Job Description
Job Description
Come build, innovate, disrupt, and thrive!
KēSTA I.T. is actively seeking a Sr. Manager, IT Security Operations for an immediate full-time opportunity with our industry leading client.
Are you on the lookout for a unique career opportunity that offers leadership, responsibility, and the chance to make a significant impact? If you're eager to contribute to a thriving and stable organization while maintaining your confidentiality, continue reading.
A Sr. Manager of IT Security Operations is responsible for leading and advancing an organization’s security operations capabilities. This role oversees the detection, response, and remediation of cybersecurity threats while ensuring the reliability and continuous improvement of core security services.
This leader is accountable for key operational domains including Security Operations (SOC), Incident Response, Vulnerability Management, Identity & Access Management (IAM), and security monitoring. The role partners closely with Security Architecture, Governance/Risk/Compliance (GRC), IT Infrastructure, and business stakeholders to ensure security controls align with enterprise risk priorities.
This position requires a strong blend of technical depth, operational rigor, and leadership capability, along with the ability to translate complex security events into clear business impact for executive audiences.
Responsibilities
- Lead and oversee Security Operations (SOC) activities, including monitoring, detection, and alert triage
- Ensure effective deployment and operation of security technologies such as SIEM, EDR, NDR, and related platforms
- Continuously enhance detection capabilities through tuning, use case development, and threat intelligence integration
- Develop and maintain operational runbooks and standard operating procedures
- Lead incident response efforts, including investigation, containment, eradication, and recovery
- Ensure incident response processes are well-defined, tested, and continuously improved
- Conduct root cause analysis and post-incident reviews to strengthen security controls
- Coordinate with legal, communications, and leadership teams during high-impact incidents
- Oversee the vulnerability management program, including scanning, prioritization, and remediation tracking
- Partner with IT and application teams to reduce risk exposure and improve patching effectiveness
- Lead the design and continuous improvement of Identity & Access Management (IAM) capabilities, including identity lifecycle management (Joiner/Mover/Leaver), authentication, and authorization aligned with least-privilege principles
- Implement and manage access control models (RBAC/ABAC), MFA, conditional access, and privileged access management (PAM)
- Oversee identity governance processes such as access reviews, certifications, role design, and segregation of duties (SoD)
- Lead, mentor, and develop security operations team members
- Oversee implementation, integration, and optimization of security technologies
- Partner with Security Architecture on tool selection and long-term roadmap planning
- Drive automation and efficiency across security operations workflows
- Develop and deliver operational metrics, dashboards, and executive-level reporting
- Track KPIs such as detection time, response time, and remediation timelines
- Provide clear, actionable insights on threats, incidents, and overall risk posture
- Drive continuous improvement initiatives aligned to business impact and threat intelligence
- Collaborate cross-functionally with GRC, Security Architecture, IT, and business stakeholders
- Support incident response coordination and tabletop exercises
- Foster a culture of accountability, continuous learning, and operational excellence
Requirements
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field
- 8+ years of experience in cybersecurity, with a focus on operations, incident response, or threat management
- 3+ years of experience leading security teams or programs
- Strong hands-on experience with SIEM, EDR, vulnerability management, and detection technologies
- Proven experience leading vulnerability management and remediation programs
- Experience building and delivering metrics, dashboards, and executive reporting
- Deep understanding of incident response frameworks and methodologies
- Strong analytical and problem-solving capabilities
- Excellent communication skills with the ability to translate technical issues into business impact
Preferred Qualifications:
- Industry certifications such as CISSP, CISM, GIAC, or similar
About KēSTA I.T.:
Our name says it all; KēSTA I.T. (Keys-to-I.T.) AND our people are our keys to our success!
KēSTA I.T. is a premier Utah-based technical staffing and consulting services firm. We specialize in temporary and permanent placement of Software, Hardware, Network, Cloud, CRM/ERP, Data, End-User support, Web and Executive / leadership-based positions on a full time and consulting basis. If you're interested in a role where top performance is rewarded, personal time is valued, and excellence is demanded at every level we want to talk to you today!
Where do you want to go? We've got the keys! ~ KēSTA I.T.
WWW.KeSTAIT.COM