than 10%)

🏖️ Benefícios

• Comprehensive health • Wellness incentives • Assistance with retirement savings • Paid time off • Paid holidays • Tuition reimbursement • Performance-based bonus programs