{"schemaVersion":"jobsearcher.job.v1","id":"f094a0fcfbc56b391d31ff0a","url":"https://jobsearcher.com/jobs/f094a0fcfbc56b391d31ff0a","canonicalUrl":"https://jobsearcher.com/jobs/f094a0fcfbc56b391d31ff0a","title":"Cybersecurity Practice Manager","description":"Application Deadline: 18 July 2026Department: Service DeskLocation: TexasCompensation: $110,000 - $125,000 / yearDescriptionThe Cybersecurity Practice Manager is responsible for the leadership, performance, standards, and operational maturity of the cybersecurity function within Central Services. This role owns the people, processes, tooling, service quality, and strategic direction of managed cybersecurity services delivered across the client base.This position ensures that the Cyber team operates proactively, consistently, and at scale across all managed environments. The Manager oversees SIEM and SOC operating standards, third-party security partner coordination, escalation quality, client risk visibility, compliance support readiness, platform governance, reporting, and continuous improvement of the security service offering.In addition to leading the department, this role also serves as the technical lead and primary security operator. The Manager is accountable for both day-to-day execution and long-term development of the cybersecurity function, ensuring the team delivers consistent, high-quality security outcomes for clients.Key ResponsibilitiesDepartment Leadership & Operational OwnershipLead and manage the cybersecurity department, including day-to-day oversight of priorities, workload distribution, service quality, escalation discipline, and overall team performanceEstablish and maintain departmental standards for proactive security management, incident response, vulnerability management, client communication, documentation, and reportingOwn the cybersecurity department scorecard, including KPIs, service delivery trends, backlog health, SLA adherence, documentation compliance, and client risk visibilityEnsure the team is operating with clear accountability, proper follow-through, and consistency across all recurring cyber functionsMonitor department capacity and staffing needs, making recommendations for role changes, hiring, training, and resource allocation as service demand evolvesLead the operating cadence for the department, including team meetings, one-on-ones, KPI review, issue escalation review, root cause discussions, and continuous improvement planningTeam Management, Coaching & AccountabilityDirectly manage Cyber team members, including performance expectations, coaching, development planning, quarterly reviews, and accountability conversationsCreate clear role expectations and measurable standards for each team member related to execution, quality, documentation, communication, and ownershipEnsure the Senior Engineer — Cyber/Manager is effectively leading technical execution while the department as a whole remains aligned to standards and priorities.Support hiring, onboarding, role design, and future team scaling within the cybersecurity functionDevelop structured growth plans for technical team members, including certification paths, cross-training, mentoring expectations, and progression planningMaintain team readiness for after-hours support, major incidents, client escalations, and continuity of service across the departmentCybersecurity Tooling, SIEM, SOC & Platform GovernanceOwn the operational performance, administration standards, and service delivery model for the cybersecurity tool stack across the client baseOversee the strategic and operational use of SIEM, SOC, MDR, EDR, vulnerability scanning, email security, identity security, awareness training, threat intelligence, dark web monitoring, and related security platformsDefine and maintain standards for alerting, escalation thresholds, tuning expectations, monitoring coverage, investigation procedures, response workflows, documentation requirements, and client reporting across all cybersecurity platformsEnsure cybersecurity tools are configured, maintained, and governed in a way that supports effective service delivery, scalability, and consistent client outcomesReview platform effectiveness regularly, including alert quality, response quality, licensing alignment, coverage gaps, integration issues, and opportunities for automation or optimizationApprove and govern changes to cybersecurity platform standards, default configurations, operational workflows, and escalation models before rolloutSOC, SIEM & Third-Party Security Workflow ManagementOversee SIEM and SOC operating workflows, whether services are delivered internally or through external partners, to ensure proper alert routing, investigation ownership, timely escalation, and documented follow-throughEstablish and maintain clear workflows between the Cyber team and all third-party security providers, including SOC partners, MDR providers, compliance vendors, penetration testing firms, and incident response partnersDefine ownership boundaries, escalation paths, communication standards, handoff procedures, and expected turnaround times for all third-party cyber relationshipsHold third-party vendors accountable for service performance, reporting quality, escalation discipline, and contractual obligationsEnsure third-party workflows are documented, current, and aligned with internal operational expectations and client needsReview partner performance regularly and recommend changes where service gaps, inefficiencies, or quality concerns existService Quality, Escalation Management & Technical OversightMaintain oversight