Python
The
Senior Manager of Enterprise Security Operations
is responsible for leading the organization’s security operations center (SOC) and overseeing enterprise-wide security domains including network security, identity and access management (IAM), and data protection. This role leads a team of security analysts and collaborates across technical and business teams to develop and implement strategies for proactive threat detection, incident response, and secure system architecture. This position ensures the confidentiality, integrity, and availability of systems and data while maintaining compliance with relevant regulations and continuously strengthening the organization’s security posture.
Essential Duties and Responsibilities:
Lead and manage SOC operations, ensuring effective threat detection, analysis, and incident response.
Develop and maintain SOC playbooks, escalation procedures, and incident response plans.
Continuously evaluate and enhance SOC capabilities through automation, threat intelligence integration, and process optimization.
Oversee the implementation, tuning, and maintenance of SIEM, SOAR, and threat intelligence platforms.
Ensure continuous monitoring of security events and timely response to incidents.
Network Security
Ensure the security of enterprise network infrastructure, including firewalls, IDS/IPS, VPNs, and network segmentation.
Collaborate with network engineering to design and implement secure network architectures.
Monitor network traffic for anomalies and potential threats.
Lead investigations into network-based incidents and coordinate remediation efforts.
Identity & Access Management (IAM)
Oversee IAM policies, standards, and technologies, including SSO, MFA, and privileged access management (PAM).
Ensure proper lifecycle management of user identities, including provisioning, role-based access control (RBAC), and deprovisioning.
Conduct regular access reviews and audits to ensure appropriate access levels.
Collaborate with compliance teams to meet regulatory and audit requirements related to IAM.
Data Protection
Implement and manage data loss prevention (DLP), encryption, and data classification tools.
Develop and enforce policies for secure data handling and storage.
Monitor data access and usage to detect and respond to potential data breaches.
Ensure compliance with data privacy regulations such as GDPR, CCPA, and industry-specific standards.
Lead a team of security analysts and engineers, providing coaching, mentorship, and career development.
Define clear goals, performance metrics, and accountability structures for the team.
Partner with IT, compliance, legal, and business units to align security initiatives with organizational priorities.
Contribute to enterprise security strategy, risk assessments, and audit readiness efforts.
Knowledge, Skills and Abilities:
SOC Platforms & Tools: Proficiency with industry-standard SIEM solutions (e.g., Splunk, LogRhythm) and EDR solutions, including security event correlation (e.g., SentinelOne). Experience with threat intelligence platforms and incident response frameworks.
Network Security: Expertise in firewall management (e.g., Palo Alto, Fortinet, Cisco ASA), IDS/IPS system, network segmentation and secure network design principles and protocols (e.g., TCP/IP, DNS, SSL/TLS).
Identity & Access Management (IAM): Hands-on experience with SSO, MFA, and PAM solutions (e.g., Okta, Azure AD, CyberArk). Experience with user provisioning/deprovisioning workflows, IAM governance, and directory services (e.g., Active Directory, Azure AD).
Data Protection: Practical experience with DLP solutions (e.g., Symantec, Forcepoint, Microsoft Purview). Experience with data encryption technologies, knowledge of data classification frameworks.
Systems Integration: Experience with securely integrating solutions with directories (AD, Azure AD) and cloud environments (AWS, Azure, GCP).
Scripting & Automation: Knowledge of scripting languages (PowerShell, Python) for automation of security operations processes and workflows.
Database & Infrastructure: Understanding of databases, server infrastructure, and network security fundamentals as they relate to security operations.
Security Frameworks: Familiarity with relevant frameworks (NIST, CIS, ISO 27001) and regulations (SOX, GDPR).
Educational/Certification Requirement:
Bachelor’s Degree in Computer Science, Information Systems, Cybersecurity, or a related field (or equivalent work experience).
Certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or SANS GIAC are preferred.
Experience Requirement:
Track Record of successful security operations project delivery, team leadership, and stakeholder management.
Work Experience:
Proven Experience in managing a security operations team and projects. 5+ years in security operations or related security roles preferred.
We offer:
Family character of the company with custom production outside the automotive industry
Individual approach
Facilities of a newly built production hall in Doubí in Liberec
High quality employment
We will take into account your experience with attractive benefits (quarterly financial bonuses, meal allowance, transport allowance, Multisport card, annual contribution to benefit cards, company tickets for leisure activities, subsidized refreshments, education, company events)
UCT Fluid Delivery Solutions s.r.o.
