Lead Security Operations Engineer

Job Summary 

We are seeking a highly skilled and motivated Lead Security Operations Engineer to take charge of our security operations team. In this role, you will be responsible for designing, implementing, and maintaining security measures that safeguard our systems, networks, and data. As a key leader in our cybersecurity efforts, you will oversee threat detection, incident response, and the implementation of security best practices. This position requires a deep understanding of modern security tools and techniques, strong leadership abilities, and a proactive approach to protecting our organization. 

Key Responsibilities 

• Leadership & Strategy: 

• Lead the SecOps team in implementing and maintaining the organization’s security strategy. 

• Serve as the technical authority for security operations and incident response. 

• Develop and refine SecOps processes, workflows, and playbooks to align with industry best practices. 

• Demonstrated leadership skills with the ability to mentor and guide junior and mid-level engineers, fostering a culture of continuous learning and technical excellence within the team 

• Enhance department and organization reputation by delivering quality results and exploring opportunities to increase value and raise awareness of Information Security Program 

• Participate in knowledge sharing with other analysts/engineers and develop solutions efficiently. 

• Security Operations: 

• Oversee the monitoring, detection, and response to cybersecurity threats and incidents. 

• Manage and enhance the organization’s Security Information and Event Management (SIEM) platform and other monitoring tools. 

• Proactively identify vulnerabilities, misconfigurations, and threats across systems and networks. 

• Oversee the creation and dissemination of vulnerability reports to cross functional teams inclusive of the vulnerability, affected systems, risk severity, recommended remediation steps, and deadline expectations.   

• Ensure compliance with regulatory standards (e.g., GDPR, HIPAA, PCI-DSS). 

• Strong technical expertise with automating security operations through engineered solutions, driving efficiency while improving the overall security posture of complex, distributed systems. 

• Incident Response: 

• Lead incident response efforts during security breaches, coordinating with cross-functional teams. 

• Conduct post-incident analyses and drive remediation efforts to prevent recurrence. 

• Maintain and test the organization’s incident response and disaster recovery plans. 

• Security Infrastructure: 

• Implement and maintain endpoint detection and response (EDR), firewalls, intrusion detection/prevention systems, and other security technologies. 

• Collaborate with IT and DevOps teams to ensure secure configuration and deployment of infrastructure and applications. 

• Stay up-to-date on emerging threats and trends, ensuring the organization is protected against evolving risks. 

• Communication & Collaboration: 

• Cross-functionally partner with key stakeholders and other teams to enhance our overall security posture, align security efforts with business objectives and facilitate communication between technical and non-technical stakeholders. 

• Act as the primary liaison between the SecOps team and other departments, including IT, DevOps, R&D, and Compliance teams. 

• Collaborating with cross-functional teams to ensure vulnerabilities are addressed within defined timeframes.  

• Report on key security metrics and incidents to senior management and stakeholders. 

• Partner with vendors and service providers to enhance security posture. 

Qualifications 

Required: 

• Bachelor’s degree in Computer Science, Cybersecurity, or a related field (or equivalent experience). 

• 7+ years of experience in cybersecurity, with a focus on SecOps. 

• Proven leadership experience in managing and developing security operations teams. 

• Hands-on experience with SIEM, EDR, vulnerability management, and network security tools. 

• Deep knowledge of cybersecurity frameworks and standards (e.g., NIST CSF, ISO 27001). 

• Strong understanding of cloud security (e.g., AWS, Azure, GCP) and hybrid environments. 

• Excellent problem-solving, communication, and organizational skills. 

Preferred: 

• Relevant certifications, such as CISSP, CISM, CEH, GIAC, or OSCP. 

• Experience with threat intelligence platforms and automation tools (SOAR). 

• Familiarity with DevSecOps practices and CI/CD pipeline security. 
• Advanced scripting or programming skills (e.g., Python, PowerShell). 

Estimated Salary Range: $112,000 - $135,000

Actual salary will be determined based on factors including, but not limited to, skill set and level of experience. This salary range is a good faith estimate of base pay. Strata also provides discretionary variable pay programs based on role. In addition, Strata provides a comprehensive benefits package including retirement benefits, health and welfare benefits, paid time off, parental leave, life and accident insurance, and other voluntary and well-being benefits.