Manager of Security Engineering & Operations
Listed on 2026-07-01
-
IT/Tech
Cybersecurity
Manager of Security Engineering & Operations
Location:
3500 Lacey Road, Downers Grove, IL Brand:
Cooper's Hawk
At Cooper's Hawk, connection is at the heart of everything we do, and we're looking for passionate people to join us. When you become part of our team, you step into a collaborative, supportive culture built on Uncompromising Hospitality, where standards and genuine care come together to create something truly unforgettable. As we continue our exciting journey, you'll help us deliver unforgettable experiences to our Wine Club Members and the entire Cooper's Hawk community.
Join us, and let's turn moments into lasting memories.
The Manager, IT Security Engineering & Operations is responsible for leading and executing the organization's security engineering and security operations functions. This role owns the design, implementation, and operation of security controls across cloud, applications, endpoints, identity, and network environments. This is a hands-on leadership role that combines technical execution with team leadership. The Manager is expected to actively contribute to engineering and operational activities while leading a small team, ensuring delivery of key security initiatives and day-to-day operations.
This position reports to the VP of Information Security & GRC and works closely with Security & Compliance, IT Infrastructure & Operations and applications teams.
Security Engineering & Architecture
- Lead the design and implementation of security controls across Azure, Microsoft 365, and SaaS platforms, including Oracle Simphony
- Drive security hardening initiatives across cloud and enterprise platforms, including Microsoft 365 baseline configurations
- Define and enforce secure architecture standards in partnership with Infrastructure and Application Development teams
Security Operations & Incident Response
- Manage security operations, including monitoring, detection, and incident response
- Manage and optimize SOC/MDR services and vendor performance
- Improve detection quality, reduce false positives, and strengthen response capabilities
- Lead incident response and post-incident reviews
Cloud & Application Security
- Manage cloud security posture across Azure, Salesforce and Oracle
- Lead application security initiatives including code scanning, API security, and secure development practices
- Manage and optimize Web Application Firewall (WAF) capabilities
- Integrate security into CI/CD pipelines and development workflows
Vulnerability Management
- Manage the vulnerability management program end-to-end
- Ensure vulnerabilities are remediated within defined SLAs
- Drive accountability across IT and application teams
- Deliver clear reporting and metrics to leadership
Security Platforms & Tooling
- Manage and optimize core security technologies, including:
- Endpoint protection (Microsoft Defender, Bitdefender)
- Identity security (Entra , Conditional Access, PIM)
- Microsoft 365 security
- WAF and edge protection
- SIEM/SOAR and MDR integrations
- Ensure tools are properly configured and delivering measurable value
Compliance & Risk Alignment
- Partner with Security & GRC to support PCI DSS 4.0 and SOX ITGC requirements
- Ensure controls are implemented and operating effectively
- Support audits, remediation, and control validation
Team Leadership & Execution
- Directly manage:
- Senior Information Security Engineer
- IT Security Administrator
- Set clear priorities, goals, and expectations
- Drive accountability and execution across the team
- Mentor and develop team members while remaining actively involved in delivery
Experience and Qualifications:
- 7+ years of experience in security engineering or security operations
- Experience leading teams while remaining hands-on in technical work
- Strong experience with Azure and Microsoft 365
- Experience managing SOC/MDR services
- Hands-on experience with vulnerability management and incident response
- Experience with application security and WAF technologies
- Threat detection and incident response
- Cloud security architecture and controls
- Identity and access management
- Endpoint and email security
- Vulnerability management practices
- Knowledge of PCI DSS, SOX ITGC, and NIST CSF requirements
Education
- Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent professional experience
- Preferred Certifications
- Certified Information Systems Security Professional (CISSP)
- Cloud security certifications such as CCSP
- Security operations or incident response certifications (e.g., GCIH)
Other Skills/Abilities:
- Ability to adapt quickly in a dynamic environment, evaluate new technologies, and apply them effectively as the security and technology roadmap evolves.
- Strong organizational and prioritization skills, with the ability to manage multiple initiatives, deadlines, and competing requests.
- Excellent analytical and problem-solving skills, with a practical, customer-focused approach to security challenges.
- Ability to communicate clearly and effectively with technical and non-technical stakeholders across IT, business, and…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).