Sr. Manager, Detection Operations (US Remote Available)

Apply for this position Please mention DailyRemote when applying
Posted 9 days ago United States Salary undisclosed
Before you apply - make sure the job is legit.

Attempting to apply for jobs might take you off this site to a different website not owned by us. Any consequence as a result for attempting to apply for jobs is strictly at your own risk and we assume no liability.

Job Description

Role:The Senior Manager, Detection Operations reports to the Director of Detection and Monitoring Operations. The role is based in San Francisco, San Jose, McLean, VA, or Remote. In this role, you will be responsible for leading a team of high-performing detection engineers poised to build content for the proactive defense of Splunk. You will have a deep understanding of Information Security principles coupled with the expertise in developing and prioritizing detection content. We are a hardworking team who has fun, enjoys a good laugh but above all else thinks security first.Responsibilities:Lead day-to-day operations of the Splunk Detection Operations team to drive prioritization of content creation, develop robust processes to track intake and consistency, and mature the team to build detections beyond SplunkEngage with other teams to ensure detections are working as intendedIdentify and incorporate new data sources and their applicability to the detection of sophisticated adversariesLead efforts to ensure data sources are aligned with Splunk's Common Information Model (CIM)Develop intimate familiarity with the service offering to drive service improvement initiatives across the teamPartner with other security organizations to lead standards development across several multi-functional service areasContinue to champion the remediation of visibility and capability gaps and break down roadblocks standing in the way of a robust security postureUnderstand & manage development backlog to ensure a steady stream of activitiesProvide mentorship for willing and able candidates looking to dive into security content developmentCapture development metrics in direct support to executive-level briefings (daily, weekly, monthly)Ensure that all documents, workflows, and processes remain accurate and up-to-dateRequirements: At least 3 years managing a detection engineering, incident response, security engineering, or similar teamAdvanced Splunk Enterprise Security experienceAbility to build and interpret Splunk Processing Language (SPL) fluidlyDetailed understanding of the MITRE ATT Framework and/or the Cyber Kill ChainAdvanced understanding of attacks impacting a cloud native environmentYou can lead people to think critically by guiding them without doing the work for themYou possess a demonstrated ability to speak with people with varying knowledge of IT Security conceptsCapability to look at a process to find opportunities for cycle-time reductionAbility to multitask, prioritize and take-chargeAbility and desire to think outside of the box for creative solutions to problems with the moxie to follow-throughExcellent interpersonal skills and ability to see things through the customer's eyesTremendous attention to detailEligible to work in the United States without company sponsorship Thank you for your interest in Splunk!