Security Operations Remote Jobs in New York (US)

This page tracks remote security operations openings that are location-eligible for New York.

Open jobs

237

Hiring companies this week

Salary sample

$30,000 - $165,000

Jobs added last hour

Strict location onlyShow closed jobs

Post Date

Minimum Salary

Experience

237 Jobs

185 Companies

IT Engineering Operations Lead

TNT Growth

Security Operations1 day ago

Full Time Remote Lead

Role Description We are hiring someone to build the operational infrastructure of the engineering team from scratch. This is not a project management role. There is no existing playbook, no mature intake process, no capacity framework, no defined utilization targets, and no release process. You will build all of it. Engineering’s primary purpose at TNT Growth is client delivery. The metrics that matter are client targets hit and net revenue retention. Every system you build, every process you design, every framework you implement needs to ladder up to that. If it doesn’t accelerate client outcomes, it doesn’t belong on the roadmap. You will be the operational backbone of the engineering team. You’ll work directly with the Director of Operations, the Technical Director, and engineers to ensure the right work gets done, in the right order, at the right level of investment. You will bring structure, visibility, and accountability to a team that is currently operating reactively. We are not looking for someone who manages tasks. We are looking for someone who builds the system that makes task management unnecessary. What You'll Own - Design and implement a single intake system for all engineering requests. - Triage incoming tickets with enough technical understanding to assess client-critical needs. - Translate client needs into actionable engineering work. - Own the prioritization framework for competing requests. - Assess every incoming client request against the client’s contracted scope of work. - Flag and escalate out-of-scope requests before they consume engineering time. - Partner with GMs and client success to ensure the team builds what clients are paying for. - Track scope compliance over time. - Build and maintain a forward-looking capacity plan. - Own the 30/60/90-day engineering calendar. - Design and run an early warning system for growing backlogs. - Manage sprint execution: standups, sprint planning, retrospectives, velocity tracking. - Design the team’s operating model. - Create SOPs for escalation, handoffs, scope changes, and release coordination. - Coordinate with the Product Designer to ensure alignment before anything goes live. - Own the framework for internal tooling initiatives. - Right-size build decisions based on needs. - Define expected utilization targets for each engineer. - Establish throughput metrics the team aligns on. - Use time-tracking data to build a real picture of engineering hours. - Determine when backlogs should be solved with better planning vs. additional headcount. - Prepare business cases for headcount requests. - Own the communication structure between engineering, ops, client success, growth, and leadership. - Coordinate with GMs to ensure client priorities are translated accurately. Qualifications - MUST have 5+ years in engineering operations, technical program management, or a similar role. - Experience building operational systems from scratch in a team that didn’t have them. - Strong enough technical understanding to triage engineering tickets and assess scope. - Client-centric mindset with the ability to connect work to business justification. - Experience with client engagement models and scope management. - Comfortable with data and metrics to drive decisions. - Experience managing remote, distributed teams across time zones. - AI-literate with an understanding of how AI tools can accelerate workflows. - Direct communicator who surfaces problems early and proposes solutions. Compensation - Salary Range: $30k-$85k (Non-US Only) - Flexible PTO and Paid Holidays

View details: IT Engineering Operations Lead

Worldwide

$30K - $85K / year

Apply

Security Operations Engineer

Sembi

Build with Confidence.

Security Operations1 day ago

Full Time Remote SeniorTeam 201-500Since 2023H1B No Sponsor

Company Site LinkedIn

• Monitor, investigate and respond to security events, alerts and incidents across corporate, QA, staging and production environments • Execute vulnerability operations including intake, prioritization, tracking and remediation coordination in an AI-forward environment • Support IAM program through access changes, privileged access controls, access reviews and control validation • Maintain and improve security runbooks, workflows, documentation and operational procedures • Identify operational gaps and recommend practical improvements that strengthen coverage, response and alignment to best practices • Partner with IT, Engineering and business teams to address security issues across internal and customer-facing environments • Manage work in Jira, including ticket updates, prioritization, workflow discipline and backlog execution • Participate in on-call incident response as needed

