Cybersecurity Operations Manager- 239251

Cybersecurity Operations Manager

The Cybersecurity Operations Manager plays a key leadership role, responsible for overseeing daily cybersecurity operations across the organization. This role leads a team of skilled professionals and acts as the primary liaison for managing external security partners, including a Managed Security Services Provider (MSSP). The focus is on ensuring a resilient cybersecurity posture through effective incident response, vulnerability management, and continuous assessment of operational metrics.

This individual ensures security tools are effectively utilized, team performance aligns with strategic goals, and projects are delivered on time and within scope. The successful candidate will demonstrate a blend of technical acumen, operational excellence, and leadership strength, while maintaining a proactive mindset and commitment to continuous improvement in a rapidly evolving threat environment.

Key Responsibilities:

• Lead and manage a team of cybersecurity professionals, fostering a culture of accountability, innovation, and growth.
• Coach and mentor staff to enhance performance and career development.
• Manage all aspects of team performance, including evaluations, compensation planning, succession planning, and skills development.
• Monitor and optimize team productivity, workload distribution, and project contributions.
• Oversee performance and contract adherence of the Managed Security Services Provider (MSSP).
• Review and analyze operational security metrics, KPIs, and trends to drive improvements.
• Provide status updates and reports on cybersecurity initiatives, including progress, risks, and key deliverables.
• Manage and optimize the use of security technologies, including SIEM, EDR, IDS/IPS, DLP, and vulnerability management tools.
• Ensure timely vulnerability remediation and coordinate patch management activities.
• Support forensic investigations and root cause analyses following security incidents.
• Implement and maintain secure configurations for endpoints, servers, and network devices.
• Conduct risk assessments, threat modeling, and ongoing vulnerability management.
• Lead incident response processes to ensure effective containment, investigation, and resolution of cyber events.
• Develop and deliver executive-level reports on cybersecurity posture and key indicators.
• Participate in penetration testing, implementation of new security solutions, and development of policies, standards, runbooks, and procedures.
• Recommend improvements to security tools, processes, and operations to stay ahead of emerging threats.
• Maintain awareness of industry trends, security standards, and regulatory requirements.
• Collaborate with other IT teams to align cybersecurity efforts with broader organizational goals.
• Perform special projects and other duties as assigned.

Knowledge, Skills, and Abilities:

• Expert-level knowledge of cybersecurity tools, technologies, and best practices.
• Strong understanding of enterprise IT systems and secure integration practices.
• Excellent communication, leadership, and interpersonal skills.
• Proven ability to lead technical teams and work cross-functionally.
• Sound judgment in balancing security with operational demands.
• Availability to respond to security alerts and incidents outside regular hours.

Qualifications:

Experience:

• 10 years of progressive experience in cybersecurity or information security.
• Minimum 5 years in a leadership role with experience managing teams and vendor relationships.
• Healthcare industry experience (preferred but not required).
• Strong track record managing MSSP relationships and third-party vendors.
• Deep understanding of frameworks such as NIST, HIPAA, and MITRE ATT&CK.
• Proven success in incident response, vulnerability management, and risk mitigation.

Education & Certification:

• Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or a related field (preferred).
• CISSP certification (preferred).
• Additional certifications such as CISM, GIAC, or HCISPP are a plus.