of cybersecurity service quality across all managed clients, ensuring work is executed consistently and in accordance with department standardsServe as the management escalation point for major security incidents, high-risk client issues, unresolved vulnerabilities, recurring security failures, and critical cyber-related service breakdownsReview security assessments, remediation plans, incident response outcomes, hardening recommendations, and root cause findings for quality and completenessEnsure significant incidents are documented properly, escalated appropriately, and followed through to permanent remediation or risk acceptanceMaintain visibility into recurring alert patterns, unresolved control gaps, vulnerability trends, and client environments that require leadership attention or additional actionSupport the Senior Engineer and broader technical team in resolving issues that require cross-functional coordination, priority alignment, or management interventionProactive Security Program OversightEnsure quarterly security posture assessments are completed consistently for all applicable managed clients and are documented to standardOversee the department’s approach to endpoint protection, patch-related security compliance, vulnerability remediation cadence, email security hygiene, identity hardening, and privileged access reviewEnsure proactive security activities are scheduled, completed, tracked, and reported on according to departmental expectationsValidate that findings from proactive reviews are translated into remediation actions, client recommendations, project scopes, or risk tracking as appropriateDrive continual improvement of proactive security programs so the department is not operating reactively or relying solely on alerts and incidents to identify riskClient Risk Oversight & Strategic Security LeadershipMaintain executive-level visibility into client security posture, open risk items, recurring vulnerabilities, incident trends, and accounts requiring elevated attentionEnsure clients receive clear, risk-based guidance related to remediation priorities, security maturity improvements, compliance readiness, and strategic security investmentsSupport Quarterly Business Reviews and strategic client meetings with security posture insights, incident summaries, roadmap recommendations, and leadership-level risk context, as requestedPartner with Client Success and technical leadership to align cybersecurity recommendations with client business priorities, contracted services, and operational realitiesIdentify opportunities for expanded security services, security maturity improvements, compliance-related services, and broader advisory engagementIncident Response, Root Cause & Operational DisciplineEnsure the department maintains current incident response standards, runbooks, escalation procedures, contact trees, and recovery guidance for managed clientsOversee the quality and timeliness of incident triage, response coordination, remediation follow-through, and post-incident review activitiesRequire documented root cause analysis for qualifying security incidents and ensure corrective actions are assigned, tracked, and completedDrive discipline around recurring security issue identification, trend review, and permanent corrective action rather than repeated short-term resolutionEnsure lessons learned from incidents are translated into improved standards, updated runbooks, client guidance, or internal process changesCompliance Support, Governance & Internal SecurityOversee the cybersecurity department’s support of client compliance initiatives, including audit preparation, control validation, remediation tracking, evidence support, and assessor coordinationEnsure the team is prepared to support client needs related to frameworks and standards such as CIS Controls, NIST 800-171, HIPAA Security Rule, SOC 2 Trust Criteria, and similar obligationsOversee penetration testing coordination, findings review, remediation follow-up, and readiness support for clients with formal security or regulatory requirementsOwn oversight of the MSP’s internal security posture within the department’s scope, including staff endpoint protection, MFA enforcement, privileged access hygiene, internal tool access review, and internal cyber improvement planningMaintain visibility into internal security gaps and ensure findings are escalated, tracked, and reviewed with leadership as appropriateDocumentation, Standards & Continuous ImprovementEnsure cybersecurity SOPs, investigation playbooks, standards, hardening guides, and knowledge base content are documented, maintained, and reviewed on a defined cadenceOwn the quality standard for cybersecurity documentation in Hudu and related systemsDrive process refinement across the department to improve consistency, reduce noise, strengthen accountability, and increase scalabilityIdentify and implement automation opportunities that improve alert handling, documentation consistency, reporting, workflow execution, or remediation trackingEnsure the department is continuously improving rather than relying on tribal knowledge or ad hoc executionCross-Functional LeadershipPartner with Service Desk, Central Services, Projects, NOC, and Client Success leadership to ensure cybersecurity services are integrated properly into onboarding, escalation handling, project delivery, compliance efforts, and client planningEnsure handoffs between reactive service, project work, compliance support, onboarding, and managed cyber operations are clean, documented, and actionableAct as the operational