Manager, Cybersecurity

TL;DR

Manager, Cybersecurity (Security Operations): Lead and mature global security operations for a multi-cloud SaaS environment with an accent on 24x7 threat detection, incident response, and continuous security monitoring. Focus on building security operations capabilities, optimizing security tooling (Microsoft Defender, SIEM/SOAR, cloud-native tools), and driving AI/automation to scale analyst impact.

Location: USA - Colorado (Denver, CO). Hybrid; candidates must reside within reasonable commuting distance and be on-site at least three days per week.

Salary: $145,000–$175,000 annually

Company

hirify.global delivers legal tech solutions for law firms and corporate legal teams.

What you will do

• Own and drive the global Security Operations program, including 24x7 monitoring, detection, and response.
• Lead and develop security analysts and engineers; set goals, manage performance, and optimize capacity and workload prioritization.
• Oversee threat detection, triage, investigation, and incident response; maintain and refine incident response playbooks.
• Run cloud security operations across Azure and AWS, including cloud security posture management and secure monitoring of workloads and SaaS infrastructure.
• Harden corporate infrastructure and enforce security policies across identity, devices, and data (Entra ID, Intune, Purview, Defender for Office 365, DLP, phishing simulation).
• Track security operations KPIs, leverage AI-powered security tools (e.g., Microsoft Security Copilot), and support governance/compliance and audits.

Requirements

• 8+ years in information security, including 3+ years in a management role leading security operations or SOC teams.
• Deep security operations experience in cloud environments with Azure and AWS required.
• Hands-on expertise with Microsoft Defender stack (Defender for Endpoint, Defender for Cloud, Sentinel) and cloud security posture management tools.
• Proven experience building and maturing security operations programs and leading incident response.
• Strong knowledge of threat detection methodologies, MITRE ATT&CK, and modern attack techniques.
• Experience with identity and access management, conditional access, and Zero Trust; plus hands-on endpoint hardening, DLP, email security, and phishing simulation.

Nice to have

• Experience with Upwind or similar CNAPP platforms.
• Certifications such as CISSP, CISM, GIAC (GSOM, GCIH, GCIH, GCIA), or Azure/AWS security certifications.
• Experience in a SaaS or legal technology environment.
• Familiarity with SOC 2, ISO 27001, or similar compliance frameworks.

Culture & Benefits

• Hybrid working model with on-site presence at least three days per week in Denver, CO.
• Comprehensive benefits package including health, dental, and vision insurance, and 401(k) with company contribution.
• Generous paid time off and support for work-life balance.
• Opportunities for career growth and professional development.
• Emphasis on collaboration, continuous learning, and accountability.

Hiring process

• Interviews to assess security operations leadership, incident response experience, and cloud security expertise.
• Evaluation of technical depth across Microsoft Defender, SIEM/SOAR, and cloud security posture management.
• Discussion of leadership approach, communication style, and alignment with security governance/compliance expectations.