SOC Manager
Pittsburgh, PA
Created in 2000, Ivalua is a leading global provider of cloud-based procurement solutions.
COMPANY OVERVIEW
At Ivalua we are a global community of exceptional professionals, who believe that digital transformation revolutionizes supply chain sustainability and resiliency to unlock the power of supplier collaboration.
We achieve this through our leading cloud-based spend management platform that empowers hundreds of the world's most admired brands to effectively manage all categories of spend and all suppliers to increase profitability, improve ESG (environmental, social, and corporate governance) performance, lower risk, and improve productivity. Driven by our passions and fueled by our shared ambitions, we empower and challenge each other to create meaningful experiences for our colleagues, customers, partners, and communities.
Learn more at www.ivalua.com. Follow us on LinkedIn and Twitter.
THE OPPORTUNITY
CONTEXT:
Our IT department, international in scope (EMEA, AMER, APAC) and in full growth, is made up of over sixty IT & Cybersecurity professionals in charge of the deployment and operations of the Ivalua Cloud, which hosts the environments for our clients around the world. It is also responsible for internal IT infrastructures, IT applications and data, IT support for our users as well as the Security monitoring & IT security handling.
In this context of growth, we are looking for a skilled SOC Manager based in Pittsburgh to expand our team capability and embrace the era of AI.
ROLE:
The Manager, IT SOC is responsible for leading and developing a global Security Operations Center team, ensuring 24/7 security monitoring, effective incident response, and proactive vulnerability management across the organization.
This role provides technical leadership, operational governance, and strategic direction to protect the company's infrastructure, cloud environments, applications, and data from cyber threats.
You will report to the Global IT Director and will manage a distributed team of SOC analysts based in the United States, France, and India, ensuring consistent processes, tooling, and service levels across regions.
WHAT YOU WILL DO WITH US
* SOC Operations & Security Monitoring
* Lead and manage the global SOC team (6 analysts across multiple time zones, relying also on our 24/7 global IT Service center in India).
* Ensure continuous monitoring of security events using SIEM, EDR/XDR, NDR, and cloud security tools.
* Define, maintain, and optimize SOC processes, playbooks, and runbooks.
* Ensure detection use cases are continuously improved to reduce false positives and increase detection coverage.
* Manage SOC KPIs and SLAs (MTTD, MTTR, alert volume, incident closure rates).
* Incident Response & Threat Management
* Oversee security incident handling from triage to containment, eradication, and recovery.
* Act as escalation point for major security incidents and coordinate with IT, Infosec, Business, Legal, and Communications teams.
* Lead post-incident reviews (lessons learned, root cause analysis) and implement remediation plans.
* Coordinate with external partners (MDR providers, forensics firms, law enforcement if required).
* Vulnerability Management
* Collaborate closely with Infosec on the vulnerability management lifecycle: scanning, prioritization, remediation tracking, and reporting.
* Work with infrastructure, cloud, and application teams to ensure timely patching and risk mitigation.
* Define vulnerability SLAs based on risk and business criticality.
* Help Infosec to provide risk-based reporting to technology and business stakeholders.
* Governance, Risk, and Compliance Support
* Contribute to security policies, standards, and operating procedures.
* Support audits, regulatory requirements, and frameworks (e.g., ISO 27001, NIST, SOC2, PCI DSS, GDPR, HIPAA, FEDRAMP, IRAP).
* Maintain documentation and evidence for security operations controls.
* Tooling & Technology Strategy
* Own SOC tooling strategy (SIEM, SOAR,, vulnerability scanners, cloud security tools, etc.) and contribute to the other IT security solutions (EDR/XDR, Network & Cloud Security, Identity protection, etc.). Evaluate and implement new security technologies and integrations.
* Drive automation and orchestration to improve SOC efficiency and reduce manual workload.
* Contribute actively to the security logging quality (new technologies, review existing log sources and help to get them optimized and cleaned-up).
* Team Leadership & Global Coordination
* Manage and mentor SOC analysts across regions and time zones.
* Define shift models, on-call rotations, and coverage strategy.
* Conduct performance reviews, training plans, and career development.
* Foster collaboration between US, France, and India teams to ensure consistent operations and engage actively with the overall IT & Infosec community
* Reporting & Stakeholder Communication
* Produce executive-level security operations reports and dashboards.
* Communicate risks, incidents, and trends to senior leadership (CISO, IT leadership, risk committees).