representative for the cybersecurity department in leadership discussions, service design conversations, process improvement initiatives, and capacity planningSupport broader operational maturity by helping define standards, remove bottlenecks, and improve service consistency across departments where cybersecurity dependencies existSkills, Knowledge & Expertise7+ years of experience in cybersecurity or IT with a security focus, including at least 3 years in an MSP, MSSP, or multi-tenant managed services environment2+ years of people leadership experience, including direct management, coaching, accountability, or formal team lead responsibilitiesStrong experience leading or overseeing cybersecurity operations across SIEM, SOC, MDR, endpoint, identity, email security, vulnerability management, and incident responseExperience managing cybersecurity tools, operational standards, alert workflows, escalation paths, and third-party security partnersStrong understanding of Microsoft 365 security, including Defender, Entra ID, Conditional Access, Secure Score, and related controlsExperience with EDR platforms, vulnerability remediation workflows, and email security controls including anti-phishing, impersonation protection, DMARC, DKIM, and SPFExperience investigating or overseeing security incidents, including malware, phishing, ransomware, business email compromise, and identity-related eventsAbility to assess security risk across multiple client environments and translate findings into clear priorities, remediation plans, and leadership recommendationsStrong written and verbal communication skills, including the ability to explain security risk to non-technical stakeholdersStrong documentation, process design, and operational disciplineWorking knowledge of common frameworks and standards such as CIS Controls, NIST 800-171, HIPAA Security Rule, and SOC 2 Trust CriteriaRelevant industry certifications such as CISM, SC-200, CySA+, Security+, or equivalent combination of certifications and experienceActively driving towards CISSP and/or CISSPJob BenefitsMedical InsuranceDental InsuranceVision InsuranceLife InsuranceDisability InsuranceIn-Telecom Consulting, LLC is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.","company":"Intelecom","rawCompany":"intelecom","city":"Arlington","state":"TX","isRemote":false,"isActive":false,"createdAt":"2026-06-05T11:31:27.439Z","occupations":[{"code":"15-1212.00","title":"Information Security Analysts","slug":"information-security-analysts"},{"code":"13-1199.07","title":"Security Management Specialists","slug":"security-management-specialists"},{"code":"15-1299.05","title":"Information Security Engineers","slug":"information-security-engineers"}],"industries":[{"code":"541512","title":"Computer Systems Design Services","slug":"computer-systems-design-services"},{"code":"541519","title":"Other Computer Related Services","slug":"other-computer-related-services"},{"code":"541513","title":"Computer Facilities Management Services","slug":"computer-facilities-management-services"}],"jobPosting":{"@context":"https://schema.org","@type":"JobPosting","title":"Cybersecurity Practice Manager","description":"Application Deadline: 18 July 2026Department: Service DeskLocation: TexasCompensation: $110,000 - $125,000 / yearDescriptionThe Cybersecurity Practice Manager is responsible for the leadership, performance, standards, and operational maturity of the cybersecurity function within Central Services. This role owns the people, processes, tooling, service quality, and strategic direction of managed cybersecurity services delivered across the client base.This position ensures that the Cyber team operates proactively, consistently, and at scale across all managed environments. The Manager oversees SIEM and SOC operating standards, third-party security partner coordination, escalation quality, client risk visibility, compliance support readiness, platform governance, reporting, and continuous improvement of the security service offering.In addition to leading the department, this role also serves as the technical lead and primary security operator. The Manager is accountable for both day-to-day execution and long-term development of the cybersecurity function, ensuring the team delivers consistent, high-quality security outcomes for clients.Key ResponsibilitiesDepartment Leadership & Operational OwnershipLead and manage the cybersecurity department, including day-to-day oversight of priorities, workload distribution, service quality, escalation discipline, and overall team performanceEstablish and maintain departmental standards for proactive security management, incident response, vulnerability management, client communication, documentation, and reportingOwn the cybersecurity department scorecard, including KPIs, service delivery trends, backlog health, SLA adherence, documentation compliance, and client risk visibilityEnsure the team is operating with clear accountability, proper follow-through, and consistency across all recurring cyber functionsMonitor department capacity and staffing needs, making recommendations for role changes, hiring, training, and resource allocation as service demand evolvesLead the operating cadence for the department, including team meetings, one-on-ones, KPI review, issue escalation review, root cause discussions, and continuous improvement planningTeam Management, Coaching & AccountabilityDirectly manage Cyber team members, including performance expectations, coaching, development planning, quarterly reviews, and accountability conversationsCreate clear role expectations