Strata Decision Technology
Security Operations Manager
Strata Decision Technology, Chicago, Illinois, United States, 60290
How You’ll Make an Impact
As a Security Operations Manager, you will provide
technically adept
and
leadership‑driven
oversight to our security operations function in a highly regulated healthcare environment. This role is both strategic and hands‑on. You will balance the need to be directly involved in the creation of SOPs around threat detection, incident response, tooling optimization, and managing a team of Security Engineers. Strata will require the alignment of Security Operations with strict regulatory and compliance requirements such as HITRUST, ISO 27001, SOC 2, and SOX.
Technical Operations & Incident Response
Lead day‑to‑day security operations including monitoring, threat detection, triage, investigation, and incident response.
Operate and tune security platforms such as SIEM, EDR, vulnerability management, and threat intelligence tools.
Leverage AI and automation tooling to streamline workflows, improve detection fidelity, and reduce manual effort.
Act as an escalation point for complex incidents, root‑cause investigations, and cross‑team coordination.
Playbook & Process Development
Develop and maintain Standard Operating Procedures (SOPs) and incident response playbooks tailored to healthcare‑specific threat vectors and compliance obligations.
Automate repeatable tasks through SOAR platforms, scripting, and AI‑enhanced processes.
Iterate on processes and procedures already in place to be more efficient and repeatable.
Ensure alignment of operational practices with HITRUST CSF, ISO 27001, SOC 2 Type II, and SOX ITGC controls.
Team Development & Leadership
Manage and mentor a security operations team to facilitate building deeper expertise in cybersecurity.
Create a learning‑focused culture that encourages knowledge sharing, experimentation, and continuous improvement.
Foster risk‑aware decision‑making, enabling the team to act confidently with limited oversight using standardized risk frameworks.
Governance & Risk Alignment
Support security‑related audits, evidence collection, and control mapping.
Embed security operations processes into broader risk management and governance activities, contributing to HITRUST certification, ISO audits, and SOC/SOX readiness.
Cross‑Functional Engagement
Collaborate with IT, DevOps, Infrastructure, and R&D Engineering teams to secure critical infrastructure, applications, and workflows.
Advocate for security as a business‑enableor by balancing regulatory needs, business objectives, and technical feasibility.
Provide regular operational metrics and risk insights to leadership and stakeholders.
What We’re Looking For
5+ years of experience in security operations, blue‑teaming, or incident response roles.
2+ years in a leadership or supervisory capacity.
Hands‑on expertise with security platforms: SIEM, EDR/XDR, threat intel, SOAR.
Scripting/automation: Python, PowerShell, Bash.
Log analysis, detection engineering, threat hunting.
Experience integrating operations with compliance standards HITRUST, ISO 27001, SOC 2, and SOX.
Strong understanding of MITRE ATT&CK, NIST 800‑53/800‑61, and CIS Controls.
Experience in regulated industries, especially healthcare and PHI environments.
Demonstrated success creating SOPs, playbooks, and team workflows.
Certifications: GCIH, GCFA, CISSP, CISM.
Pragmatic and outcome‑oriented; align security with business impact.
Proven mentor and leader passionate for developing others.
Strong communicator with both technical teams and executive stakeholders.
Curious, analytical, proactive exploring AI and automation to elevate security outcomes.
Estimated Salary Range $112,000 – $140,000
How We Work The preferred location for this role is in Chicago, IL or St. Louis, MO. We value our people spending time together and have campuses hosting in‑person events located in both cities. We are truly a hybrid environment with all team members experiencing the flexibility to work from home.
Career Development Research shows that women and underrepresented groups tend to apply to jobs only when they check every box on a job posting. If you’re currently reading this and hesitating to click “Apply” for that reason, we encourage you to go for it! A true passion and excitement for making an impact is just as important as work experience.
Benefits & Culture Strata provides a comprehensive benefits package including retirement benefits, health and welfare benefits, paid time off, parental leave, life and accident insurance, and other voluntary and well‑being benefits.
Core Values
We connect with positive intent.