Cloud

View details: Security Operations Engineer

United States

Apply

SOC Analyst

Thrive

NextGen Technology Services

Security Operations1 day ago

Full Time Remote SeniorTeam 201-500H1B Sponsor

Company Site LinkedIn

• Utilizes SIEM/XDR/EDR tools (AlienVault USMA/LevelBlue, LogRhythm, Microsoft Sentinel, Splunk CrowdStrike, etc.) to monitor alerts and security events of client networks and systems. • Identifies, analyzes, and responds to security incidents as they occur. • Collaborates and leverages their cybersecurity knowledge working alongside a team of skilled analysts to address potential threats within a 24x7 SOC. • Crafts escalations to clients for potential threats that include value-added and root cause analysis with recommendations for remediation. • Continually improves cybersecurity and information security expertise. • Performs other related duties as assigned.

Cyber Security DNS Splunk

View details: SOC Analyst

United States

Apply

Automation Engineer - Cyber Security Operations

The Wendy's Company

Wendy’s was built on the premise, "Quality is our Recipe®," which remains the guidepost of the Wendy's system. Today, Wendy's and its franchisees employ hundreds of thousands of people across more than 7,000 restaurants worldwide with a vision of becoming the world's most thriving and beloved restaurant brand.

Security Operations1 day ago

Full Time Remote Mid LevelTeam 10,001

Role Description Duties include identifying, defining, configuring, executing and maintaining automation scripts and tools in support of the brand’s information security initiatives. The ideal candidate will have experience with common scripting languages such as Python, PowerShell, Bash, etc. The ideal candidate will be familiar with Security Orchestration Automation and Response Tools such as MSFT Sentinel, Entra ID, Defender, etc. Experience writing information security playbooks is ideal. The candidate will play a major role in our cyber threat hunt automation efforts, including the vetting of new models and procedures to identify and react to anomalous network and/or endpoint behaviors. Regular collaboration with multiple teams such as Endpoint Security and Threat & Vulnerability Management as well as Security Operations peers will be critical to success. Responsibilities - Creates automation playbooks in coordination with organization peers to reduce the number of tedious/manual tasks (freeing up time for other information security tasks). - Administration, configuration, maintenance, and support of the MSFT Sentinel environment. - Creation, evaluation, updating, and maintenance of Information Security Incident Management Playbooks. - Participates in security incident response efforts by, among other things, having an in-depth knowledge of common security exploits, vulnerabilities and countermeasures. - Investigation of Cyber Security threats. - Identifies, creates, and maintains opportunities for threat intelligence automation. Qualifications - Experience automating security functions with a scripting language such as Python, Powershell, etc. - Experience with a Security Orchestration Automation and Response tool such as MSFT Sentinel, Entra ID, Defender, etc. - Hands-on experience with information security tools such as an enterprise SIEM solution, IDS/IPS, endpoint security solutions, email/web security gateways, and other security detection/mitigation devices. - Experience with host-based and/or network-based forensics tools and techniques. - A curious mindset with attention to detail. - Experience with multiple operating systems to include Windows, Mac OS, and Unix/Linux. - Demonstrate the ability to provide written and verbal communications to management to address real-time issues and incidents, including writing formal incident reports and assisting with intelligence reports. - Advanced problem-solving skills, ability to develop effective long-term solutions to complex problems. - At least one certification within the Information Security, Information Assurance or Cybersecurity field such as GIAC, OWASP, ISC2, or similar. - Threat Hunting Experience. - Regular Expression (regex) experience. Requirements - It is expected that you will primarily perform work remotely. You may be asked to travel, as needed, to the Wendy's Restaurant Support Center (RSC) (1 Dave Thomas Blvd, Dublin, OH 43017), or to other location(s) as designated by the Company. - Changes to work location arrangements are subject to managerial approval and business needs. Benefits - The target annual bonus for this role is 7.5% of annualized base salary, based on actual company and personal performance. - Our restaurant support roles are eligible for a wide array of benefits, including things such as parental leave, free EAP sessions, company 401k match and other great offerings. - For more details about our benefits, including an overview of eligibility and terms for certain benefits, please visit our benefits website, www.wendysbenefits.com.

