Manager, IT - SOC

Ivalua Inc.
Pittsburgh, United States of America
22 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate
Compensation
$ 181K

Job location

Pittsburgh, United States of America

Tech stack

Amazon Web Services (AWS)
Software Applications
Azure
Cloud Computing
Cloud Computing Security
Computer Security
Databases
Identity and Access Management
IT Management
Information Technology Operations
PCI Data Security Standards
Runbook
Security Information and Event Management
Systems Integration
Software Vulnerability Management
Web Applications
Data Logging
Google Cloud Platform
Cloud Platform System
Software Security
Mitre Att&ck
Mttr
QRadar
Cyber Threat Analysis
Cybercrime
Microsoft Sentinel
CIS Benchmarks
Splunk
SentinelOne Expertise
Qualys
Security Orchestration, Automation & Response
Vulnerability Analysis

Job description

Our IT department, international in scope (EMEA, AMER, APAC) and in full growth, is made up of over sixty IT & Cybersecurity professionals in charge of the deployment and operations of the Ivalua Cloud, which hosts the environments for our clients around the world. It is also responsible for internal IT infrastructures, IT applications and data, IT support for our users as well as the Security monitoring & IT security handling., The Manager, IT SOC is responsible for leading and developing a global Security Operations Center team, ensuring 24/7 security monitoring, effective incident response, and proactive vulnerability management across the organization.

This role provides technical leadership, operational governance, and strategic direction to protect the company's infrastructure, cloud environments, applications, and data from cyber threats.

You will report to the Global IT Director and will manage a distributed team of SOC analysts based in the United States, France, and India, ensuring consistent processes, tooling, and service levels across regions.

WHAT YOU WILL DO WITH US

  • SOC Operations & Security Monitoring

  • Lead and manage the global SOC team (6 analysts across multiple time zones, relying also on our 24/7 global IT Service center in India).

  • Ensure continuous monitoring of security events using SIEM, EDR/XDR, NDR, and cloud security tools.

  • Define, maintain, and optimize SOC processes, playbooks, and runbooks.

  • Ensure detection use cases are continuously improved to reduce false positives and increase detection coverage.

  • Manage SOC KPIs and SLAs (MTTD, MTTR, alert volume, incident closure rates).

  • Incident Response & Threat Management

  • Oversee security incident handling from triage to containment, eradication, and recovery.

  • Act as escalation point for major security incidents and coordinate with IT, Infosec, Business, Legal, and Communications teams.

  • Lead post-incident reviews (lessons learned, root cause analysis) and implement remediation plans.

  • Coordinate with external partners (MDR providers, forensics firms, law enforcement if required).

  • Vulnerability Management

  • Collaborate closely with Infosec on the vulnerability management lifecycle: scanning, prioritization, remediation tracking, and reporting.

  • Work with infrastructure, cloud, and application teams to ensure timely patching and risk mitigation.

  • Define vulnerability SLAs based on risk and business criticality.

  • Help Infosec to provide risk-based reporting to technology and business stakeholders.

  • Governance, Risk, and Compliance Support

  • Contribute to security policies, standards, and operating procedures.

  • Support audits, regulatory requirements, and frameworks (e.g., ISO 27001, NIST, SOC2, PCI DSS, GDPR, HIPAA, FEDRAMP, IRAP).

  • Maintain documentation and evidence for security operations controls.

  • Tooling & Technology Strategy

  • Own SOC tooling strategy (SIEM, SOAR,, vulnerability scanners, cloud security tools, etc.) and contribute to the other IT security solutions (EDR/XDR, Network & Cloud Security, Identity protection, etc.). Evaluate and implement new security technologies and integrations.

  • Drive automation and orchestration to improve SOC efficiency and reduce manual workload.

  • Contribute actively to the security logging quality (new technologies, review existing log sources and help to get them optimized and cleaned-up).

  • Team Leadership & Global Coordination

  • Manage and mentor SOC analysts across regions and time zones.

  • Define shift models, on-call rotations, and coverage strategy.

  • Conduct performance reviews, training plans, and career development.

  • Foster collaboration between US, France, and India teams to ensure consistent operations and engage actively with the overall IT & Infosec community

  • Reporting & Stakeholder Communication

  • Produce executive-level security operations reports and dashboards.