* Provide guidance to engineering and business teams on security best practices.
YOUR PROFILE
If you have the below experience and strengths this role could be for you:
Mastery:
SIEM platforms (Splunk, Microsoft Sentinel, QRadar, Elastic, etc.)
EDR/XDR solutions (Microsoft Defender, CrowdStrike, SentinelOne, etc.)
Cloud security (Azure, AWS, GCP security monitoring and logging)
Proficient:
Vulnerability management tools (Qualys, Tenable, Rapid7, etc.).
Knowledge of NIST, MITRE ATT&CK, ISO 27001, SOC2, CIS benchmarks, and ITIL/IT operations processes
Excellent understanding of networking, operating systems, and application security fundamentals
Basic knowledge:
Familiarity with SOAR, threat intelligence platforms, and security automation
Knowledge of web application & database
Required experience:
Bachelor's degree in relevant field preferred with a minimum of 7 years of relevant professional experience, OR Master's degree in relevant field with a minimum of 5 years relevant professional experience, OR Equivalent combination of education and experience
Relevant certifications such as GIAC, OSCP, HTB are preferred. 7-12+ years in cybersecurity, with 3-5+ years in SOC or security operations leadership.
Proven experience managing distributed/global security teams.
Strong background in incident response, security monitoring, and vulnerability management.
U.S. Citizen / Permanent Resident. No sponsorship required
"Nice to have" experience:
Knowledge of cloud concepts and platforms, especially Azure.
Experience in an international company & team.
Experience in monitoring regulated environments (Fedramp, IRAP)
Soft skills:
Strong leadership and people management skills
Structured, process-driven, and comfortable with crisis management, problem solving aptitude
Team player, good communication skills and confortable working in multicultural, global teams and across time zones.
Strong reporting & good documentation writing skill.
WHAT HAPPENS NEXT
If your application fits this specific position's needs, our skilled Talent team will reach out to schedule an initial screening call. Get one step closer to achieving your goals - apply today!
Our Talent team will guide you through every step of the interview process - from preparation to completion. They're here to support you!
Our recruitment process is designed to assess your competencies through a series of personalized interviews with internal stakeholders relevant to the role.
Interviews will be conducted virtually via video or on-site with face-to-face meetings.
LIFE AT IVALUA
* Hybrid working model (3 days in the office per week),
* We're a team dedicated to pushing the boundaries of product innovation and technology,
* Sustainable Growth, Privately Held,
* A stable and cash-flow positive Company since 10 years,
* Snacks and weekly lunches in the office,
* Feel empowered to pursue your goals with improved team collaboration and increased creativity/productivity,
* Unlock and unleash your full professional potential with our exceptional training and career development program,
* Join a dynamic and international team of top-notch professionals who are experts in their respective fields. Collaborate with like-minded individuals who are deeply passionate and highly motivated about their work. Experience a truly diverse and inclusive work environment where your unique contributions are highly valued,
* Regular social events, competitive outings, team running events, and musical activities,
* Comparably recognized Ivalua for the following (https://www.comparably.com/companies/ivalua) :
Powered by People - Powered by You!
United by our values we embrace diversity and equity in the broadest possible sense to create an inclusive workplace. To help our customers make supply chains more efficient, sustainable and resilient, we rely on a global team with a variety of backgrounds, skills and views. We believe in equal opportunity and in diversity as a driver of innovation that cultivates a spirit of inclusiveness, creates a productive and fun place to work, and provides fulfilling career opportunities for all Ivaluans. https://www.linkedin.com/company/ivalua/about/
Experience life at Ivalua - check out our captivating video! Gain insight into our unique company culture and get a glimpse of what it's like to work with us.
One of Ivalua's core values is to Care & Grow People. We take matters like pay equity very seriously and strive to reward our employees appropriately and fairly for their talents. The salary range for this position is based upon careful and continual market compensation research. In addition to location, salary may also vary based upon job-related knowledge, skills, and experience.
Title: Manager, IT - SOC
Base range minimum: $108,750
Base range maximum: $181,250
* Additional compensation / rewards: In addition to the base salary information above, Ivalua offers an uncapped commission plan as part of the competitive compensation package. Other compensation factors may also be considered. Ivalua also offers exceptional benefits including medical, dental, vision, retirement (with company match), and much more.
#LI-SG1
#LI-HYBRID
Read Less
