[Apply in 3 Minutes] Security Operations Manager

Job Description

Devo, the cloud-native logging and security analytics company, empowers security and operations teams to maximize the value of all their data. Only the Devo platform delivers the powerful combination of real-time visibility, high-performance analytics, scalability, multi-tenancy, and low TCO crucial for monitoring and securing business operations as enterprises accelerate their shift to the cloud.

Headquartered in Boston, Mass., Devo is backed by Insight Partners, Georgian, and Bessemer Venture Partners. Learn more at www.devo.com.

At Devo, cybersecurity is at the core of everything we doenabling trust with our customers,

partners, and teams. As cyber threats become more advanced, our Security Operations Center

(SOC) and security engineering practices are critical in safeguarding digital assets.

We are seeking a Cyber Security Manager who brings deep technical expertise, leadership

skills, and a passion for automation and AI-driven security operations. This role will focus on

managing SOC vendor performance, enhancing our detection and response capabilities, and

driving continuous improvement in cloud security (AWS), vulnerability management,

penetration testing, and compliance adherence.

If you are highly skilled in SIEM, SOAR, EDR, automation, and agentic AI, and want to lead

security operations at scale, this role is for you.

Responsibilities:

In this role you will work cross-functionally in a fast-growing global cybersecurity company,

focusing on information security best practices covering a multitude of different verticals.

SOC Management & Vendor Oversight

- Manage and oversee SOC vendor performance, ensuring adherence to SLAs, escalation

timelines, and reporting standards.

- Conduct regular reviews of incident handling, playbooks, and metrics to drive efficiency

and accountability.

Threat Detection & Incident Response

- Lead advanced monitoring and response processes leveraging SIEM, SOAR, EDR, and

agentic AI-based security tooling.

- Oversee and guide investigations into critical security incidents, ensuring timely

containment and remediation.

- Develop automation-driven playbooks in SOAR and AI-enhanced workflows to streamline

detection and response.

Cloud & Infrastructure Security (AWS Focus)

- Implement and monitor AWS security best practices, IAM controls, and continuous

compliance checks.

- Coordinate security assessments and penetration testing across cloud and hybrid

environments.

Vulnerability & Compliance Management

- Own the vulnerability management lifecycle, from detection to remediation tracking with

stakeholders.

- Ensure compliance with global frameworks (ISO 27001, NIST CSF, GDPR, etc.) and internal

security policies.

- Partner with audit teams to ensure SOC and cloud environments remain audit-ready.

Automation, AI & Continuous Improvement

- Drive automation-first and agentic AI-enabled initiatives to improve SOC efficiency,

reduce manual workload, and accelerate response times.

- Design AI-driven detection models, enrichment pipelines, and automated decisioning

frameworks.

- Continuously evaluate new security tools, AI/ML models, and integrations to strengthen

operational resilience.

Cross-Functional Collaboration

- Work closely with IT, DevOps, Cloud, and Product Security teams to embed security in

workflows.

- Share threat intelligence insights and lead tabletop exercises to improve response

maturity.

Qualifications And Experience

- 10+ years of experience in Cyber security domains including SOC, AWS, VAPT, Compliance.
- Certifications preferred ISC2 CISSP, ISACA CISA, CISM either ISC2 or ISACA.
- Strong knowledge of AWS security controls, architecture, and compliance requirements.
- Hands-on experience with penetration testing and vulnerability management tools.
- Proficiency in SIEM, SOAR, EDR, and AI-driven security platforms with strong focus on

automation.

- Experience leveraging agentic AI for threat hunting, automated response, and

operational decision-making.

- Deep understanding of SOC operations, incident response lifecycle, MITRE ATT&CK, and

cyber kill chain.

- Familiarity with regulatory standards and compliance frameworks (ISO 27001, NIST,

GDPR).

- Experience scripting/automating in Python, PowerShell, or JSON for SOAR and AI

playbooks.

- Strong leadership, vendor management, and cross-functional collaboration skills.
- Excellent written and verbal communication skills with ability to influence stakeholders.