← Back to all jobs
F

Cybersecurity Manager, Security Operations Team

Froedtert & MCW

11h ago

0$102k - $175kManagementMenomonee Falls, WI, USjobspy_indeed
remoteindeed

Job Description

Discover. Achieve. Succeed. \#BeHere Location: US:WI:MENOMONEE FALLS at our WOODLAND PRIME 400 facility. This job is REMOTE. FTE: 1\.00 Standard Hours: 40\.00 Shift: Shift 1 Job Summary: The SecOps Manager is primarily responsible for the day\-to\-day operations of the Security Operations Center and team, including threat detection, incident response, digital forensics, and data protection across the health system's clinical, financial, and administrative environments, in compliance with the organization's security policies and procedures, regulations, and law. Other duties as assigned. Responsibilities : Creates a SecOps program that supports the CISO’s overall Cybersecurity Program and plans, continually assesses and matures practices and team skills to keep the organization secure. Job Standard 2: Manages, trains, retains, and supports the Security Operations (SecOps) Team. Job Standard 3: Manages the CyberSecurity Operations Center (CSOC) function, overseeing 24x7 monitoring, triage, and escalation of security events across the environment. Job Standard 4: Directs incident response activities, including containment, eradication, recovery, and post\-incident review, coordinating with the CISO/Deputy CISO on high\-severity events. Job Standard 5: Oversees digital forensics and investigations, including evidence collection, chain of custody, and use of forensic tooling to support HR, legal, and law enforcement inquiries. Job Standard 6: Manages proactive threat hunting activities to identify adversary behavior not surfaced by automated alerting. Job Standard 7: Administers and optimizes the SIEM platform, ensuring log source coverage, use\-case tuning, and alert fidelity. Job Standard 8: Oversees data loss prevention (DLP) tooling to prevent unauthorized exfiltration of patient, employee, and business data. Job Standard 9: Manages email security tooling to defend against phishing, business email compromise, and malicious attachments/links. Job Standard 10: Oversees CASB and secure web gateway platforms to enforce safe cloud and web usage across managed and unmanaged devices. Job Standard 11: Evaluates and integrates security tooling where applicable to extend or consolidate the SecOps tool stack. Job Standard 12: Develops and maintains SecOps playbooks, runbooks, and standard operating procedures. Job Standard 13: Monitors compliance with security policies and procedures among employees, contractors, alliances, and other third parties, and takes corrective action. Job Standard 14: Performs security risk analysis and periodic activity reviews to identify gaps in detection and response coverage. Job Standard 15: Supports disaster recovery and business continuity testing as it relates to security monitoring and incident response readiness. Job Standard 16: Serves as an internal SecOps consultant to the organization, advising on emerging threats and detection strategy. Job Standard 17: Monitors advancements in security o