  • Communicate risks, incidents, and trends to senior leadership (CISO, IT leadership, risk committees).

  • Provide guidance to engineering and business teams on security best practices., If your application fits this specific position's needs, our skilled Talent team will reach out to schedule an initial screening call. Get one step closer to achieving your goals - apply today!

Our Talent team will guide you through every step of the interview process - from preparation to completion. They're here to support you!

Our recruitment process is designed to assess your competencies through a series of personalized interviews with internal stakeholders relevant to the role.

Interviews will be conducted virtually via video or on-site with face-to-face meetings.

Requirements

SIEM platforms (Splunk, Microsoft Sentinel, QRadar, Elastic, etc.)

EDR/XDR solutions (Microsoft Defender, CrowdStrike, SentinelOne, etc.)

Cloud security (Azure, AWS, GCP security monitoring and logging)

Proficient:

Vulnerability management tools (Qualys, Tenable, Rapid7, etc.).

Knowledge of NIST, MITRE ATT&CK, ISO 27001, SOC2, CIS benchmarks, and ITIL/IT operations processes

Excellent understanding of networking, operating systems, and application security fundamentals

Basic knowledge:

Familiarity with SOAR, threat intelligence platforms, and security automation

Knowledge of web application & database

Required experience:

Bachelor's degree in relevant field preferred with a minimum of 10 years of relevant professional experience, OR Master's degree in relevant field with a minimum of 8 years relevant professional experience, OR Equivalent combination of education and experience

Relevant certifications such as GIAC, OSCP, HTB are preferred. 7-12+ years in cybersecurity, with 3-5+ years in SOC or security operations leadership.

Proven experience managing distributed/global security teams.

Strong background in incident response, security monitoring, and vulnerability management.

*Nice to have" experience:

Knowledge of cloud concepts and platforms, especially Azure.

Experience in an international company & team.

Experience in monitoring regulated environments (Fedramp, IRAP)

Soft skills:

Strong leadership and people management skills

Structured, process-driven, and comfortable with crisis management, problem solving aptitude

Team player, good communication skills and confortable working in multicultural, global teams and across time zones.

Strong reporting & good documentation writing skill.

Benefits & conditions

Base range minimum: $108,750

Base range maximum: $181,250

*Additional compensation / rewards: In addition to the base salary information above, Ivalua offers an uncapped commission plan as part of the competitive compensation package. Other compensation factors may also be considered. Ivalua also offers exceptional benefits including medical, dental, vision, retirement (with company match), and much more.

About the company

Created in 2000, Ivalua is a leading global provider of cloud-based procurement solutions., At Ivalua we are a global community of exceptional professionals, who believe that digital transformation revolutionizes supply chain sustainability and resiliency to unlock the power of supplier collaboration. We achieve this through our leading cloud-based spend management platform that empowers hundreds of the world's most admired brands to effectively manage all categories of spend and all suppliers to increase profitability, improve ESG (environmental, social, and corporate governance) performance, lower risk, and improve productivity. Driven by our passions and fueled by our shared ambitions, we empower and challenge each other to create meaningful experiences for our colleagues, customers, partners, and communities. Learn more at www.ivalua.com. Follow us on LinkedIn (https://www.linkedin.com/company/ivalua) and Twitter (https://twitter.com/ivalua) ., + Comparably recognized Ivalua for the following (https://www.comparably.com/companies/ivalua) : Powered by People - Powered by You! United by our values we embrace diversity and equity in the broadest possible sense to create an inclusive workplace. To help our customers make supply chains more efficient, sustainable and resilient, we rely on a global team with a variety of backgrounds, skills and views. We believe in equal opportunity and in diversity as a driver of innovation that cultivates a spirit of inclusiveness, creates a productive and fun place to work, and provides fulfilling career opportunities for all Ivaluans. https://www.linkedin.com/company/ivalua/about/ Experience life at Ivalua - check out our captivating video (https://www.youtube.com/watch?v=irkygoq3kCc&t=4s) ! Gain insight into our unique company culture and get a glimpse of what it's like to work with us. One of Ivalua's core values is to Care & Grow People. We take matters like pay equity very seriously and strive to reward our employees appropriately and fairly for their talents. The salary range for this position is based upon careful and continual market compensation research. In addition to location, salary may also vary based upon job-related knowledge, skills, and experience.

Apply for this position