View details: Automation Engineer - Cyber Security Operations

United States

$74K - $126K / year

Apply

Security Operations Analyst

TAXWELL

Security Operations1 day ago

Full Time Remote SeniorTeam 1-10Since 2003H1B No Sponsor

Company Site LinkedIn

• Conduct proactive threat hunting and refine detection logic for improved accuracy and context • Implement, configure, and optimize security tools, SIEM integrations, and data connections • Monitor and validate security telemetry to identify visibility gaps and improve detection coverage • Respond to escalated security incidents, performing analysis, containment, remediation, and root cause investigation • Collaborate with IT, cloud, and development teams to strengthen security controls and visibility • Create and maintain detailed incident documentation, timelines, and lessons learned • Continuously improve playbooks, automation, operational processes, and detection effectiveness • Contribute to process and capability development across the team • Assist with onboarding and troubleshooting data sources and connectors within Microsoft Sentinel

Azure Cloud Cyber Security Python

View details: Security Operations Analyst

United States

Apply

Senior Engineer, Security Operations – Engineering

Collibra

United by Data™

Security Operations2 days ago

Full Time Remote SeniorTeam 1,001-5,000Since 2008H1B Sponsor

Company Site LinkedIn

• Helping to develop architectural requirements and corresponding engineering processes and technologies to support Collibra’s cloud-native platform • Design and tune cloud-native detection rules and threat models for AWS GuardDuty, Microsoft Defender for Cloud, and GCP Security Command Center • Conduct continuous vulnerability assessments of cloud workloads, container images, and serverless functions • Develop, continuously improve, and ensure compliance with controls built for the cloud-native platform • Partner with engineering teams to prioritize and drive remediation of cloud security findings • Plan, organize, and manage multiple responsibilities from various stakeholders and sometimes competing requests to achieve desired objectives • Maintain and update CloudFlare WAF rules to work with the Collibra product. • Evaluate and deploy cloud workload protection platforms (CWPP) and container security tooling • Assist with technical response efforts for cloud security incidents, perform forensic analysis, and contribute to root-cause investigation • Write production-quality code in Python, Golang/Go, or similar languages to build internal security tooling and automation • Integrate security tooling into developer workflows to reduce friction while improving security outcomes • After hours on-call support may occasionally be required

Ansible AWS Azure Cloud Google Cloud Platform Kubernetes Linux Python Terraform Go

View details: Senior Engineer, Security Operations – Engineering

United States

$152K - $190K / year

Apply

L3 SOC Analyst / Incident Response Analyst

ProArch

Consulting and technology- enabled by cloud, guided by data, fueled by apps, and secured by design.

