Security operations manager

How You'll Make an Impact:

As a Security Operations Manager, you will provide technically adept and leadership-driven oversight to our security operations function in a highly regulated healthcare environment. This role is both strategic and hands-on in nature. You will balance the need to be directly involved in the creation of SOPs around threat detection, incident response, tooling optimization, as well as managing a team of Security Engineers. Strata will require the alignment of Security Operations with strict regulatory and compliance requirements such as HITRUST, ISO 27001, SOC 2, and SOX.

The ideal candidate will drive operational maturity through process development, automation with an eye towards leveraging AI tools, and intelligent decision-making. You will manage a team of professionals with strong IT foundations, mentoring their evolution through hands-on guidance, risk-based frameworks for decision making, and enabling thoughtful autonomy in the Security Operations function.

Technical Operations & Incident response

• Lead day-to-day security operations including monitoring, threat detection, triage, investigation, and incident response.
• Operate and tune security platforms such as SIEM, EDR, vulnerability management, and threat intelligence tools.
• Leverage AI and automation tooling to streamline workflows, improve detection fidelity, and reduce manual effort.
• Act as an escalation point for complex incidents, root cause investigations, and cross-team coordination.
  
  

Playbook & Process Development

• Develop and maintain Standard Operating Procedures (SOPs) and incident response playbooks tailored to healthcare-specific threat vectors and compliance obligations.
• Automate repeatable tasks through SOAR platforms, scripting, and AI-enhanced processes.
• Iterate on processes and procedures already in place to be more efficient and repeatable.
• Ensure alignment of operational practices with HITRUST CSF, ISO 27001, SOC 2 Type II, and SOX ITGC controls.
  
  

Team Development & Leadership

• Manage and mentor a security operations team to facilitate building deeper expertise in cybersecurity.
• Create a learning-focused culture that encourages knowledge sharing, experimentation, and continuous improvement.
• Foster risk-aware decision-making, enabling the team to act confidently with limited oversight using standardized risk frameworks.
  
  

Governance & Risk Alignment

• Support security-related audits, evidence collection, and control mapping.
• Embed security operations processes into broader risk management and governance activities, contributing to HITRUST certification, ISO audits, and SOC/SOX readiness.
  
  

Cross-Functional Engagement

• Collaborate with IT, DevOps, Infrastructure, and R&D Engineering teams to secure critical infrastructure, applications, and workflows.
• Advocate for security as a business-enabler by balancing regulatory needs, business objectives, and technical feasibility.
• Provide regular operational metrics and risk insights to leadership and stakeholders.
  
  

What we're looking for:

• 5+ years of experience in security operations, blue teaming, or incident response roles.
• 2+ years in a leadership or supervisory capacity.
• Hands-on expertise with:
  • Security platforms: SIEM, EDR/XDR, threat intel, SOAR
  • Scripting/automation: Python, PowerShell, Bash
  • Log analysis, detection engineering, threat hunting
• Experience integrating operations with compliance standards such as HITRUST, ISO 27001, SOC 2, and SOX.
• Strong understanding of MITRE ATT&CK, NIST 800-53/800-61, and CIS Controls.
• Experience in regulated industries, especially healthcare and PHI environments.
• Demonstrated success in creating SOPs, playbooks, and team workflows.
• Certifications such as GCIH, GCFA, CISSP, CISM
• Pragmatic and outcome-oriented; able to align security with business impact.
• Proven mentor and leader with a passion for developing others.
• Strong communicator with both technical teams and executive stakeholders.
• Curious, analytical, and proactive in exploring AI and automation to elevate security outcomes.
  
  

Estimated Salary Range: $112,000 - $140,000

Actual salary will be determined based on factors including, but not limited to, skill set and level of experience. This salary range is a good faith estimate of base pay. Strata also provides discretionary variable pay programs based on role. In addition, Strata provides a comprehensive benefits package including retirement benefits, health and welfare benefits, paid time off, parental leave, life and accident insurance, and other voluntary and well-being benefits.

Find Out More About Strata Benefits Here.

How we work:

The preferred location for this role is in Chicago, IL or St. Louis, MO. We value our people spending time together and have campuses hosting in-person events located in both cities. We are truly a hybrid environment with all team members experiencing the flexibility to work from home.

Thinking about applying?

Research shows that women and underrepresented groups tend to apply to jobs only when they check every box on a job posting. If you're currently reading this and hesitating to click "Apply" for that reason, we encourage you to go for it! A true passion and excitement for making an impact is just as important as work experience.

Should you require a reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please reach out to [email protected].

Here @ Strata…

Our culture is driven by our people solving problems together. We embrace learning, collaboration, and continuous career growth. Together, we lift our customers, our products, our company, and our community.

We believe that each of our team member's unique perspectives and experiences is what drives innovation and positive change. Our individual differences are what make us a more forward-thinking organization. We foster a culture of inclusion, equity and belonging, regardless of race, religion, disability, sex, sexual orientation, gender identity or national origin.

Our Core Values:

While we celebrate what makes each member of our team unique, our core values are what connect us. They set clear expectations for how we approach our work and how each of us can positively influence the experience of our team and our customers.

• We connect with positive intent.
• We are helpful.
• We own it.
• We get better every day.
• We are humble.