Apply on Employer Site

VB Spine · 1 day ago

Senior Manager, Security Operations

United States

Full-time

Remote

Senior Level, Lead/Staff

8+ years exp

VB Spine is a mission-focused company that supports surgeons during life-changing spinal procedures. The Senior Manager, Security Operations will lead the establishment and continuous improvement of the global security operations capability, ensuring a resilient and compliant security environment that protects the company's intellectual property and regulatory posture.

E-CommerceHospitalManufacturingMedical Device

Responsibilities

Lead VB Spine’s Security Operations function, including both in-house analysts and outsourced MSSP partners, ensuring high-quality, 24×7 threat detection and response across all regions and time zones

Serve as the primary interface with MSSPs responsible for monitoring and triage, establishing clear SLAs, KPIs, and governance mechanisms for incident handling

Conduct regular service reviews with MSSPs and internal teams to assess detection quality, response times, and opportunities for improvement

Manage staffing plans and coverage models to ensure continuous SOC operations and escalation readiness

Implement proactive monitoring and alert tuning to reduce false positives and improve mean time to detect (MTTD) and mean time to respond (MTTR)

Maintain NIST CSF, ISO 27001 compliance side

Own VB Spine’s incident response lifecycle, including war-room activation, containment, eradication, and post-incident reviews

Develop and maintain IR runbooks, escalation workflows, and communication protocols aligned with regulatory and business continuity requirements

Coordinate with Infrastructure, Security Engineering, and GRC teams to ensure rapid recovery and evidence collection for audits and investigations

Oversee tabletop exercises and simulation drills to validate readiness and refine processes

Manage Microsoft Sentinel and Defender XDR environments, ensuring comprehensive telemetry ingestion from endpoints, identity, network, and cloud sources

Partner with Security Engineering to optimize detection rules, playbooks, and automation for efficient triage and response

Ensure MSSP and internal analysts have appropriate access and visibility into VB Spine’s security stack

Develop a multi-year roadmap for SOC maturity, including automation, threat hunting, bug bounty and advanced analytics

Identify and implement opportunities for orchestration and AI-driven detection to improve efficiency and reduce dwell time

Foster a culture of operational excellence and continuous improvement across the SecOps team

Manage and mentor a global team of security analysts and coordinate with MSSP resources, ensuring skill development and career growth

Drive collaboration across Cybersecurity, Infrastructure, and Business Applications to deliver an integrated security posture

Build and maintain strong partnerships with MSSPs while ensuring seamless integration with VB Spine’s internal security processes

Qualification

Security Operations LeadershipIncident Response ManagementMicrosoft SentinelDefender XDRNIST CSF ComplianceISO 27001 ComplianceSIEM/XDR PlatformsAutomation/Orchestration ToolsLeadership SkillsCISSP CertificationCISM CertificationITIL CertificationGIAC CertificationsAnalytical SkillsCommunication SkillsProblem-Solving Skills

Required

Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field preferred; equivalent professional experience will be considered

Minimum 8+ years of progressive cybersecurity experience, including 3+ years in security operations leadership or SOC management roles

Proven experience building or managing a Security Operations Center (SOC) in a mid-size to large enterprise

Strong knowledge of SIEM and XDR technologies (Microsoft Sentinel, Defender XDR) and global monitoring models (follow-the-sun, MSSP partnerships)

Demonstrated expertise in incident response frameworks, escalation workflows, and regulatory evidence collection

Experience managing hybrid delivery models with a mix of internal analysts and outsourced MSSPs, including vendor governance and SLA enforcement

Exceptional leadership, communication, and stakeholder management skills

Ability to influence, motivate, and build trust across diverse global teams

Ability to work in a fast-paced environment and manage multiple priorities

Strong analytical, problem-solving, and decision-making skills

Preferred

Certifications are preferred but not required. Relevant examples include: CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager) for leadership credibility

ITIL Foundation or higher for process alignment

GIAC certifications (e.g., GCIH, GCFA) for incident response and forensic expertise

Hands-on experience with SIEM/XDR platforms (e.g., Microsoft Sentinel, Defender XDR) can substitute for platform certifications

Familiarity with automation/orchestration tools (SOAR) and threat intelligence platforms through training or direct operational experience

Leadership and operational excellence training (e.g., HDI, COBIT) preferred but not required if demonstrated through experience

Experience in regulated industries (medical device, life sciences, or healthcare) is a plus