Sr Manager, Threat Intelligence
UltraViolet CyberSalary not specified
Not SpecifiedCompensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
RetailIndustries
Requirements
- Bachelor's Degree in Information Technology, Computer Science, Data Science or related experience required
- 8+ years in information security with a focus on threat intelligence, detection engineering, or security operations
- 3-5 years in a leadership or management role with a track record of leading high-performing technical teams
- Deep expertise in attacker behaviors, threat actor TTPs, campaigns, and threat landscape evolution across multiple industry verticals
- Extensive experience designing, implementing, and optimizing enterprise-scale detections across multiple SIEMs (e.g., Splunk, Sentinel, Chronicle), EDR/XDR platforms (e.g., CrowdStrike, Defender, SentinelOne), and cloud-native security tools
- Strong working knowledge of MITRE ATT&CK, threat modeling, and structured threat intelligence formats (e.g., STIX, TAXII)
- Proficiency in Python, PowerShell, and at least one other programming language for detection engineering and automation
Responsibilities
- Develop and execute the strategic roadmap for threat intelligence, detection engineering, and threat hunting programs across multiple business units
- Build, lead, and mentor a high-performing team of detection engineers, threat analysts, and hunters
- Serve as the primary subject matter expert and strategic advisor to executive leadership on evolving threat landscapes, defensive priorities, and organizational risk posture
- Operationalize threat intelligence by integrating internal and external intel into detection engineering workflows
- Maintain and evolve threat intelligence sources (commercial, open-source, government) to inform risk posture and detection priorities
- Deliver actionable threat assessments and briefings tailored to technical and executive stakeholders
- Lead the full detection engineering lifecycle including threat modeling, detection logic development using query languages (KQL, SPL, SQL), testing with attack simulation frameworks, automated deployment via CI/CD, and continuous tuning based on performance metrics
- Drive development of advanced behavior-based, anomaly detections, and AI/ML-powered detection systems aligned with MITRE ATT&CK and emerging threat actor TTPs
- Establish strategic partnerships with red team, SOC and incident response management to ensure comprehensive detection coverage and proactive visibility gap closure
- Lead enterprise-wide collaboration with cloud architects, infrastructure leadership, and application development teams to enhance telemetry strategies and ensure scalable detection across complex hybrid and multi-cloud environments
- Drive strategic contributions to enterprise incident response frameworks, lead tabletop exercises, and oversee purple team program development to continuously test and improve organizational defenses
- Champion automation initiatives and establish data-driven decision-making frameworks across all threat detection and response operations
- Define, implement, and report on enterprise-level key performance indicators (KPIs) for detection effectiveness, operational efficiency, false positive optimization, and mean time to detection (MTTD) across the organization
- Integrate security detection into CI/CD pipelines and support DevSecOps initiatives
- Manage budgets, vendor relationships, and technology investments for threat intelligence and detection engineering programs
- Establish and maintain strategic relationships with industry peers, threat intelligence communities, and security vendors
Skills
Key technologies and capabilities for this role
Questions & Answers
Common questions about this position
What is the work arrangement for this role?
The position is hybrid and based in Seattle.
What salary or compensation is offered for this position?
This information is not specified in the job description.
What key skills are required for this Senior Manager role?
Key skills include expertise in threat modeling, detection logic development using query languages like KQL, SPL, SQL, building AI/ML-powered detection systems aligned with MITRE ATT&CK, and leading detection engineering lifecycles with CI/CD and attack simulations.
What does the team structure look like for this position?
You will build, lead, and mentor a high-performing team of detection engineers, threat analysts, and hunters.
What makes a strong candidate for this Senior Manager role?
A strong candidate is an experienced and visionary leader with expertise in threat intelligence, detection engineering, team leadership, strategic advising to executives, and driving automation and data-driven security operations.
Nordstrom
Retailer offering clothing and accessories
About Nordstrom
Nordstrom is a retail company that focuses on providing a wide range of clothing, shoes, and accessories for men, women, and children. The company operates department stores and an online platform where customers can shop for various brands and styles. Nordstrom emphasizes a strong customer service experience, encouraging employees to take initiative and develop their careers within the organization. Unlike many competitors, Nordstrom fosters a culture of leadership and personal growth among its staff, which contributes to a dedicated and motivated workforce. The company's goal is to create a positive shopping experience while also being committed to environmental sustainability and community support.
Seattle, WashingtonHeadquarters
N/AYear Founded
$16MTotal Funding
N/ACompany Stage
Consumer GoodsIndustries
10,001+Employees
Benefits
Health Insurance
Dental Insurance
Life Insurance
Disability Insurance
401(k) Retirement Plan
Risks
Increased competition from online retailers like Amazon may impact Nordstrom's market share.
Economic uncertainty could reduce consumer spending on luxury items, affecting sales.
Expansion into international markets exposes Nordstrom to geopolitical and currency risks.
Differentiation
Nordstrom emphasizes employee empowerment and career growth within the company.
The company is committed to environmental sustainability and community support.
Nordstrom's experiential retail approach includes pop-up shops and exclusive collaborations.
Upsides
Nordstrom Rack is expanding with new locations in West End and Lubbock by 2025.
The Nordy Club enhances customer savings and loyalty through exclusive benefits.
Strategic collaborations, like with DXL Big + Tall, expand Nordstrom's customer base.
Related Jobs
RemoteRemoteDetection Engineering Manager, Falcon Complete (Remote)
CrowdstrikeSalary not specified
RemoteSecurity Operations Manager
JobberSalary not specified
Full Time
Senior (5 to 8 years)
RemoteSr. Detections Content Operations Engineer (Remote)
CrowdstrikeSalary not specified
- Full Time
- Junior (1 to 2 years)
RemoteThreat Hunter - GovCloud, 3rd Shift (Remote)
CrowdstrikeSalary not specified
RemoteDetections Engineer
Shift5Salary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteStaff Threat Intelligence Analyst
Huntress$190,000 - $210,000/year
- Full Time
- Senior (5 to 8 years)
RemoteSecurity Response Engineer, Detection Engineering
Chainlink LabsSalary not specified
RemoteHead of Product
StairwellSalary not specified
- Full Time
- Expert & Leadership (9+ years)
RemoteSr. Technical Marketing Manager - Threat Intelligence and Hunting (Rem…
CrowdstrikeSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)