GAF

Manager, Cyber Threat Operations

GAF

full-time

Posted on:

Location Type: Remote

Location: AlaskaArizonaUnited States

Visit company website

Explore more

AI Apply
Apply

Job Level

SeniorLead

Tech Stack

CloudCyber SecurityLinuxMacOSPython

About the role

  • Manage a global team of security analysts and engineers, fostering a culture of technical excellence, continuous learning, and collaboration. Provide regular coaching, performance feedback, and career development guidance.
  • Develop and execute the roadmap for cyber threat intelligence, hunting, incident response, and purple teaming services to align with business objectives and the evolving threat landscape.
  • Effectively communicate complex technical findings, incident statuses, and strategic recommendations to both technical and executive audiences.
  • Drive the continuous improvement of security operations playbooks, procedures, and team capabilities.
  • Act as a senior incident responder during major security events, providing technical guidance and hands-on support for containment, eradication, and recovery. Perform analysis on compromised systems. Create and test incident response plans.
  • Lead and participate in proactive, hypothesis-driven threat hunts across our enterprise networks and cloud environments using EDR, SIEM, and other security data sources. Develop novel hunting techniques and analytics.
  • Oversee the CTI lifecycle, from collection and analysis to dissemination. Personally analyze and contextualize intelligence from various sources to inform defensive actions and hunting missions.
  • Plan, coordinate, and participate in purple team exercises, working collaboratively to test, measure, and improve our security controls and detection capabilities.

Requirements

  • Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience
  • 8+ years of experience in cybersecurity with at least 5 years in a hands-on technical role focused on one or more of the following: Incident Response (IR), Threat Hunting, or Cyber Threat Intelligence (CTI).
  • 2+ years of experience in a leadership capacity.
  • Deep, hands-on experience with core security technologies such as SIEM, EDR, and Network Security Monitoring tools.
  • Proven experience leading the response to significant cybersecurity incidents (e.g., ransomware, APT intrusions).
  • Strong understanding of the modern threat landscape, attacker TTPs (Tactics, Techniques, and Procedures), and cybersecurity frameworks like MITRE ATT&CK and the Cyber Kill Chain.
  • Excellent communication skills, with the ability to translate complex technical concepts for non-technical stakeholders.
  • Master’s degree preferred
  • Advanced industry certifications such as GCIH, GCFA, GCFE, GREM, GNFA, OSCP, or similar.
  • Proficiency in scripting or programming for automation and analysis (e.g., Python, PowerShell, KQL).
  • Experience conducting digital forensics and memory analysis on Windows, Linux, and macOS systems.
  • Experience designing and executing formal purple team exercises.
  • Experience working in a large, global, and geographically distributed organization.
Benefits
  • We offer a wide range of health insurance options that include medical, dental, and vision for you and your family.
  • Our Family-Building benefits support the many different journeys to fertility and parenthood.
  • Our robust 401K plan includes an employer match contribution with your pre-tax and/or Roth contributions.
  • Other exciting programs and perks are available to help employees achieve work-life balance, including (but not limited to) a wellness program, free financial coaching, a referral program, and product rebates when purchased for an employee’s primary residence.
  • Professional growth and development are very important to us! We offer internal training programs and courses, as well as a generous tuition reimbursement program.
  • We're committed to fostering a culture that reflects our values to connect, empower, evolve, and inspire. We offer many opportunities for employees to connect with one another, including through our Employee Resource Groups who focus on education and allyship for all of our employees.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
Incident ResponseThreat HuntingCyber Threat IntelligenceSIEMEDRNetwork Security MonitoringScriptingDigital ForensicsMemory AnalysisPurple Team Exercises
Soft Skills
LeadershipCoachingCommunicationCollaborationPerformance FeedbackCareer Development GuidanceTechnical ExcellenceContinuous LearningStrategic RecommendationsProactive Problem Solving
Certifications
GCIHGCFAGCFEGREMGNFAOSCPBachelor's DegreeMaster's Degree