Expoint - all jobs in one place

The point where experts and best companies meet

Limitless High-tech career opportunities - Expoint

Vimeo Sr Manager Security Operations Engineering 
United States, New York, New York 
948888354

15.12.2024

Vimeo is seeking an experienced and strategic Senior Manager of Security Operations reporting to the Director of Information Security. The Senior Manager will manage the day-to-day operations of Engineers and Analysts dedicated to managing technical security controls and incident response. The Senior Manager will drive operational excellence in evaluating current capabilities and predicting future needs, working with internal stakeholders, vendors, and peers to foster continuous improvement. This individual will play a critical role aligning Security and Engineering efforts, fostering a team transformation that prioritizes communication and operational excellence, as well as maturing Incident Response by establishing clear goals and robust processes.

Security Controls Engineering

  • Implements and maintains healthy and effective security controls to protect against threats, detect possible intrusions, and respond to security alerts and incidents.
  • Maintains and enhances Zero Trust Network Access (ZTNA), Cloud Security Posture Management, Email Security, Endpoint Protection and more.
  • Partners with Engineering to remediate vulnerabilities using a risk-based approach.
  • Automate alert collection, prioritization, tasks and processes, and periodic audits.
  • Scripts using perl, python, shell, or other scripting languages.
  • Multi-cloud environment experience desired, but detailed knowledge of at least one cloud environment required.
  • Research and understand initial threat vectors, create protection mechanisms to prevent threat recurrences, and recommend security best practices and system configuration improvements.

Incident Response

  • Support and enhance Vimeo’s ability to detect and respond to security incidents, including internal events, targeted attacks, and all other cyber incidents.
  • Facilitate and lead incident response calls, provide documentation and reports to senior management, and maintain incident documentation.
  • Ensure Corporate Security owned infrastructure, event feeds, event processing, and asset intelligence are available and operating effectively.

Operational Excellence

  • A passion for operational excellence, with a focus on driving efficiency, clarity and organizational alignment.
  • Drive continuous improvement in processes, identifying and implementing tools and frameworks that increase efficiency and transparency.
  • Set goals, track progress, and regularly communicate performance.
  • Act as a key point of contact between the Engineering, Product, and business teams to ensure all functions are aligned and working towards shared objectives.

Leadership and Transformation

  • Lead the Security Operations team, providing strategic direction, mentorship and guidance to achieve operational goals.
  • Foster collaboration between Security, Product, Engineering, and other necessary teams to ensure alignment of objectives, resources, and priorities.
  • Seeks to scale teams impact through sustainable processes.
  • Proven experience as a team leader overseeing a geographically distributed team.
  • Exceptional leadership and communication skills, with the ability to manage cross-functional teams and align stakeholders on complex initiatives.
  • Affinity for using data to inform strategic decisions.

Skills and knowledge you should possess:

  • Experience maintaining and configuring security controls using endpoint protection technologies, modern SaaS applications and network firewalls.
  • Able to communicate about security vulnerabilities and remediation techniques in an accessible way to a variety of audiences.
  • Experience building and maintaining tools to assist with incident response and other security tasks
  • Experience with post-incident analysis and writing postmortems to help the organization learn from incidents
  • Strong understanding of security principles, standards, regulations, and best practices (e.g., NIST, ISO 27001, CPRA, CIS)
  • Well-versed with a project management and issue tracking tool, such as, Jira
  • Self-starter that is comfortable with ambiguity and makes data-driven decisions
  • A passion for operational excellence, with a focus on driving efficiency, clarity and organizational alignment.
  • Drive continuous improvement in processes, identifying and implementing tools and frameworks that increase efficiency and transparency.
  • Set goals, track progress, and regularly communicate performance.
  • Act as a key point of contact between the Engineering, Product, and business teams to ensure all functions are aligned and working towards shared objectives.
  • Lead the Security Operations team, providing strategic direction, mentorship and guidance to achieve operational goals.
  • Foster collaboration between Security, Product, Engineering, and other necessary teams to ensure alignment of objectives, resources, and priorities.
  • Seek to scale teams impact through sustainable processes.
  • Proven experience as a team leader overseeing a geographically distributed team.
  • Exceptional leadership and communication skills, with the ability to manage cross-functional teams and align stakeholders on complex initiatives.
  • Affinity for using data to inform strategic decisions.

Bonus points (nice skills to have, but not needed):

  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field, or equivalent work experience.
  • Relevant certifications such as CISSP, CCSP, GCIH, or GCFA.

Base Salary Range:

  • NYC Metro, Bay Area, Seattle, & Los Angeles: $184,000 - $251,500
  • All other US cities outside above metro areas: $165,600 - $226,350

We also offer paid time off, generous 401k match, commuter benefits, Health Savings Account (HSA), Flexible Spending Account (FSA), fertility reimbursement, group term life insurances, wellbeing resources, and more.