Technical Senior Manager, Security Operations

About Coalfire

Coalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Chicago, Illinois with offices across the U.S. and U.K., and we support clients around the world.

But that’s not who we are – that’s just what we do.

We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.

Position Summary

We are seeking a Technical Senior Manager to oversee Security Operations across SIEM management and continuous monitoring programs, including vulnerability management for FedRAMP and other compliance frameworks.
In this role, you will balance hands-on technical responsibilities with team management, working closely with engineers to solve complex issues while gradually building leadership capacity. You will act as a technical escalation point and collaborate with other internal teams to ensure operational excellence and continuous improvement.
If you enjoy rolling up your sleeves to tackle technical challenges while mentoring a growing team, this role offers the perfect opportunity to combine both skillsets and grow your leadership career.

What You'll Do:
• Act as the primary technical escalation point for complex operational issues across SIEM and continuous monitoring programs, ensuring quick and effective resolutions.
• Maintain and optimize critical security systems, including SIEM platforms (e.g., Splunk, ELK, SumoLogic, Sentinel), vulnerability management and scanning tools (e.g., Nessus, Qualys, Tenable), and Anti-Virus/EDR solutions (Trend Micro Deep Security Manager, Microsoft Defender, Crowdstrike).
• Oversee continuous monitoring activities for FedRAMP and other compliance programs, including vulnerability scanning, configuration management, security control validation, and compliance artifact generation
• Monitor and improve the team's use of automation and monitoring tools to drive operational efficiency across both SIEM and vulnerability management workflows.
• Analyze and resolve system performance issues, ensuring compliance with FedRAMP, SOC, HIPAA, and other security/operational standards.
• Participate in incident response, threat hunting, and post-mortem analysis to identify root causes and prevent recurrence.
• Manage a team of engineers across SIEM operations and continuous monitoring (vulnerability management) functions, fostering a high-performing and engaged team culture.
• Mentor and support the professional growth of engineers through training, feedback, and career development planning.
• Assist with hiring, onboarding, and retention to ensure team stability and growth.
• Oversee day-to-day delivery of security services, ensuring operational consistency and high-quality outcomes for both SIEM and continuous monitoring programs.
• Track and optimize key metrics such as incident response times, vulnerability remediation rates, false positive reduction, operational efficiency, and compliance posture.
• Develop and refine processes for incident response, vulnerability remediation, continuous monitoring reporting, and compliance documentation.
• Work with cross-functional teams, including consulting teams, SREs, and professional services teams, to improve service delivery and client satisfaction.

What You'll Bring:
• 7+ years of hands-on experience in technical roles, such as engineering or operations.
• Proven ability to manage operational processes and handle escalations.
• Experience balancing individual contributor work with team oversight.
• Strong technical expertise with SIEM platforms (e.g., Splunk, ELK, SumoLogic, Sentinel) and vulnerability management tools (e.g., Nessus, Qualys, Tenable).
• Deep understanding of continuous monitoring requirements for FedRAMP, including OSCAL, POA&M management, and automated security control validation.
• Proven ability to troubleshoot and resolve complex technical issues in high-pressure environments across both threat detection and vulnerability management domains.
• Hands-on experience with cloud platforms (AWS, Azure, or GCP) and their associated security practices, including cloud-native vulnerability scanning and CSPM tools.
• Solid understanding of security compliance frameworks (e.g., FedRAMP, SOC, HIPAA, NIST 800-53).
• Ability to mentor and guide team members while contributing to technical solutions.
• Strong written and verbal communication skills, particularly in documenting technical insights and creating compliance artifacts.
• Bachelor’s degree (four-year college or university) or a equivalent work experience.

Bonus Points:
• Experience managing FedRAMP continuous monitoring programs, including ConMon reporting, deviation requests, and ATO maintenance activities.
• Familiarity with IT frameworks such as ITIL or TOGAF.
• Experience with automation tools (e.g., Terraform, Ansible, Python) for security operations and vulnerability remediation workflows.
• Experience with Anti-Virus and EDR tools (e.g., Trend Micro DSM, Crowdstrike, Microsoft Defender).
• Experience with Agile delivery practices or lightweight project management tools.
• Background managing both proactive security monitoring and reactive incident response programs.
• Experience working in professional services or managed services environments.
• Background in customer-facing roles, such as technical support or escalation management.
• Certifications in cloud platforms (AWS, Azure, GCP) are or security tools (e.g., Splunk, Nessus)

Why You’ll Want to Join Us

At Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.

Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.

At Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, contact our Human Resources team at [email protected].