and measurable standards for each team member related to execution, quality, documentation, communication, and ownershipEnsure the Senior Engineer — Cyber/Manager is effectively leading technical execution while the department as a whole remains aligned to standards and priorities.Support hiring, onboarding, role design, and future team scaling within the cybersecurity functionDevelop structured growth plans for technical team members, including certification paths, cross-training, mentoring expectations, and progression planningMaintain team readiness for after-hours support, major incidents, client escalations, and continuity of service across the departmentCybersecurity Tooling, SIEM, SOC & Platform GovernanceOwn the operational performance, administration standards, and service delivery model for the cybersecurity tool stack across the client baseOversee the strategic and operational use of SIEM, SOC, MDR, EDR, vulnerability scanning, email security, identity security, awareness training, threat intelligence, dark web monitoring, and related security platformsDefine and maintain standards for alerting, escalation thresholds, tuning expectations, monitoring coverage, investigation procedures, response workflows, documentation requirements, and client reporting across all cybersecurity platformsEnsure cybersecurity tools are configured, maintained, and governed in a way that supports effective service delivery, scalability, and consistent client outcomesReview platform effectiveness regularly, including alert quality, response quality, licensing alignment, coverage gaps, integration issues, and opportunities for automation or optimizationApprove and govern changes to cybersecurity platform standards, default configurations, operational workflows, and escalation models before rolloutSOC, SIEM & Third-Party Security Workflow ManagementOversee SIEM and SOC operating workflows, whether services are delivered internally or through external partners, to ensure proper alert routing, investigation ownership, timely escalation, and documented follow-throughEstablish and maintain clear workflows between the Cyber team and all third-party security providers, including SOC partners, MDR providers, compliance vendors, penetration testing firms, and incident response partnersDefine ownership boundaries, escalation paths, communication standards, handoff procedures, and expected turnaround times for all third-party cyber relationshipsHold third-party vendors accountable for service performance, reporting quality, escalation discipline, and contractual obligationsEnsure third-party workflows are documented, current, and aligned with internal operational expectations and client needsReview partner performance regularly and recommend changes where service gaps, inefficiencies, or quality concerns existService Quality, Escalation Management & Technical OversightMaintain oversight of cybersecurity service quality across all managed clients, ensuring work is executed consistently and in accordance with department standardsServe as the management escalation point for major security incidents, high-risk client issues, unresolved vulnerabilities, recurring security failures, and critical cyber-related service breakdownsReview security assessments, remediation plans, incident response outcomes, hardening recommendations, and root cause findings for quality and completenessEnsure significant incidents are documented properly, escalated appropriately, and followed through to permanent remediation or risk acceptanceMaintain visibility into recurring alert patterns, unresolved control gaps, vulnerability trends, and client environments that require leadership attention or additional actionSupport the Senior Engineer and broader technical team in resolving issues that require cross-functional coordination, priority alignment, or management interventionProactive Security Program OversightEnsure quarterly security posture assessments are completed consistently for all applicable managed clients and are documented to standardOversee the department’s approach to endpoint protection, patch-related security compliance, vulnerability remediation cadence, email security hygiene, identity hardening, and privileged access reviewEnsure proactive security activities are scheduled, completed, tracked, and reported on according to departmental expectationsValidate that findings from proactive reviews are translated into remediation actions, client recommendations, project scopes, or risk tracking as appropriateDrive continual improvement of proactive security programs so the department is not operating reactively or relying solely on alerts and incidents to identify riskClient Risk Oversight & Strategic Security LeadershipMaintain executive-level visibility into client security posture, open risk items, recurring vulnerabilities, incident trends, and accounts requiring elevated attentionEnsure clients receive clear, risk-based guidance related to remediation priorities, security maturity improvements, compliance readiness, and strategic security investmentsSupport Quarterly Business Reviews and strategic client meetings with security posture insights, incident summaries, roadmap recommendations, and leadership-level risk context, as requestedPartner with Client Success and technical leadership to align cybersecurity recommendations with client business priorities, contracted services, and operational realitiesIdentify opportunities for expanded security services, security maturity improvements, compliance-related services, and broader advisory