#J-18808-Ljbffr
Senior Manager of Enterprise Security Operations
is responsible for leading the organization’s security operations center (SOC) and overseeing enterprise-wide security domains including network security, identity and access management (IAM), and data protection. This role leads a team of security analysts and collaborates across technical and business teams to develop and implement strategies for proactive threat detection, incident response, and secure system architecture. This position ensures the confidentiality, integrity, and availability of systems and data while maintaining compliance with relevant regulations and continuously strengthening the organization’s security posture.
Essential Duties and Responsibilities:
Lead and manage SOC operations, ensuring effective threat detection, analysis, and incident response.
Develop and maintain SOC playbooks, escalation procedures, and incident response plans.
Continuously evaluate and enhance SOC capabilities through automation, threat intelligence integration, and process optimization.
Oversee the implementation, tuning, and maintenance of SIEM, SOAR, and threat intelligence platforms.
Ensure continuous monitoring of security events and timely response to incidents.
Network Security
Ensure the security of enterprise network infrastructure, including firewalls, IDS/IPS, VPNs, and network segmentation.
Collaborate with network engineering to design and implement secure network architectures.
Monitor network traffic for anomalies and potential threats.
Lead investigations into network-based incidents and coordinate remediation efforts.
Identity & Access Management (IAM)
Oversee IAM policies, standards, and technologies, including SSO, MFA, and privileged access management (PAM).
Ensure proper lifecycle management of user identities, including provisioning, role-based access control (RBAC), and deprovisioning.
Conduct regular access reviews and audits to ensure appropriate access levels.
Collaborate with compliance teams to meet regulatory and audit requirements related to IAM.
Data Protection
Implement and manage data loss prevention (DLP), encryption, and data classification tools.
Develop and enforce policies for secure data handling and storage.
Monitor data access and usage to detect and respond to potential data breaches.
Ensure compliance with data privacy regulations such as GDPR, CCPA, and industry-specific standards.
Lead a team of security analysts and engineers, providing coaching, mentorship, and career development.
Define clear goals, performance metrics, and accountability structures for the team.
Partner with IT, compliance, legal, and business units to align security initiatives with organizational priorities.
Contribute to enterprise security strategy, risk assessments, and audit readiness efforts.
Knowledge, Skills and Abilities:
SOC Platforms & Tools: Proficiency with industry-standard SIEM solutions (e.g., Splunk, LogRhythm) and EDR solutions, including security event correlation (e.g., SentinelOne). Experience with threat intelligence platforms and incident response frameworks.
Network Security: Expertise in firewall management (e.g., Palo Alto, Fortinet, Cisco ASA), IDS/IPS system, network segmentation and secure network design principles and protocols (e.g., TCP/IP, DNS, SSL/TLS).
Identity & Access Management (IAM): Hands-on experience with SSO, MFA, and PAM solutions (e.g., Okta, Azure AD, CyberArk). Experience with user provisioning/deprovisioning workflows, IAM governance, and directory services (e.g., Active Directory, Azure AD).
Data Protection: Practical experience with DLP solutions (e.g., Symantec, Forcepoint, Microsoft Purview). Experience with data encryption technologies, knowledge of data classification frameworks.
Systems Integration: Experience with securely integrating solutions with directories (AD, Azure AD) and cloud environments (AWS, Azure, GCP).
Scripting & Automation: Knowledge of scripting languages (PowerShell, Python) for automation of security operations processes and workflows.
Database & Infrastructure: Understanding of databases, server infrastructure, and network security fundamentals as they relate to security operations.
Security Frameworks: Familiarity with relevant frameworks (NIST, CIS, ISO 27001) and regulations (SOX, GDPR).
Educational/Certification Requirement:
Bachelor’s Degree in Computer Science, Information Systems, Cybersecurity, or a related field (or equivalent work experience).
Certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or SANS GIAC are preferred.
Experience Requirement:
Track Record of successful security operations project delivery, team leadership, and stakeholder management.
Work Experience:
Proven Experience in managing a security operations team and projects. 5+ years in security operations or related security roles preferred.
We offer:
Family character of the company with custom production outside the automotive industry
Individual approach
Facilities of a newly built production hall in Doubí in Liberec
High quality employment
We will take into account your experience with attractive benefits (quarterly financial bonuses, meal allowance, transport allowance, Multisport card, annual contribution to benefit cards, company tickets for leisure activities, subsidized refreshments, education, company events)
UCT Fluid Delivery Solutions s.r.o.
#J-18808-Ljbffr