Commercial Metals
IT Security Manager - Security Operations
Commercial Metals, Irving, Texas, United States, 75084
it's what's inside that counts
_______________________________
There's more to CMC than our products and the buildings, structures, and roads they go into. At CMC, it's the people inside our recycling centers, fabrication plants, manufacturing facilities, steel mills and offices that make us who we are as a company. Our success comes from finding, retaining, and supporting the highest quality talent by offering:
Day 1 Benefits Coverage with low cost Medical, Vision, Dental
Day 1 Paid-time Off and Vacation
4.5% Company Match 401(k) plan
$500 Annual Company-paid Lifestyle Benefit
Competitive Compensation and Bonuses
Company-paid Life and Disability Insurance
Employee Stock Purchase Plan
Training and Advancement Opportunities
Why This Job
CMC provides an excellent opportunity to learn the steel, construction reinforcement and ground stabilization industries and to grow in your career. Whether you will spend your day brainstorming in an office cubicle, operating a crane, running manufacturing equipment or troubleshooting technical obstacles, at CMC, you'll get the training and support from your team that you need to excel in your role and reach your full potential. What You'll Do
Lead and manage the SOC team, including security analysts and incident responders, ensuring 24/7 monitoring and rapid response to security incidents.
Develop and maintain incident response plans, playbooks, and escalation procedures.
Contribute to the deployment, configuration, and optimization of key security tools and platforms, including, SentinelOne for endpoint detection and response (EDR), Proofpoint Email Protection Platform, Cloudflare for web application firewall (WAF)
Contribute to the deployment, configuration, and optimization of key security tools and platforms, including: SIEM (e.g., Splunk, LogRhythm) for centralized log management and threat detection, Rapid7 for vulnerability management and threat intelligence
Collaborate with IT Infrastructure, DevOps, and Compliance teams to ensure security controls are integrated across infrastructure and applications
Monitor threat intelligence feeds and proactively adjust defenses to emerging threats
Conduct regular security assessments, audits, and tabletop exercises
Provide leadership in security incident investigations, root cause analysis, and post-incident reporting
Track and report on key performance indicators (KPIs) and metrics related to SOC effectiveness and threat landscape
Mentor and develop team members, fostering a culture of continuous improvement and learning
What You'll Need Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field
5+ years of experience in cybersecurity operations, with at least 2 years in a managerial or leadership role
Proven experience managing a Security Operations Center (SOC) or similar security operations function
Strong understanding of cybersecurity frameworks and methodologies such as NIST CSF, MITRE ATT&CK, ISO 27001, CIS Controls, and Zero Trust Architecture
SIEM platform (e.g., Rapid7, Splunk, LogRhythm, QRadar)
EDR solutions (e.g., SentinelOne, CrowdStrike)
Vulnerability management tools (e.g., Rapid7 InsightVM, Nexpose)
IAM platforms (e.g., OKTA, Azure AD)
Proofpoint Email Suite
Network security tools (e.g., Cloudflare, Check Point, Zscaler)
Experience with cloud security across AWS, Azure, or GCP environments
Familiarity with threat intelligence platforms, SOAR tools, and automated incident response workflows
Strong understanding of data privacy regulations (e.g., GDPR, CCPA, HIPAA) and compliance requirements
Demonstrated ability to lead and mentor technical teams, manage performance, and foster professional development
Excellent communication skills with the ability to translate complex technical issues into business-relevant language
Experience in budgeting, vendor management, and contract negotiations for security services and technologies
Ability to manage multiple priorities in a fast-paced environment and make sound decisions under pressure
Relevant certifications such as CISSP, CISM, GIAC, CEH, CCSP, or PMP are highly desirable
Your Education Bachelor's or Master's degree in Computer Science, Information Systems or other related field; or equivalent relevant experience
We are CMC, a Fortune 500 company at the leading edge of our industry. Our construction reinforcement and steel products have supported construction projects and structures around the world. The secret to our success? We've built our legacy by assembling a team of innovators and doers to tackle some of the most challenging construction reinforcement problems facing our world for more than 100 years - and we're just getting started. If you're ready to join a team working to make our industry more sustainable, support the bridges, roadways, buildings and infrastructure that connects our communities, and do meaningful work, you're ready to joinCMC. Apply today and start moving your career - and our world - forward. Let's build a better world! CMC is committed to providing equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, age, physical or mental disability, national origin, citizenship, military or veteran status, sexual orientation, gender identity and/or expression, genetic information, or other status protected by federal, state or local law. FromFortuneMagazine. 2025 Fortune Media IP Limited. All rights reserved. Used under license.
