Requirements
- 7–9 years of experience in cybersecurity operations, security engineering, or senior SOC/IR roles
- Hands-on MDR experience (alert triage, escalation workflows, MSSP management)
- Deep expertise with CrowdStrike Falcon (EDR, detection tuning, SIEM/LogScale)
- Endpoint security at scale (macOS with Jamf, Windows with Intune)
- Proven incident response leadership (led incidents end-to-end)
- Cloud security experience in AWS and either GCP or Azure (IAM, CloudTrail, GuardDuty, secrets management)
- Experience leading enterprise security platform evaluations and POCs
- Familiarity with SASE, CASB, or SSE architectures
- Active daily use of AI and automation (100% internal AI adoption; required)
- Experience in private equity, holding company, or multi-entity environments preferred
Nice to Have
- Palo Alto Networks experience (Cortex XDR, Prisma Access, Prisma Cloud); PCNSE preferred
- Jamf Protect and Jamf Connect at scale
- Continuous pentesting platforms (Pentera, NodeZero, Horizon3)
- DLP tooling (policy design, data classification, endpoint/cloud enforcement)
- MITRE ATT&CK expertise (detection mapping, threat modeling, tabletop exercises)
- CIS benchmark implementation and enterprise-scale hardening
Benefits
- Healthcare benefits
- 401(k) plan with an employer match
- Short-term and long-term disability coverage
- Life insurance
- Paid time off
- Parental leave
- Paid holidays
Work Arrangement
On-site
Team
Team size: 1400. Structure: holding company and its portfolio of businesses
Additional Information
- Any personal data collected during the application process will be treated with the utmost confidentiality and privacy.