Security Operations2 days ago

Full Time Remote Mid LevelTeam 201-500H1B Sponsor

Company Site LinkedIn

Role Description At ProArch, a leader in IT security consulting with presence in the US, UK, and India, we are looking for a skilled L3 SOC Analyst / Incident Response Analyst to join our Security Operations Center (SOC) team. In this critical role, you will be responsible for advanced incident detection, investigation, and response to complex cybersecurity threats. Leveraging your extensive experience and expertise, you will lead incident response activities, perform deep-dive analysis, and coordinate with cross-functional teams to mitigate risks and strengthen our security posture. This role is heavily focused on: - Incident Response - Threat Investigation - Detection Engineering - DFIR Operations - SOC Automation - Threat Hunting - Security Platform Engineering - Response Workflow Optimization The ideal candidate combines strong incident response expertise, deep Microsoft security platform knowledge, hands-on detection engineering capability, and SOC automation experience within a fast-paced MSSP environment. This is not a traditional alert-monitoring SOC Analyst role. The position requires strong investigative, analytical, and response-oriented cybersecurity capabilities. Key Responsibilities - Incident Response & Threat Investigation - Lead and support advanced security incident investigations across multiple customer environments - Perform: - Threat triage and validation - IOC analysis and threat correlation - Endpoint and identity investigations - Email security investigations - Cloud security incident analysis - Root cause analysis - Investigate and respond to: - Account compromise incidents - Business Email Compromise (BEC) - Malware and ransomware activity - Privilege escalation - Lateral movement activity - Suspicious cloud and identity-based attacks - Advanced phishing and social engineering campaigns - Coordinate containment, remediation, and recovery activities with customer and internal teams - Support high-severity incident escalation handling and response coordination - Provide detailed investigation findings, timelines, impact assessments, and response recommendations - Conduct proactive threat hunting and threat validation activities where required - Support digital forensics and evidence collection activities when applicable - Detection Engineering & SIEM Operations - Design, develop, and maintain advanced detection rules across: - Microsoft Sentinel - Microsoft Defender XDR - Develop and optimize: - KQL queries - Analytics rules - Correlation logic - Detection use cases - Perform: - Detection tuning - False positive reduction - Behavioral baselining - Threat-based detection improvements - Build and maintain reusable detection content and query libraries - Support proactive detection engineering initiatives aligned with emerging threats and attacker techniques - Leverage threat intelligence and MITRE ATT&CK mapping to improve detection coverage - SOC Automation & SOAR Engineering - Design and implement SOC automation workflows using: - Microsoft Sentinel Playbooks - Logic Apps - SOAR platforms - API-driven integrations - Build workflows for: - Alert enrichment - Incident routing - Automated containment actions - Threat intelligence enrichment - Ticket synchronization - Investigation acceleration - Develop scalable automation frameworks to improve SOC operational efficiency - Support continuous optimization of SOC workflows and automation coverage - Create automation standards and reusable workflow templates across customer environments - Microsoft Security Platform Operations - Provide hands-on operational support, investigation, tuning, administration, and engineering for: - Microsoft Defender for Endpoint (MDE) - Microsoft Defender XDR - Microsoft Defender for Identity (MDI) - Microsoft Defender for Office 365 (MDO) - Microsoft Defender for Cloud Apps (MDCA) - Microsoft Purview - Microsoft Identity Protection / Entra ID - Microsoft Sentinel - Additional technologies include: - CrowdStrike Falcon - Threat Intelligence platforms - Email security solutions - Endpoint Detection & Response (EDR) platforms - Identity and authentication platforms - Cloud security solutions - Ticketing platforms (Datto Autotask preferred) - AI Security & Modern Threat Operations - Support detection and response activities related to: - AI-orchestrated attacks - Identity-based attacks - Cloud-native threats - Advanced phishing and social engineering campaigns - Leverage AI-assisted SOC operations and automation capabilities where applicable - Support modern detection strategies aligned with evolving attacker techniques - Evaluate opportunities to integrate AI-driven efficiencies into detection, investigation, and response workflows - Client & Operational Support - Participate in customer incident discussions and escalation calls when required - Support onboarding of new customer environments and security integrations - Maintain: - Investigation playbooks - SOPs - Workflow documentation - Operational runbooks - Detection documentation - Collaborate closely with: - SOC Operations - Security Engineering - Vendors - Consulting teams - Customer stakeholders - Support operational improvement initiatives across SOC and DFIR functions Qualifications - Bachelor’s Degree / Graduation in: Computer Science/Information Technology/Cybersecurity or related technical field is mandatory - Relevant cybersecurity and automation-focused certifications will be considered an added advantage. - 6-9 years of overall cybersecurity experience - Strong hands-on experience in: - Incident Response - Threat Investigation - SOC Operations - Detection Engineering - DFIR activities - Prior Incident Response Analyst experience is highly preferred - Experience working within MSSP environments preferred - Experience supporting or collaborating with US-based teams/vendors preferred - Proven hands-on experience with SOAR platforms in enterprise or MSSP environments - Strong experience designing and implementing SOC automation workflows from scratch - Experience supporting enterprise Security Operations Center (SOC) environments - Experience with detection engineering and SIEM rule development Requirements - Strong hands-on experience with: - Microsoft Defender for Endpoint (MDE) - Microsoft Defender XDR - Microsoft Defender for Identity (MDI) - Microsoft Defender for Office 365 (MDO) - Microsoft Defender for Cloud Apps (MDCA) - Microsoft Purview - Microsoft Identity Protection / Entra ID - CrowdStrike Falcon - Threat Intelligence platforms - Microsoft Sentinel (Mandatory) - Defender XDR SIEM operations (Mandatory) - Graph API - Datto Autotask or equivalent ticketing systems - Email security solutions - Endpoint Detection & Response (EDR) platforms - Identity and authentication platforms - Cloud security technologies - Strong experience creating: - Detection rules - Analytics rules - KQL queries - Detection tuning and fine-tuning - Experience with: - SOC workflow design - SOC automation - SOAR engineering - API integrations - Workflow orchestration - Understanding of: - MITRE ATT&CK - Threat detection methodologies - Threat hunting methodologies - AI-driven attack techniques - AI use cases in SOC operations - Preferred experience with: - PowerShell - Python - REST APIs - Logic Apps - KQL (Mandatory) Preferred Certifications - Microsoft SC-200 - Microsoft SC-401 - Microsoft AZ-500 - Microsoft SC-900 - Microsoft SC-100 - CISSP - Security Automation / SOAR Automation / SOAR Certifications Soft Skills & Work Style - Strong verbal and written communication skills with the ability to work effectively across technical and non-technical teams - Excellent collaboration and stakeholder coordination skills across SOC Operations, Engineering, Consulting, Vendors, and Leadership teams - Strong documentation and technical writing capabilities for investigations, workflows, SOPs, and operational procedures - Ability to work independently in a remote-first, multicultural, and fast-paced MSSP environment - Self-driven, proactive, and highly organized with strong ownership and accountability - Strong analytical, troubleshooting, and problem-solving skills - Comfortable managing multiple projects, priorities, and operational initiatives simultaneously - Team-oriented mindset with the ability to operate effectively as an individual contributor - Professional communication and coordination skills for working with US-based teams and vendors - Adaptable and flexible to evolving operational and business requirements Working Model - Rotational Shift (US Business Hours or After Hours) - Remote-first operational model - Participation in on-call escalation rotation for critical incidents when required What Success Looks Like - High-quality incident investigations and response handling - Improved detection fidelity and reduced false positives - Increased SOC automation coverage and operational efficiency - Faster containment and response coordination - Consistent and high-quality incident response across customer environments - Strong collaboration across SOC, Engineering, and Customer teams - Continuous improvement of detection, automation, and DFIR capabilities

