Apply on Employer Site

Cox Automotive Inc. · 1 day ago

Senior Manager of Cybersecurity Detection Engineering

North Hills, NY

Full-time

Onsite

Senior Level, Lead/Staff, Director/Executive

$174K/yr - $290K/yr

8+ years exp

Cox Automotive Inc. is seeking a Senior Manager of Cybersecurity Detection Engineering to lead a team focused on designing and implementing advanced detection capabilities against cyber threats. The role involves developing detection strategies, collaborating with various teams, and ensuring compliance with regulatory standards.

AutomotiveDigital MarketingE-CommerceMarketing

Comp. & Benefits

H1B Sponsor Likely

Responsibilities

Define detection engineering strategy, roadmap, and objectives to achieve

Design and implement advanced threat detection techniques using tools such as SIEM, EDR, NDR, and SOAR platforms

Develop innovative custom detection rules and automated remediation, playbooks, and alerts tailored to the organization's threat landscape for enterprise and customer security

Leverage industry standard MITRE frameworks to identify detection coverage and close gaps

Monitor, optimize, and continuously improve detection systems for performance, scalability, and effectiveness

Collaborates with Threat Detection and Response team to continuously improve cybersecurity capabilities in identification, management, and response to threats in the most efficient and effective manner

Performs attack simulation testing to validate efficacy of use cases and purple teaming exercises collaborating with the Vulnerability Mgmt team

Manages and maintains SIEM/Data Lake data management and log ingestion infrastructure in collaboration with Cyber Defense Engineering

Evaluate, validate, tune, and sunset where necessary detection capabilities

Maintains operational guidelines, diagrams, and documentation for security detection and response

Collaborate with the incident response team to ensure rapid detection and containment of cyber threats

Provide technical expertise and guidance to develop detection use cases during high-severity security incidents

Continuously improve detection and response processes based on lessons learned from incidents

Other duties may be assigned as needed to address new security threats facing the enterprise

Provides off hour support as needed for security administration, detection, and response activities

Leverage threat intelligence to enhance detection capabilities and proactively mitigate risks

Identify and analyze new and emerging threat vectors and incorporate them into detection strategies

Partner with other Cybersecurity, Engineering, and Product teams to align detection strategies with organizational objectives

Communicate detection capabilities and findings to technical and non-technical stakeholders, including executive leadership

Ensure all detection processes and tools adhere to regulatory requirements and industry standards (e.g., GDPR, PCI-DSS, NIST)

Establish and maintain documentation of detection strategies, processes, and configurations

Qualification

SIEM implementationSOAR platformsIncident ResponseThreat IntelligenceDetection EngineeringMulti-cloud securitySecurity MonitoringNetwork SecurityData LakesLeadership skillsCommunication skillsMentoringCollaborationProblem-solvingDocumentation

Required

Bachelor's degree in Computer Science or equivalent and 8+ years of industry related professional experience. The right candidate could also have a different combination, such as a master's degree and 6 years' experience; a Ph.D. and 3 years' experience in a related field; or 20 years' experience in a related field

Multi-cloud security experience AWS, Azure, GCP

Expert level knowledge on Detection Engineering and Security Operations

3+ years of management or leadership experience with direct people management responsibilities

Strong experience with Information Security, Network Security, Security Monitoring, and Incident Response

Strong experience with developing SIEM/SOAR detection and automation use cases

Working experience with industry standard security technologies and services such as Threat Intelligence, Firewalls, SASE, IPS, Endpoint Security, DLP, SIEM/SOAR, and Data Lakes

Expert level knowledge on the attack kill chain and diamond model

5+ years' experience in an Incident Response or Security Operations role

3+ years' leadership experience in a SOC or equivalent role

Must live within a commutable distance to North Hills NY or Atlanta GA and be willing to come onsite 3x a week

Preferred

GSEC, GCIA, GFE, GCFA, CISA, CISSP, CISM, or CIA certification(s)

Development/ Dev Ops / Engineering / Network / System Administration experience

Benefits

Flexibility to take as much vacation with pay as they deem consistent with their duties, the company's needs, and its obligations

Seven paid holidays throughout the calendar year

Up to 160 hours of paid wellness annually for their own wellness or that of family members

Additional paid time off in the form of bereavement leave

Time off to vote

Jury duty leave

Volunteer time off

Military leave

Parental leave

Company

Cox Automotive Inc.

Glassdoor4.0

Cox Automotive is the world’s largest automotive services and technology provider.

Founded in 1997

Atlanta, Georgia, USA

10001+ employees

http://www.coxautoinc.com

H1B Sponsorship

Cox Automotive Inc. has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (131)

2024 (133)

2023 (128)

2022 (139)

2021 (175)

2020 (257)