Manager - Information Security Operations & Threat Intelligence

BenefitsCompetitive compensationMedical, Dental, and Vision insurance401(k) Retirement Savings Plan with substantial company matchLife and Travel InsuranceTuition AssistanceWellness Reimbursement ProgramPaid Holidays and VacationWhat is a Manager – Information Security Operations & Threat Intelligence?The Manager - Information Security Operations & Threat Intelligence oversees and coordinates the activities of the cybersecurity operations team. Responsibilities include developing and implementing security practices for threat intelligence, the security operations center (CSOC), managing incident response and investigations, conducting risk assessments, and staying updated on security trends. The Manager - Information Security Operations & Threat will develop strategies to enhance Central Hudson’s security posture. The Manager - Information Security Operations & Threat is competent in both leading diverse teams and security operations center (CSOC). This role requires a very detailed understanding of Cybersecurity practices and frameworks and is responsible for maturing the cybersecurity operations program and enhancing Central Hudson’s defense. The Manager - Information Security Operations & Threat will be instrumental in building various operational and threat management programs.What does a Manager – Information Security Operations & Threat Intelligence? Develops, implements, and oversees the cybersecurity operations and threat intelligence programs to protect Central Hudson’s assets and critical infrastructure.Develops the Cybersecurity Operations RoadmapContinually develops and manages strategy and maturity of the cybersecurity operations program by partnering with key stakeholders across The CompanyOversees daily CSOC activities, ensuring timely detection and response to security incidentsContinuously reviews and enhances CSOC processes, including playbooks, response procedures, and threat hunting practicesSupervises, mentors, and develops the CSOC AnalystsLeads and manages the day-to-day operations of the Security Operations Center (CSOC)Identifies and implements automation opportunitiesImplements continuous improvement over people, process, and technologiesAssists Cybersecurity Engineers with tuning false positive and/or true positive non-actionable security eventsManages CSOC tools, detections, alertingOversees incident response and investigation activities, ensuring timely resolutionOversees incident response planning and executionConducts regular risk assessments and vulnerability management processesCollaborates with IT and other departments to ensure a cohesive and effective security postureGenerates detailed reports on security incidents, including findings, action taken, and recommendations for future prevention. Provide regular status updates to management and stakeholdersCoordinates with external vendors and stakeholders on security mattersRepresents Security Operations Center at internal/external meetingsDevelops and delivers security awareness training programs for employeesMonitors and reports on key security metrics to executive leadershipManages and guides third party vendor relationships related to the cybersecurity operations programSupports the escalation of risks, issues, actions, & decisions within the programConducts risk assessments and develop strategies to mitigate potential threats and vulnerabilitiesCollaborates with cross-functional teams to integrate security measures into business processes and technology solutionsStays current with industry trends, emerging threats, and best practices to continually enhance the cybersecurity programEstablishes and maintains relationships with key stakeholders, communicating security policies, incidents, and mitigation strategiesEnsures compliance with relevant regulations and standardsProvides coverage in a 24/7 shift environment, including nights, weekends, and holidaysParticipates in on-call as needed to respond to security incidents outside of regular working hoursProvides storm/emergency response supportWhat does it take to be a Manager – Information Security Operations & Threat Intelligence?RequiredBachelor’s degree in Computer Science, Information Technology or related field of study and 5 years of Information Security or closely related experience. In lieu of a bachelor’s degree, an associate’s degree with 7 years of Information Security or closely related experience or a high school diploma or equivalency degree and 9 years of related experience will be considered.Proven leadership, facilitation, and organizational skills with at least 3 years of experience in a leadership roleProven experience in cybersecurity management with a focus on operations and CSOC managementProven experience with cybersecurity incident response and managementProven experience with creating and maintaining external and internal relationships with key stakeholdersProficient in security technologies, including SIEM solutions, IDS/IPS, firewalls, email security, and endpoint protectionExcellent knowledge of threat intelligence, vulnerability management, and risk assessmentStrong leadership skills, with the ability to manage and mentor a teamExcellent communication skills, with the ability to collaborate effectively with diverse teamsFamiliarity with regulatory requirements and compliance frameworksAnalytical mindset with the ability to assess complex situations and make informed decisionsProven ability to present at all levels of the organizationA strong background with an understanding of the intersection between business and cybersecurity to improve security practicesAbility to influence business decision-making by providing quantitative/qualitative data analytics, metrics, and analysisA results-oriented mindset with the ability to solve problems and make decisionsAbility to work with limited direct supervision and professionally respond to constructive feedbackValid driver’s licensePreferredExperience in Energy & Utilities or services industryStrong understanding of cybersecurity frameworks, standards, and best practicesProficient in cloud securityExperience with SOAR solutionsExperience with Microsoft PowerBIExperience with data visualization toolsExperience in risk managementRelevant certifications such as CISSP, CISM, or comparableApplications will be accepted until May 20, 2026.Pay range: $143,100-221,600Please go to https://www.cenhud.com/employment. Click the “Search Career Opportunities” button. Follow the directions to submit an application and upload your resume for the desired position.Applications sent via e-mail and US Mail will not be accepted. No phone calls or agencies, please. All replies will be held in strict confidence.All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, creed, color, ethnicity, arrest or conviction record, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, citizenship, genetic information, familial status, marital status, pregnancy-related condition, domestic violence victim status, veteran or military status, or any other characteristic protected by federal, state or local laws. Central Hudson Gas & Electric Corporation takes affirmative action in support of its policy to employ and advance employment in individuals who are protected veterans and individuals with disabilities.VEVRAA FEDERAL CONTRACTOR