View details: L3 SOC Analyst / Incident Response Analyst

USA Timezones

Apply

Security Operations Engineer II

StubHub

StubHub is a web and mobile platform that enables fans around the world to buy and sell tickets for live events. Its global ticket marketplace includes over 10

Security Operations2 days ago

Full Time Hybrid Senior

Company Site

Title: Security Operations Engineer II Location: New York, New York, United States Job Description: StubHub is on a mission to redefine the live event experience on a global scale. Whether someone is looking to attend their first event or their hundredth, we’re here to delight them all the way from the moment they start looking for a ticket until they step through the gate. The same goes for our sellers. From fans selling a single ticket to the promoters of a worldwide stadium tour, we want StubHub to be the safest, most convenient way to offer a ticket to the millions of fans who browse our platform around the world. The Security Operations team owns incident response, threat detection, SIEM engineering, log management, and third-party security risk forming the frontline defense for StubHub's global operations. As a Security Operations Engineer you will bring deep hands-on experience in incident response and threat detection. You will help extend the existing tooling, automation, and detection infrastructure that enables the team to operate at scale. This is not a purely operational role; we are looking for an engineer who writes production-quality code to solve security problems, architects detection pipelines, and help mature StubHub’s SOC-less approach to Detection & Response. You will work closely with Cloud and Infrastructure Security, Identity Engineering, and cross-functional stakeholders. Your work will directly shape how StubHub detects, responds to, and learns from threats. Location: Hybrid (3 days in office/2 days remote) – New York, NY or Century City, CA What You'll Do: What You've Done: - Incident Response - Lead and coordinate security incident response end-to-end: detection, triage, containment, eradication, recovery, and post-incident review - Develop and maintain incident response playbooks - Drive root cause analysis and translate findings into durable improvements to detection and prevention capabilities - Act as an escalation point for complex or high-severity incidents across the organization - Threat Detection - Design, build, and tune detection rules, event correlation logic, and behavioral analytics across cloud, endpoint, network, and application data sources - Assist in maintaining a threat model for StubHub's environment and mapping detection coverage to the MITRE ATT&CK framework - Proactively hunt for threats and indicators of compromise across the environment - Collaborate with red team and pen test partners to validate detection coverage and identify gaps - SIEM & Log Engineering - Continually improve SIEM capabilities including data ingestion pipelines, normalization, enrichment, and alerting workflows - Own log collection strategy: define what gets collected, at what fidelity, and for how long across cloud providers, SaaS applications, endpoints, and internal services - Write and maintain parsers, ETL pipelines, and data transformation logic to ensure high-quality signal in the SIEM - Own and operate security tooling where needed (SIEM, SOAR, EDR, etc.) - Security Automation & Tooling - Write internal software in Python, Go, or similar to automate detection, response, enrichment, and reporting workflows - Build integrations between security tools, internal APIs, and third-party services to accelerate analyst workflows and reduce mean time to respond - Develop dashboards, metrics, and reporting to communicate operational health and coverage to security leadership - Contribute to shared security infrastructure and internal libraries used across the security engineering organization - Third-Party Security - Support the third-party security program by evaluating vendor security posture, reviewing assessments, and triaging risk findings - Build or maintain tooling to automate third-party risk intake, tracking, and reporting - Collaborate with Legal, Procurement, and Engineering to ensure third-party risks are identified and remediated appropriately - 3+ years of experience in security engineering, security operations, or a related discipline - Demonstrated, hands-on experience leading incident response efforts, including complex, multi-system investigations - Strong threat detection engineering experience: writing detection rules, tuning alerts, building correlation logic, and reducing false positive rates at scale - Proficiency in at least one programming or scripting language (Python strongly preferred; Go, Ruby, or Bash also relevant) — you regularly write code to solve security problems, not just configure tools - Deep familiarity with SIEM platforms (e.g., Splunk, ELK, Chronicle, Panther, or similar) including query languages and datra data onboarding. - Experience with cloud environments (AWS, GCP, or Azure) and the associated log sources, threat models, and detection strategies - Strong understanding of attacker tactics, techniques, and procedures (TTPs); experience mapping detections to MITRE ATT&CK - Excellent written and verbal communication skills; able to convey technical risk clearly to non-technical stakeholders Preferred Experience: Experience operating in a SOC environment, either in-house or as part of an MSSP Familiarity with SOAR platforms and automation-driven response workflows Experience with threat intelligence platforms and operationalizing threat feeds into detection pipelines Prior involvement in third-party or vendor security risk programs Experience at high-growth technology companies or marketplaces where scale and velocity present unique security challenges Familiarity with data engineering concepts — streaming pipelines, schema design, log normalization — applied to security contexts Relevant certifications (GCIH, GCIA, GCFE, OSCP, or equivalent) are a plus, but not required What We Offer: - Accelerated Growth Environment: An environment designed for swift skill and knowledge enhancement, where you have the autonomy to lead experiments and tests on a massive scale. - Top Tier Compensation Package: Competitive base, equity, and upside that tracks with your impact. - Flexible Time Off: Enjoy unlimited Flex Time Off, giving you the flexibility to manage your schedule and take time to recharge as needed. - Comprehensive Benefits Package: Prioritize your well-being with a comprehensive benefits package, featuring 401k, and premium Health, Vision, and Dental Insurance options. The anticipated gross base pay range is below for this role. Actual compensation will vary depending on factors such as a candidate’s qualifications, skills, experience, and competencies. Base annual salary is one component of StubHub’s total compensation and competitive benefits package, which includes equity, 401(k), paid time off, paid parental leave, and comprehensive health benefits. Salary Range $165,000—$200,000 USD About Us StubHub is the world’s leading marketplace to buy and sell tickets to any live event, anywhere. Through StubHub in North America and viagogo, our international platform, we service customers in 195 countries in 33 languages and 49 available currencies. With more than 300 million tickets available annually on our platform to events around the world -- from sports to music, comedy to dance, festivals to theater -- StubHub offers the safest, most convenient way to buy or sell tickets to the most memorable live experiences. Come join our team for a front-row seat to the action. For California Residents: California Job Applicant Privacy Notice found here We are an equal opportunity employer and value diversity on our team. We do not discriminate on the basis of race, color, religion, sex, national origin, gender, sexual orientation, age, disability, veteran status, or any other legally protected status.

