VP, Threat Detection Analyst

Job Description:

Role Summary/Purpose:

We are seeking a skilled VP, Threat Detection Analyst with robust threat detection engineering experience in cloud-first environments. As a key member of the Threat Informed Defense Team, this individual will be responsible for assessing emerging cyber threats against cloud workloads and developing novel detective controls utilizing advanced techniques. In this role the Senior Threat Informed Defense Engineer will proactively identify opportunities for preventative and detective improvements through data analysis and exploration. Join us if you are passionate about staying ahead of the cybersecurity curve, are an inquisitive critical thinker, and thrive in a dynamic, collaborative environment.

We’re proud to offer you choice and flexibility. At Synchrony, our way of working allows you to have the option to work from home, near one of our Hubs or come into one of our offices. Occasionally you may be required to commute to our nearest office for in person engagement activities such as business or team meetings, training and culture events.

Essential Responsibilities:

• Leverage expert knowledge of attacker trade craft, tactics, and techniques to engineer detection/prevention solutions independently across multiple cloud providers (Azure, AWS, GCP).
• Expertise in delivering cloud detection posture briefings to stakeholders and devising innovative solutions for complex cloud-related challenges.
• Maintain a deep understanding of attack chains and how adversaries move across cloud security planes.
• Develop advanced detection logic utilizing various query languages or statistical methodologies.
• Perform impactful data analysis and exploration which produces recommended actions in a timely fashion with little or no oversight.
• Exhibit expertise in testing TTPs within a secure lab setting and developing custom detection content to address identified gaps.
• Foster cross-functional collaboration across IS teams, contributing to the enhancement of detection alerting strategies. This includes spearheading initiatives such as designing detection pipelines, refining alert mechanisms, and automating alerting and response processes.
• Remain current on Incident Response procedures as they relate to cloud environments.
• Proficient in identifying relevant log sources and developing effective detection mechanisms to detect and respond to security threats proactively.
• Mentor and train team members.
• Demonstrated ability to clearly document findings and present concise briefings to stakeholders.

Qualifications/Requirements:

• Possess expert knowledge of attacker tradecraft and forensic presentation of Tactics, Techniques, and Procedures (TTPs) across Azure, AWS and GCP environments.
• Experience in threat intelligence, threat hunt, or red team capacity in which use of threat intelligence and attack-focused frameworks was utilized.
• Able to communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.
• Experience developing advanced detection content.
• Able to function effectively in a dynamic, fast-paced environment.

Desired Characteristics:

• Applicable Information Security professional certifications (e.g., SANS, ISC2) and tool specific certifications
• Agile and code development Experience
• Cloud focused security certifications

Grade/Level: 12

The salary range for this position is 110,000.00 - 185,000.00 USD Annual and is eligible for an annual bonus based on individual and company performance.

Actual compensation offered within the posted salary range will be based upon work experience, skill level or knowledge.

Salaries are adjusted according to market in CA, NY Metro and Seattle.

Eligibility Requirements:

• You must be 18 years or older

• You must have a high school diploma or equivalent

• You must be willing to take a drug test, submit to a background investigation and submit fingerprints as part of the onboarding process

• You must be able to satisfy the requirements of Section 19 of the Federal Deposit Insurance Act.

• New hires (Level 4-7) must have 9 months of continuous service with the company before they are eligible to post on other roles. Once this new hire time in position requirement is met, the associate will have a minimum 6 months’ time in position before they can post for future non-exempt roles. Employees, level 8 or greater, must have at least 18 months’ time in position before they can post. All internal employees must consistently meet performance expectations and have approval from your manager to post (or the approval of your manager and HR if you don’t meet the time in position or performance expectations).

Legal authorization to work in the U.S. is required. We will not sponsor individuals for employment visas, now or in the future, for this job opening. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Our Commitment:

When you join us, you’ll be part of a diverse, inclusive culture where your skills, experience, and voice are not only heard—but valued. We celebrate the differences in all of us and believe that our individual, unique perspectives is what makes Synchrony truly a great place to work. Together, we’re building a future where we can all belong, connect and turn ideals into action. Through the power of our 8 Diversity Networks , with more than 60% of our workforce engaged, you’ll find community to connect with an opportunity to go beyond your passions.

This starts when you choose to apply for a role at Synchrony. We ensure all qualified applicants will receive consideration for employment without regard to age, race, color, religion, gender, sexual orientation, gender identity, national origin, disability, or veteran status.

Reasonable Accommodation Notice:

• Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.

• If you need special accommodations, please call our Career Support Line so that we can discuss your specific situation. We can be reached at 1-866-301-5627. Representatives are available from 8am – 5pm Monday to Friday, Central Standard Time

Job Family Group: