About the Role:The Security Manager is the tactical owner of day-to-day security operations at XTIUM. This role coordinates internal teams and external partners to manage alerts, incidents, vulnerability remediation, testing follow-up, and control execution. The Manager ensures security work is translated into clear tickets, owners, deadlines, and evidence, while maintaining strong operating discipline and communication. Success in this role means smoother handoffs, faster remediation, and more predictable operational security outcomes.
Job Responsibilities:- Manage daily security operations workflows across ESD, Ascent, and internal stakeholders, including triage, escalation, and follow-through.
- Coordinate incident response activities, maintain playbooks, and ensure evidence, timelines, and decisions are documented.
- Track vulnerability findings, penetration test results, and CTEM actions through remediation, retesting, and closure.
- Monitor security metrics and prepare recurring reporting on cases, remediation status, exceptions, and control performance.
- Drive operational handoffs between Tier 1 intake, SOC escalation, engineering remediation, and business owners.
- Support audits and customer assurance requests by collecting evidence, validating control execution, and maintaining documentation.
- Identify process gaps and execute improvements to strengthen security operations, service quality, and response readiness.
Job Qualifications:- 5+ years of experience in security operations, incident response, vulnerability management, or related operational security roles.
- Experience working with MSSP, MDR, SOC, SIEM, or managed detection partners in a co-managed operating model.
- Familiarity with security case management, playbooks, ticketing workflows, and escalation processes in a fast-paced IT services environment.
- Working knowledge of Microsoft Sentinel, endpoint telemetry platforms such as CrowdStrike, and common logging or alert triage practices.
- Strong communication and coordination skills, with the ability to keep technical and non-technical stakeholders aligned on actions and status.
- Ability to manage competing priorities, push remediation to closure, and maintain disciplined documentation and follow-up.
- Bachelor's degree or equivalent experience required; Security+, GCIH, GCIA, CISSP, or similar certification preferred.
The salary range for this position is $100,000 - $130,000/annually. Compensation may vary outside of this range depending on a number of factors, including a candidate's qualifications, skills, competencies, experience, and location. We offer a competitive benefits package with Med/Dental/FSA/401(k)/Flexible Paid Time Off.
Remote