View details: Security Operations Engineer II

New York + 1 more

$165K - $200K / year

Apply

Senior Privacy Specialist Cyber Security and Privacy Operations

Fresenius Medical Care

Creating a future worth living. For patients. Worldwide. Every day.

Security Operations2 days ago

Full Time Remote SeniorTeam 10,001+Since 1996H1B Sponsor

Company Site LinkedIn

Role Description - Monitor and assess alerts, cases, and reports for potential privacy incidents (e.g., unauthorized access, data exfiltration, misdirected communications). - Perform initial triage to classify incidents involving Personal Data (PII/PHI). - Lead or support end-to-end investigation of privacy incidents. - Analyze impacted data elements, systems, and individuals; determine root cause and scope of exposure. - Document incident findings in accordance with legal and compliance requirements. - Evaluate breach thresholds under regulations (HIPAA, GDPR, state breach laws). - Coordinate with Legal on breach notification obligations. - Support preparation of regulatory filings and communications to affected individuals. - Participate in incident response war rooms and crisis management efforts. - Ensure alignment between technical containment and privacy obligations. - Maintain detailed incident records and case documentation. - Track incident metrics (e.g., time to detect/respond, incident trends). - Provide reporting to leadership, regulators, and audit teams. - Enhance privacy incident response playbooks and workflows. - Conduct tabletop exercises and training sessions. - Contribute to privacy program maturity and continuous improvement initiatives. - Participate in projects collaborating with stakeholders as needed. - Monitor the Privacy Office inbox and provide timely guidance and responses to inquiries. - Develop and deliver privacy training and awareness initiatives to promote a culture of data protection and compliance. - Draft and review privacy policies and procedures to ensure alignment with applicable regulations and organizational standards. Qualifications - Bachelor’s degree in Cybersecurity, Information Security, Law, Privacy, Healthcare or related field (or equivalent experience). Requirements - 5+ years of experience in Privacy Operations. - Experience building or leading a Privacy Incident Response function preferred. - Direct interaction with regulators or auditors. - Knowledge of data mapping, data governance, and privacy engineering. - Handling data breach or privacy incidents. - Strong understanding of data protection regulations (HIPAA, GDPR, CCPA, etc.). - Familiarity with privacy principles and data classification. - Understanding of the incident response lifecycle (NIST/SANS framework familiarity). - Certifications such as: - CIPP (US/E, or equivalent) - CIPM / CIPT - CISSP, CISM, or GIAC (GCIA, GCIH) - Certified Healthcare Compliance Professional (CHC) or Certified Healthcare Privacy Compliance (CHPC) - Experience in healthcare or other regulated industries. Benefits - Comprehensive benefits package including medical, dental, and vision insurance. - 401(k) with company match. - Paid time off. - Parental leave. Company Description Fresenius Medical Care is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sexual orientation, gender identity, parental status, national origin, age, disability, military service, or other non-merit-based factors.

View details: Senior Privacy Specialist Cyber Security and Privacy Operations

United States

$88K - $147K / year

Apply

Director, Network Security Operations

DSV

DSV is a global leader in transport and logistics, evolving to become the world's 3rd largest supplier of global solutions within transport and logistics. We operate in more than 80 countries, ensuring a steady supply of goods to production lines, outlets, stores, and consumers worldwide.

