Security Operations Manager

As Security Operations Manager, you will lead OppFi’s internal security operations team and be responsible for the end-to-end execution of our enterprise security monitoring, incident response, and threat management programs. You will serve as the primary point of coordination with our third-party SOC provider, ensuring seamless collaboration, accountability, and actionable outcomes. This role requires a hands-on leader with a deep understanding of network and cloud security, modern security tooling, and the ability to drive risk mitigation across a complex technology environment.

You will define and own the operational security roadmap, oversee incident response protocols, and ensure that internal controls and external partnerships are aligned to deliver measurable improvements in security posture.

• Lead and manage the internal security operations team, providing mentorship, technical guidance, and performance management.
• Own and drive the vulnerability management program, from tool selection and deployment (e.g., Tenable, Qualys) to triage, remediation coordination, and executive reporting.
• Serve as the primary liaison with the third-party SOC provider; ensure efficient escalation, investigation, and resolution of security alerts.
• Oversee and refine the incident response process, including preparation, detection, containment, eradication, recovery, and post-mortem.
• Maintain and evolve the security infrastructure roadmap across firewalls, IDS/IPS, EDR, SIEM, SOAR, and endpoint protection platforms.
• Collaborate with DevOps, IT, and Infrastructure teams to embed security into deployments and system architecture.
• Monitor the threat landscape and proactively adapt detection capabilities and playbooks in alignment with current attack vectors and the MITRE ATT&CK framework.
• Ensure alignment of security operations with regulatory, legal, and compliance requirements (e.g., PCI-DSS, NIST, FTC Safeguards).
• Deliver clear, risk-based reporting to senior leadership and support audit, compliance, and customer assurance requests.

• Minimum of 10 years of experience in information security, including 5 years in a managerial or team lead role overseeing security operations.
• Track record of building and leading high-performing security operations teams.
• Ability to work cross-functionally with DevOps, Infrastructure, Legal, and Product to integrate security into business processes.

• Proven experience leading internal security operations, coordinating incident response efforts, and working with third-party SOCs.
• Strong knowledge of threat detection, threat hunting, and response methodologies aligned to frameworks like MITRE ATT&CK.
• Experience developing and executing security incident playbooks and post-incident reviews.

• Deep knowledge of network protocols, segmentation strategies, firewall policies, IDS/IPS tuning, and switch configurations.
• Familiarity with secure configurations across hybrid environments (data center, SaaS, and IaaS).
• Experience implementing and managing endpoint security tools and network access controls (e.g., NAC, VPNs, EDR).

• Hands-on expertise securing AWS or Azure environments, including implementation of IAM, RBAC, MFA, and logging strategies.
• Understanding of cloud-native security controls and their integration into centralized monitoring systems.

• Operational experience with security tools such as SIEM (e.g., Splunk, Sumo Logic), EDR/XDR platforms, and vulnerability scanners (e.g., Tenable, Qualys).
• Demonstrated ability to automate repetitive tasks using SOAR platforms or scripting (e.g., Python, Bash).

• Familiarity with security and control frameworks including NIST CSF, PCI-DSS, ISO 27001, SOX, and FTC Safeguards.
• Skilled in translating compliance requirements into enforceable security controls and audit-ready documentation.

• Strong communicator capable of presenting technical security risks, incidents, and program updates to executive and non-technical stakeholders.
• Skilled in translating threat intelligence and technical findings into business-impact terms.
  Reports to: Director, Security Engineering

Job Level:  Manager