engagementIncident Response, Root Cause & Operational DisciplineEnsure the department maintains current incident response standards, runbooks, escalation procedures, contact trees, and recovery guidance for managed clientsOversee the quality and timeliness of incident triage, response coordination, remediation follow-through, and post-incident review activitiesRequire documented root cause analysis for qualifying security incidents and ensure corrective actions are assigned, tracked, and completedDrive discipline around recurring security issue identification, trend review, and permanent corrective action rather than repeated short-term resolutionEnsure lessons learned from incidents are translated into improved standards, updated runbooks, client guidance, or internal process changesCompliance Support, Governance & Internal SecurityOversee the cybersecurity department’s support of client compliance initiatives, including audit preparation, control validation, remediation tracking, evidence support, and assessor coordinationEnsure the team is prepared to support client needs related to frameworks and standards such as CIS Controls, NIST 800-171, HIPAA Security Rule, SOC 2 Trust Criteria, and similar obligationsOversee penetration testing coordination, findings review, remediation follow-up, and readiness support for clients with formal security or regulatory requirementsOwn oversight of the MSP’s internal security posture within the department’s scope, including staff endpoint protection, MFA enforcement, privileged access hygiene, internal tool access review, and internal cyber improvement planningMaintain visibility into internal security gaps and ensure findings are escalated, tracked, and reviewed with leadership as appropriateDocumentation, Standards & Continuous ImprovementEnsure cybersecurity SOPs, investigation playbooks, standards, hardening guides, and knowledge base content are documented, maintained, and reviewed on a defined cadenceOwn the quality standard for cybersecurity documentation in Hudu and related systemsDrive process refinement across the department to improve consistency, reduce noise, strengthen accountability, and increase scalabilityIdentify and implement automation opportunities that improve alert handling, documentation consistency, reporting, workflow execution, or remediation trackingEnsure the department is continuously improving rather than relying on tribal knowledge or ad hoc executionCross-Functional LeadershipPartner with Service Desk, Central Services, Projects, NOC, and Client Success leadership to ensure cybersecurity services are integrated properly into onboarding, escalation handling, project delivery, compliance efforts, and client planningEnsure handoffs between reactive service, project work, compliance support, onboarding, and managed cyber operations are clean, documented, and actionableAct as the operational representative for the cybersecurity department in leadership discussions, service design conversations, process improvement initiatives, and capacity planningSupport broader operational maturity by helping define standards, remove bottlenecks, and improve service consistency across departments where cybersecurity dependencies existSkills, Knowledge & Expertise7+ years of experience in cybersecurity or IT with a security focus, including at least 3 years in an MSP, MSSP, or multi-tenant managed services environment2+ years of people leadership experience, including direct management, coaching, accountability, or formal team lead responsibilitiesStrong experience leading or overseeing cybersecurity operations across SIEM, SOC, MDR, endpoint, identity, email security, vulnerability management, and incident responseExperience managing cybersecurity tools, operational standards, alert workflows, escalation paths, and third-party security partnersStrong understanding of Microsoft 365 security, including Defender, Entra ID, Conditional Access, Secure Score, and related controlsExperience with EDR platforms, vulnerability remediation workflows, and email security controls including anti-phishing, impersonation protection, DMARC, DKIM, and SPFExperience investigating or overseeing security incidents, including malware, phishing, ransomware, business email compromise, and identity-related eventsAbility to assess security risk across multiple client environments and translate findings into clear priorities, remediation plans, and leadership recommendationsStrong written and verbal communication skills, including the ability to explain security risk to non-technical stakeholdersStrong documentation, process design, and operational disciplineWorking knowledge of common frameworks and standards such as CIS Controls, NIST 800-171, HIPAA Security Rule, and SOC 2 Trust CriteriaRelevant industry certifications such as CISM, SC-200, CySA+, Security+, or equivalent combination of certifications and experienceActively driving towards CISSP and/or CISSPJob BenefitsMedical InsuranceDental InsuranceVision InsuranceLife InsuranceDisability InsuranceIn-Telecom Consulting, LLC is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.","datePosted":"2026-06-05T11:31:27.439Z","dateModified":"2026-06-05T11:31:27.439Z","hiringOrganization":{"@type":"Organization","name":"Intelecom","sameAs":"https://jobsearcher.com"},"jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Arlington","addressRegion":"TX","addressCountry":"US"}},"identifier":{"@type":"PropertyValue","name":"JobSearcher","value":"f094a0fcfbc56b391d31ff0a"},"url":"https://jobsearcher.com/jobs/f094a0fcfbc56b391d31ff0a"}}