Senior SOC and IR Manager

Emploi pas sur LinkedIn

🕒 il y a 1 mois

🦌 Connecticut – Distant

🦌 Connecticut – Remote

⏰ Temps Plein

🟠 Senior

👔 Manager

Postuler Maintenant

Trouver des Emplois à Distance Similaires

Recevoir des emails pour des emplois à distance

📊 Vérifiez votre score de CV pour ce poste

Améliorez vos chances d'obtenir un entretien en vérifiant votre score de CV avant de postuler.

Télécharger le CV

Crane Cryogenics

Site WebLinkedInTous les Emplois

1001 - 5000 employés

Fondée en 1855

⚡ Énergie

🔧 Matériel

🤝 B2B

Energy • Hardware • B2B

Crane Cryogenics est une division de Crane ChemPharma & Energy spécialisée dans la conception, la fabrication et le service d'équipements cryogéniques et de systèmes de tuyauterie isolés sous vide pour des applications industrielles. Leur portefeuille de produits comprend des tuyaux de transfert isolés sous vide, des baïonnettes cryogéniques, des séparateurs de phase à pression ajustable, des dispositifs de ventilation, ainsi que des solutions complètes de tuyauterie cryogénique utilisées dans les secteurs de l'hydrogène, du GNL, des sciences de la vie et dans d'autres industries à services sévères. L'entreprise se concentre sur le matériel d'ingénierie et l'approvisionnement B2B pour les clients dans les domaines de l'énergie, de la chimie et de l'industrie, offrant installation, support technique et solutions cryogéniques personnalisées.

Description

• Lead and continuously improve the SOC and incident response program, including operating model, standard work, and outcomes. • Serve as incident commander for high-severity investigations, coordinating cross-functional response and driving clear decisions, timelines, and communications. • Lead and develop a distributed team of analysts/engineers; build a strong culture of learning, quality, and operational excellence. • Own detection and response capability across endpoint, network, cloud, SaaS, and identity telemetry; improve signal quality and reduce noise through tuning and engineering. • Define, maintain, and test playbooks/runbooks and escalation paths, drive readiness through exercises and continuous improvement. • Drive automation and orchestration (SOAR) to streamline triage and response, integrate systems, and reduce manual effort. • Guide thoughtful adoption of AI-assisted workflows to accelerate investigations and reporting, with appropriate validation, governance, and analyst enablement. • Manage SOC tooling, service partnerships, and performance; ensure clear expectations, measurable SLAs, and continuous value delivery. • Develop and maintain program metrics, KPIs, and executive-ready reporting; track effectiveness and drive improvements in speed, quality, and consistency. • Partner with Legal, Privacy, HR, GRC, Risk Management, and IT to align response processes, documentation, and communication practices. • Evaluate, plan, and implement security operations improvements and supporting solutions; keep practices aligned with evolving standards and best practices.

🎯 Exigences

• 7+ years relevant professional experience in security operations and incident response • 3+ years managing or leading others in a security operations/incident response context • Degree in a related field or equivalent practical experience preferred • Advanced professional security certifications (e.g., CISSP, CISM, GIAC or similar) preferred • Experience managing, leading, and developing remote/distributed teams with diverse backgrounds and skill levels • Demonstrated success designing and running SOC and incident response processes across traditional enterprise environments and modern cloud/SaaS services. • Strong, current knowledge of security operations tradecraft: alert triage, investigation, containment/recovery coordination, post-incident reviews, and continuous improvement • Expertise with security telemetry and analytics: SIEM engineering, log normalization, detection content development, alert tuning, and correlation across endpoint/network/cloud/identity sources • Working knowledge of security automation/orchestration (SOAR) and integration patterns (APIs, webhooks, scripting) to reduce toil and improve response consistency • Strong fundamentals in Windows and Linux administration, networking, and modern enterprise services • Solid understanding of identity and access controls (SSO, MFA, conditional access concepts) and the role of identity telemetry in detection and response • Ability to lead high-severity investigations with calm, clarity, and strong judgment; comfortable serving as incident commander and coordinating across teams • Excellent written and verbal communication skills, including executive-ready status updates, post-incident reporting, and roadmap/strategy presentations • Familiarity with relevant privacy, regulatory, and eDiscovery considerations for incident response • Strong project leadership skills with a track record of delivering measurable improvements • Flexibility to support incident response needs outside of standard business hours, as required • Ability to travel both domestically and internationally (est. no more than 10%)

🏖️ Avantages

• Comprehensive health • Wellness incentives • Assistance with retirement savings • Paid time off • Paid holidays • Tuition reimbursement • Performance-based bonus programs