We are helpful.
We own it.
We get better every day.
We are humble.
#J-18808-Ljbffr
technically adept
and
leadership‑driven
oversight to our security operations function in a highly regulated healthcare environment. This role is both strategic and hands‑on. You will balance the need to be directly involved in the creation of SOPs around threat detection, incident response, tooling optimization, and managing a team of Security Engineers. Strata will require the alignment of Security Operations with strict regulatory and compliance requirements such as HITRUST, ISO 27001, SOC 2, and SOX.
Technical Operations & Incident Response
Lead day‑to‑day security operations including monitoring, threat detection, triage, investigation, and incident response.
Operate and tune security platforms such as SIEM, EDR, vulnerability management, and threat intelligence tools.
Leverage AI and automation tooling to streamline workflows, improve detection fidelity, and reduce manual effort.
Act as an escalation point for complex incidents, root‑cause investigations, and cross‑team coordination.
Playbook & Process Development
Develop and maintain Standard Operating Procedures (SOPs) and incident response playbooks tailored to healthcare‑specific threat vectors and compliance obligations.
Automate repeatable tasks through SOAR platforms, scripting, and AI‑enhanced processes.
Iterate on processes and procedures already in place to be more efficient and repeatable.
Ensure alignment of operational practices with HITRUST CSF, ISO 27001, SOC 2 Type II, and SOX ITGC controls.
Team Development & Leadership
Manage and mentor a security operations team to facilitate building deeper expertise in cybersecurity.
Create a learning‑focused culture that encourages knowledge sharing, experimentation, and continuous improvement.
Foster risk‑aware decision‑making, enabling the team to act confidently with limited oversight using standardized risk frameworks.
Governance & Risk Alignment
Support security‑related audits, evidence collection, and control mapping.
Embed security operations processes into broader risk management and governance activities, contributing to HITRUST certification, ISO audits, and SOC/SOX readiness.
Cross‑Functional Engagement
Collaborate with IT, DevOps, Infrastructure, and R&D Engineering teams to secure critical infrastructure, applications, and workflows.
Advocate for security as a business‑enableor by balancing regulatory needs, business objectives, and technical feasibility.
Provide regular operational metrics and risk insights to leadership and stakeholders.
What We’re Looking For
5+ years of experience in security operations, blue‑teaming, or incident response roles.
2+ years in a leadership or supervisory capacity.
Hands‑on expertise with security platforms: SIEM, EDR/XDR, threat intel, SOAR.
Scripting/automation: Python, PowerShell, Bash.
Log analysis, detection engineering, threat hunting.
Experience integrating operations with compliance standards HITRUST, ISO 27001, SOC 2, and SOX.
Strong understanding of MITRE ATT&CK, NIST 800‑53/800‑61, and CIS Controls.
Experience in regulated industries, especially healthcare and PHI environments.
Demonstrated success creating SOPs, playbooks, and team workflows.
Certifications: GCIH, GCFA, CISSP, CISM.
Pragmatic and outcome‑oriented; align security with business impact.
Proven mentor and leader passionate for developing others.
Strong communicator with both technical teams and executive stakeholders.
Curious, analytical, proactive exploring AI and automation to elevate security outcomes.
Estimated Salary Range $112,000 – $140,000
How We Work The preferred location for this role is in Chicago, IL or St. Louis, MO. We value our people spending time together and have campuses hosting in‑person events located in both cities. We are truly a hybrid environment with all team members experiencing the flexibility to work from home.
Career Development Research shows that women and underrepresented groups tend to apply to jobs only when they check every box on a job posting. If you’re currently reading this and hesitating to click “Apply” for that reason, we encourage you to go for it! A true passion and excitement for making an impact is just as important as work experience.
Benefits & Culture Strata provides a comprehensive benefits package including retirement benefits, health and welfare benefits, paid time off, parental leave, life and accident insurance, and other voluntary and well‑being benefits.
Core Values
We connect with positive intent.
We are helpful.
We own it.
We get better every day.
We are humble.
#J-18808-Ljbffr