Manager, Security Operations Center

Manager, Security Operations Center page is loaded## Manager, Security Operations Center locations:
Redwood City, California, USAposted on:
Posted 8 Days Agojob requisition :
R-200527
* Confidence can sometimes hold us back from applying for a job. Here’s a secret: there's no such thing as a "perfect" candidate. Poshmark is looking for exceptional people who want to make a positive impact through their work and help create an organization where everyone can thrive. So whatever background you bring with you, please apply if this role would make you excited to come to work every day.
**
* Job Description:

** As the Security Operations Center (SOC) Manager at Poshmark, you will lead the critical mission of protecting our platform and 150 million Poshers from cyber threats. You will ensure operational excellence by overseeing the full incident response lifecycle—from threat detection to recovery—to significantly reduce risk. Your strategic leadership will enhance Poshmark's security posture, ensuring resilience, maintaining customer trust, and helping business grow.

This role serves as the crucial link between strategy, policy and day today operations, translating complex issues into clear actionable insights.## ## ##
**** Responsibilities:
***** Develop, review, and maintain high-quality SOC playbooks and runbooks to streamline investigations and standardize response procedures.
* Drive improvements in detection, alerting, and incident response capabilities through automation, orchestration, and process refinement.
* Oversee the SOC’s daily operations, ensuring continuous monitoring and analysis of security event logs and alerts to promptly identify and escalate security incidents.
* Lead and coordinate end-to-end security incident management, including investigation, containment, eradication, recovery, and post-incident review.
* Direct root-cause analysis of sophisticated security incidents and targeted attacks across systems, networks, cloud environments, and application layers.
* Oversee tuning of security alerts to reduce false positives and increase operational efficiency; implement automated responses where appropriate.
* Partner closely with SRE, Cloud Security, IT Operations, Threat Intelligence, and other security teams to ensure timely remediation of identified issues.
* Manage SIEM strategy and operations, including onboarding new log sources, optimizing alert logic, and enhancing detection capabilities.
* Lead deployment and management of security monitoring solutions across all organizational environments.
* Guide and supervise threat-hunting initiatives to proactively identify malicious activity, suspicious behaviors, and emerging threats.
* Leverage threat intelligence, indicators of compromise (IOCs), and contextual data to enrich investigations and improve detection fidelity.
* Manage SOC-related projects, roadmap planning, team development, and operational execution.
* Champion the design and deployment of automated incident response workflows using SOAR and cloud-native automation tools to reduce analyst workload and accelerate containment.
* Implement automation playbooks that trigger predefined actions—such as isolating hosts, disabling compromised accounts, enriching alerts, or blocking malicious indicators—to improve response speed and consistency across the SOC.
* Evaluate emerging technologies, including AI-driven SOC analyst tools, and lead their implementation within the security operations environment.##

Minimum Qualifications:

* Minimum of 8 years of experience in a Security Operations role, with progressive leadership responsibilities.
* Minimum of 3 years of experience in managing a team of Security engineers, analysts etc.
* Experience with security technologies including SIEMs, firewalls, IDS/IPS, EDR, and vulnerability management tools.
* Hands-on experience leading or supporting security incident response and remediation activities.
* Experience with cloud security concepts, tools, and monitoring technologies (e.g., AWS, GCP, Azure).
* Strong understanding of SOC operations, logging pipelines, and security monitoring frameworks.
* Lead a global team of soc analysts to support the 24x7…