Director leading security operations strategy and overseeing investigations at Ford Motor Company. Responsible for global investigations, crisis management, and team leadership.
About the role
- Senior Security Operations Specialist protecting Relay's digital banking platform from security threats. Implementing advanced threat detection and incident response protocols for optimal business security.
Responsibilities
- Monitor, triage, and investigate high-severity security alerts across cloud infrastructure, identity, SaaS, endpoints, and production systems
- Validate threats versus noise and determine severity and impact
- Execute containment actions and coordinate response across teams
- Act as Incident Commander or deputy during security incidents
- Build and maintain investigation runbooks and response playbooks
- Work horizontally across Risk, AppSec, Engineering, Product, and business teams to ensure security findings lead to meaningful improvements in systems, practices, and outcomes.
- Contribute to SOAR automation and alert enrichment
- Produce high-quality incident documentation and post-incident remediation
- Design and implement advanced threat detection logic using SIEM/XDR telemetry.
- Perform threat hunting engagements to proactively detect stealthy adversaries.
- Ensure security compliance and regulatory alignment: Partner with Compliance, Security, and Risk teams to implement and enforce security controls, standards, and policies across systems and services.
Requirements
- 5+ years in security operations, incident response, or related cybersecurity roles.
- Strong cloud security and identity security experience (AWS preferred).
- Comfortable making structured, high-impact decisions during active incidents.
- Deep knowledge of common attack techniques, adversary TTPs (MITRE ATT&CK, etc.), and fraud/ATO patterns.
- Strong written and verbal communication skills — able to explain complex technical issues to both technical and business audiences.
- Ownership mindset with a bias toward action and continuous improvement.
- Skilled in building detection logic and workflows for cloud-native environments and security tooling.
- Experience with SOAR platforms and building/optimizing automated response playbooks.
- Ability to communicate complex security issues clearly to both technical and business stakeholders.
Benefits
- Compensation follows impact
- Ongoing conversation with recruiters about compensation
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Cloud Security Engineer at Artemys designing and maintaining secure Azure infrastructures, overseeing security monitoring and incident management.
Lead global Cyber Detect and Respond team at Assa Abloy, ensuring timely incident response and security compliance. Oversee operations while collaborating across IT and business functions for effective threat management.
Lead Cybersecurity Analyst responsible for technical leadership of a 24x7 SOC team at AT&T. Drive operational standards, incident response, and continuous improvement initiatives.
Security Engineer safeguarding AWS environments for Genesys Cloud mission. Handling advanced threats and collaborating with SecDev, PenTest, DevOps, and SRE teams.
Senior Security Operations Center Analyst protecting computer systems and data through investigation and incident response. Collaborating with IT leaders and mentoring junior analysts in security operations.
Security Operations Engineer creating automations and detection strategies for security infrastructure. Collaborating across teams to enhance security measures and protect organizational assets.
Solution Sales Manager driving revenue growth in Austria and Switzerland's financial sector. Collaborating with teams and managing sales cycles for ServiceNow and Tanium - related services.
Lead SOC Analyst responsible for monitoring and controlling OCLC services. Providing leadership and mentorship while ensuring service delivery and incident management in a hybrid work environment.
Technical Writer supporting Cyber Security Operations Center, documenting processes and workflows for incident response. Collaborating with analysts and engineering teams to create actionable documentation.