Why This Job
CMC provides an excellent opportunity to learn the steel, construction reinforcement and ground stabilization industries and to grow in your career. Whether you will spend your day brainstorming in an office cubicle, operating a crane, running manufacturing equipment or troubleshooting technical obstacles, at CMC, you'll get the training and support from your team that you need to excel in your role and reach your full potential. What You'll Do
Lead and manage the SOC team, including security analysts and incident responders, ensuring 24/7 monitoring and rapid response to security incidents.
Develop and maintain incident response plans, playbooks, and escalation procedures.
Contribute to the deployment, configuration, and optimization of key security tools and platforms, including, SentinelOne for endpoint detection and response (EDR), Proofpoint Email Protection Platform, Cloudflare for web application firewall (WAF)
Contribute to the deployment, configuration, and optimization of key security tools and platforms, including: SIEM (e.g., Splunk, LogRhythm) for centralized log management and threat detection, Rapid7 for vulnerability management and threat intelligence
Collaborate with IT Infrastructure, DevOps, and Compliance teams to ensure security controls are integrated across infrastructure and applications
Monitor threat intelligence feeds and proactively adjust defenses to emerging threats
Conduct regular security assessments, audits, and tabletop exercises
Provide leadership in security incident investigations, root cause analysis, and post-incident reporting
Track and report on key performance indicators (KPIs) and metrics related to SOC effectiveness and threat landscape
Mentor and develop team members, fostering a culture of continuous improvement and learning
What You'll Need Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field
5+ years of experience in cybersecurity operations, with at least 2 years in a managerial or leadership role
Proven experience managing a Security Operations Center (SOC) or similar security operations function
Strong understanding of cybersecurity frameworks and methodologies such as NIST CSF, MITRE ATT&CK, ISO 27001, CIS Controls, and Zero Trust Architecture
SIEM platform (e.g., Rapid7, Splunk, LogRhythm, QRadar)
EDR solutions (e.g., SentinelOne, CrowdStrike)
Vulnerability management tools (e.g., Rapid7 InsightVM, Nexpose)
IAM platforms (e.g., OKTA, Azure AD)
Proofpoint Email Suite
Network security tools (e.g., Cloudflare, Check Point, Zscaler)
Experience with cloud security across AWS, Azure, or GCP environments
Familiarity with threat intelligence platforms, SOAR tools, and automated incident response workflows
Strong understanding of data privacy regulations (e.g., GDPR, CCPA, HIPAA) and compliance requirements
Demonstrated ability to lead and mentor technical teams, manage performance, and foster professional development
Excellent communication skills with the ability to translate complex technical issues into business-relevant language
Experience in budgeting, vendor management, and contract negotiations for security services and technologies
Ability to manage multiple priorities in a fast-paced environment and make sound decisions under pressure
Relevant certifications such as CISSP, CISM, GIAC, CEH, CCSP, or PMP are highly desirable
Your Education Bachelor's or Master's degree in Computer Science, Information Systems or other related field; or equivalent relevant experience
We are CMC, a Fortune 500 company at the leading edge of our industry. Our construction reinforcement and steel products have supported construction projects and structures around the world. The secret to our success? We've built our legacy by assembling a team of innovators and doers to tackle some of the most challenging construction reinforcement problems facing our world for more than 100 years - and we're just getting started. If you're ready to join a team working to make our industry more sustainable, support the bridges, roadways, buildings and infrastructure that connects our communities, and do meaningful work, you're ready to joinCMC. Apply today and start moving your career - and our world - forward. Let's build a better world! CMC is committed to providing equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, age, physical or mental disability, national origin, citizenship, military or veteran status, sexual orientation, gender identity and/or expression, genetic information, or other status protected by federal, state or local law. FromFortuneMagazine. 2025 Fortune Media IP Limited. All rights reserved. Used under license.