CarGurus · 2 months ago
Manager, Threat Detection and Response
Boston, MA
Full-time
Hybrid
Mid, Senior Level
$154K/yr - $205K/yr
7+ years expCarGurus is the largest and fastest-growing automotive marketplace, committed to innovation and customer satisfaction. The Manager of Threat Detection and Response will ensure the security of CarGurus' network and cloud infrastructure by leading incident response efforts and enhancing security monitoring capabilities.
AutomotiveClassifiedsPrice ComparisonShopping
Responsibilities
Serve as the primary Incident Commander (IC) for significant security incidents, leading with a calm, decisive, and transparent approach from detection to remediation
Collaborate with the cross-functional incident response team to ensure rapid detection and containment of cyber threats
Act as a coach to develop and mature the Incident Response program, including on-call rotations, playbooks, and training a bench of future ICs
Collaborates with the Threat Detection and Response team to continuously improve cybersecurity capabilities in identification, management, and response to threats in the most efficient and effective manner
Lead the modernization of our detection and response program, establishing a "Detection-as-Code" (DaC) framework using version control and CI/CD principles
Foster a culture of rapid testing, iteration, and continuous improvement of all detection logic to reduce false positives and increase fidelity
Use your expertise in AWS security, Terraform, and Hashicorp Sentinel to influence the maturation of our cloud security posture
Challenge assumptions and experiment with novel approaches to gain visibility and enforce security policy as code in our cloud environments
Lead, mentor, and empower your team of security engineers, fostering a growth mindset and an environment of learning and development
Qualification
Required
7+ years in cybersecurity, with deep, hands-on experience in Incident Response, Detection Engineering, and/or Cloud Security
3+ years in a formal leadership role, with a proven track record of coaching and developing small, highly technical teams
Direct, hands-on experience as an Incident Commander for complex security incidents
Practical experience with Detection & Response tools for network, endpoints, cloud, and identity as well as SOAR platforms
Demonstrate a strong security engineering and architecture background to best understand how to employ the most effective and efficient security monitoring
Deep expertise in AWS security and architecture (e.g., GuardDuty, CloudTrail, IAM) and a forward-looking vision for implementing currently-immature controls (e.g., SCPs, Control Tower)
Hands-on experience with container security and data-layer security
Expert level knowledge on the attack kill chain and diamond model
Proven experience building or managing a 'Detection-as-Code' program
Expertise in operationalizing the MITRE ATT&CK framework to measurably improve detection coverage
Benefits
Equity for all employees
Flexible hybrid model
Robust time off policies
Daily free lunch
New car discount
Meditation and fitness apps
Commuting cost coverage
Company
CarGurus
CarGurus is an online automotive destination that assists users in contacting sellers and comparing local listings for new and used cars.
1001-5000 employees
H1B Sponsorship
CarGurus has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (37)
2024 (38)
2023 (36)
2022 (50)
2021 (27)
2020 (23)
Funding
Current Stage
Public CompanyTotal Funding
$1.75M2022-08-11Post Ipo Secondary
2017-10-11IPO
2017-08-16Series A· $1.75M
Leadership Team
Jason Trevisan
Chief Executive Officer
Ben Kasdon
Vice President, Product
Recent News
Business Insider
2026-01-25
GlobeNewswire
2026-01-22
2025-12-30
Company data provided by crunchbase