CMC Metals LLC
IT Security Manager - Security Operations
CMC Metals LLC, Irving, Texas, United States, 75084
IT Security Manager - Security Operations
CMC provides an excellent opportunity to learn the steel, construction reinforcement and ground stabilization industries and to grow in your career. Whether you will spend your day brainstorming in an office cubicle, operating a crane, running manufacturing equipment or troubleshooting technical obstacles, at CMC, you'll get the training and support from your team that you need to excel in your role and reach your full potential. Lead and manage the SOC team, including security analysts and incident responders, ensuring 24/7 monitoring and rapid response to security incidents. Develop and maintain incident response plans, playbooks, and escalation procedures. Contribute to the deployment, configuration, and optimization of key security tools and platforms, including SentinelOne for endpoint detection and response (EDR), Proofpoint Email Protection Platform, Cloudflare for web application firewall (WAF) and SIEM (e.g., Splunk, LogRhythm) for centralized log management and threat detection, Rapid7 for vulnerability management and threat intelligence. Collaborate with IT Infrastructure, DevOps, and Compliance teams to ensure security controls are integrated across infrastructure and applications. Monitor threat intelligence feeds and proactively adjust defenses to emerging threats. Conduct regular security assessments, audits, and tabletop exercises. Provide leadership in security incident investigations, root cause analysis, and post-incident reporting. Track and report on key performance indicators (KPIs) and metrics related to SOC effectiveness and threat landscape. Mentor and develop team members, fostering a culture of continuous improvement and learning. Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. 5+ years of experience in cybersecurity operations, with at least 2 years in a managerial or leadership role. Proven experience managing a Security Operations Center (SOC) or similar security operations function. Strong understanding of cybersecurity frameworks and methodologies such as NIST CSF, MITRE ATT&CK, ISO 27001, CIS Controls, and Zero Trust Architecture. SIEM platform (e.g., Rapid7, Splunk, LogRhythm, QRadar). EDR solutions (e.g., SentinelOne, CrowdStrike). Vulnerability management tools (e.g., Rapid7 InsightVM, Nexpose). IAM platforms (e.g., OKTA, Azure AD). Proofpoint Email Suite. Network security tools (e.g., Cloudflare, Check Point, Zscaler). Experience with cloud security across AWS, Azure, or GCP environments. Familiarity with threat intelligence platforms, SOAR tools, and automated incident response workflows. Strong understanding of data privacy regulations (e.g., GDPR, CCPA, HIPAA) and compliance requirements. Demonstrated ability to lead and mentor technical teams, manage performance, and foster professional development. Excellent communication skills with the ability to translate complex technical issues into business-relevant language. Experience in budgeting, vendor management, and contract negotiations for security services and technologies. Ability to manage multiple priorities in a fast-paced environment and make sound decisions under pressure. Relevant certifications such as CISSP, CISM, GIAC, CEH, CCSP, or PMP are highly desirable.
CMC provides an excellent opportunity to learn the steel, construction reinforcement and ground stabilization industries and to grow in your career. Whether you will spend your day brainstorming in an office cubicle, operating a crane, running manufacturing equipment or troubleshooting technical obstacles, at CMC, you'll get the training and support from your team that you need to excel in your role and reach your full potential. Lead and manage the SOC team, including security analysts and incident responders, ensuring 24/7 monitoring and rapid response to security incidents. Develop and maintain incident response plans, playbooks, and escalation procedures. Contribute to the deployment, configuration, and optimization of key security tools and platforms, including SentinelOne for endpoint detection and response (EDR), Proofpoint Email Protection Platform, Cloudflare for web application firewall (WAF) and SIEM (e.g., Splunk, LogRhythm) for centralized log management and threat detection, Rapid7 for vulnerability management and threat intelligence. Collaborate with IT Infrastructure, DevOps, and Compliance teams to ensure security controls are integrated across infrastructure and applications. Monitor threat intelligence feeds and proactively adjust defenses to emerging threats. Conduct regular security assessments, audits, and tabletop exercises. Provide leadership in security incident investigations, root cause analysis, and post-incident reporting. Track and report on key performance indicators (KPIs) and metrics related to SOC effectiveness and threat landscape. Mentor and develop team members, fostering a culture of continuous improvement and learning. Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. 5+ years of experience in cybersecurity operations, with at least 2 years in a managerial or leadership role. Proven experience managing a Security Operations Center (SOC) or similar security operations function. Strong understanding of cybersecurity frameworks and methodologies such as NIST CSF, MITRE ATT&CK, ISO 27001, CIS Controls, and Zero Trust Architecture. SIEM platform (e.g., Rapid7, Splunk, LogRhythm, QRadar). EDR solutions (e.g., SentinelOne, CrowdStrike). Vulnerability management tools (e.g., Rapid7 InsightVM, Nexpose). IAM platforms (e.g., OKTA, Azure AD). Proofpoint Email Suite. Network security tools (e.g., Cloudflare, Check Point, Zscaler). Experience with cloud security across AWS, Azure, or GCP environments. Familiarity with threat intelligence platforms, SOAR tools, and automated incident response workflows. Strong understanding of data privacy regulations (e.g., GDPR, CCPA, HIPAA) and compliance requirements. Demonstrated ability to lead and mentor technical teams, manage performance, and foster professional development. Excellent communication skills with the ability to translate complex technical issues into business-relevant language. Experience in budgeting, vendor management, and contract negotiations for security services and technologies. Ability to manage multiple priorities in a fast-paced environment and make sound decisions under pressure. Relevant certifications such as CISSP, CISM, GIAC, CEH, CCSP, or PMP are highly desirable.