Sr. Cyber Infrastructure Engineer

The Senior Manager, 24/7 SOC will be a critical team member within the new Versant Cyber organization. This individual is responsible for managing a team of analysts within the security operations center across multiple shifts to ensure full operational coverage and effectiveness. As part of the incident response and detection team, the successful candidate will be expected to utilize their technical expertise to assess, contain, and remediate cyber threats as well as serve as an escalation point for security alerts. Key areas of focus for the Senior Manager, 24/7 SOC include overseeing the execution of continuous threat monitoring, log analysis, and alert triage using SIEM and other security tools, serving as an escalation point for security incidents, and ensuring the SOC meets relevant regulatory and compliance requirements. The successful candidate will be responsible for the following activities: Day-to-day operational tasks related to the ongoing support of threat operations. Responsible to validate and escalate security incidents from the SOC to the Versant incident response team/commanders. Refine and enforce standard operating procedures (SOPs), incident response playbooks, and escalation workflows. Work cross-functionally with IT, Legal, and Risk teams; deliver regular reporting and briefings on SOC metrics, trends, and incident summaries to leadership. Evaluate and optimize SOC tools, integrations, and automation opportunities to improve response time and reduce alert fatigue. Promote, foster, and advocate for an environment of collaboration, diversity, and inclusion. Mitigate risk by taking appropriate containment response actions on multiple platforms, or in some cases handoffs to partner teams. Keep detailed notes on all analysis activity, documented in the case management tool to validate process adherence. Responsible for contributing to the strategic creation and updating of new and existing SOAR playbooks and runbooks to support efficient event alerting and response actions. Provide On-Call support for escalated events. Involvement with Cyber initiatives and projects that influence defense capabilities.