Security Operations2 days ago

Full Time Remote LeadTeam 10,001

Role Description The Director of Network Security Operations will lead the strategy, governance, implementation, and operational sustainment of physical and operational security programs across DSV’s North American Contract Logistics network, High Tech 2 vertical. This role is responsible for ensuring facilities, infrastructure, systems, and operational practices comply with enterprise and customer security standards — particularly for high-security warehousing environments supporting critical infrastructure, sensitive inventory, and restricted operational zones. The leader will drive a scalable and audit-ready security operating model across a geographically dispersed logistics network while partnering closely with operations, engineering, IT, facilities, customer security teams, and third-party security providers. The role requires strong leadership through influence across highly matrixed stakeholder groups. Key Responsibilities - Security Operations & Governance - Develop and maintain security governance programs aligned to customer and enterprise security requirements - Ensure operational compliance with: - Zone-based access control methodologies - Critical component handling protocols - Chain-of-custody standards - Security incident management procedures - Physical infrastructure protection requirements - Establish scalable security standards across site-types, supporting varying operational risk profiles - Security Systems & Infrastructure - Lead strategy and operational oversight for: - Access control systems - CCTV/video surveillance infrastructure - Intrusion detection systems - Alarm monitoring - Security command center operations - Ensure security systems meet operational and compliance standards for: - Video retention - DORI coverage requirements - Environmental monitoring - UPS and generator-backed resiliency - Network segregation requirements - Partner with IT and engineering teams to ensure secure deployment and sustainment of: - Security hardware - Approved device standards - Integrated monitoring solutions - Access management systems - Oversee security vendor relationships, system integrators, and guard force providers - Incident Response & Risk Management - Lead development and execution of network-wide: - Security incident response plans - Escalation procedures - Business continuity support protocols - Emergency response coordination - Ensure all incidents involving restricted areas, critical components, or infrastructure are investigated, documented, and resolved in accordance with defined protocols - Establish risk assessment and audit programs supporting: - Quarterly physical security assessments - Security system testing - Compliance reviews - Corrective action management - Lead root cause analysis and mitigation planning for security vulnerabilities or operational gaps - Operational Partnership & Stakeholder Management - Drive accountability across operational partners with and without direct authority - Partner closely with: - Site Operations Leadership - IT & Infrastructure teams - Engineering & Facilities - Customer security organizations - Legal, HR, and Compliance teams - Support customer audits, compliance reviews, and security program presentations - Continuous Improvement & Program Development - Establish KPIs and scorecards for: - Security compliance - Incident trends - Access management - Audit performance - Security system uptime - Drive continuous improvement initiatives focused on: - Risk reduction - Process standardization - Security automation - Operational scalability - Develop long-term security roadmap supporting business growth, customer requirements, and evolving threat landscapes Qualifications - 10–15+ years in physical security, security operations, supply chain security, or critical infrastructure protection - 5+ years leading enterprise or multi-site security operations programs - Experience supporting: - High-security warehousing environments - Critical infrastructure operations - Data center or technology supply chain security - Regulated or highly controlled operational environments - Proven experience implementing and sustaining: - Zone-based security frameworks - Access control governance - CCTV and surveillance programs - Security incident management processes - Experience driving compliance within matrixed operational organizations - Strong executive presence and stakeholder management capability - Ability to drive operational compliance through both influence and direct ownership - Excellent crisis management and decision-making capability - Strong analytical and risk-based problem-solving skills - Ability to balance operational efficiency with stringent security requirements Technical & Functional Skills - Strong understanding of: - Physical access control systems - CCTV/video surveillance platforms - Security Operations Center (SOC) environments - Alarm monitoring systems - Critical infrastructure protection - Experience with: - Badge access systems - Dual-authentication security controls - Chain-of-custody processes - Security audit and compliance programs - Incident response management - Familiarity with: - WMS and warehouse operational environments - Network/server room security controls - UPS and environmental monitoring systems - Security system resiliency standards - Advanced proficiency in: - Excel - Power BI/Tableau - Security reporting and incident management platforms Travel - Expected 20-30% travel Compensation For this position, the expected base pay range is $160,783.00 – $200,979.00 Annual. Actual compensation will be determined based on job-related factors such as relevant experience, skills, education, certifications, and geographic location, in accordance with applicable laws and company policy. Benefits Information regarding DSV’s benefits offerings, including eligibility, coverage options, and plan details, is available through the DSV Benefits Showcase. Benefits, programs, and eligibility may vary by location and division in accordance with applicable state and local laws. Company Description DSV - Global transport and logistics In 1976, ten independent hauliers joined forces and founded DSV in Denmark. Since then, DSV has evolved to become the world's 3rd largest supplier of global solutions within transport and logistics. Today, we add value to our customers' entire supply chain by transporting, storing, packaging, re-packaging, processing and clearing all types of goods. We work every day from our many offices in more than 80 countries to ensure a steady supply of goods to production lines, outlets, stores and consumers all over the world. Our reach is global yet our presence is local and close to our customers.

View details: Director, Network Security Operations

United States

$160.8K - $201.0K / year

Apply

227more opportunities are still waiting for you.Log in now and take your next shot before someone else does.