Manager - Information Security Operations & Threat Intelligence

What is a Manager – Information Security Operations & Threat Intelligence?

The Manager - Information Security Operations & Threat Intelligence oversees and coordinates the activities of the cybersecurity operations team. Responsibilities include developing and implementing security practices for threat intelligence, the security operations center (CSOC), managing incident response and investigations, conducting risk assessments, and staying updated on security trends. The Manager - Information Security Operations & Threat will develop strategies to enhance Central Hudson’s security posture. The Manager - Information Security Operations & Threat is competent in both leading diverse teams and security operations center (CSOC).  This role requires a very detailed understanding of Cybersecurity practices and frameworks and is responsible for maturing the cybersecurity operations program and enhancing Central Hudson’s defense. The Manager - Information Security Operations & Threat will be instrumental in building various operational and threat management programs.

What does a Manager – Information Security Operations & Threat Intelligence?

• Develops, implements, and oversees the cybersecurity operations, threat intelligence, and vulnerability management programs to protect Central Hudson’s assets and critical infrastructure

• Develops the Cybersecurity Operations Roadmap

• Continually develops and manages strategy and maturity of the cybersecurity operations program by partnering with key stakeholders across The Company

• Oversees daily CSOC activities, ensuring timely detection and response to security incidents

• Continuously reviews and enhances CSOC processes, including playbooks, response procedures, and threat hunting practices

• Supervises, mentors, and develops the CSOC Analysts

• Leads and manages the day-to-day operations of the Security Operations Center (CSOC)

• Identifies and implements automation opportunities

• Implements continuous improvement over people, process, and technologies

• Assists Cybersecurity Engineers with tuning false positive and/or true positive non-actionable security events

• Manages CSOC tools, detections, alerting

• Oversees incident response and investigation activities, ensuring timely resolution

• Oversees incident response planning and execution

• Conducts regular risk assessments and vulnerability management processes

• Collaborates with IT and other departments to ensure a cohesive and effective security posture

• Generates detailed reports on security incidents, including findings, action taken, and recommendations for future prevention. Provide regular status updates to management and stakeholders

• Coordinates with external vendors and stakeholders on security matters

• Represents Security Operations Center at internal/external meetings

• Develops and delivers security awareness training programs for employees

• Monitors and reports on key security metrics to executive leadership

• Manages and guides third party vendor relationships related to the cybersecurity operations program

• Supports the escalation of risks, issues, actions, & decisions within the program

• Conducts risk assessments and develop strategies to mitigate potential threats and vulnerabilities

• Collaborates with cross-functional teams to integrate security measures into business processes and technology solutions

• Stays current with industry trends, emerging threats, and best practices to continually enhance the cybersecurity program

• Establishes and maintains relationships with key stakeholders, communicating security policies, incidents, and mitigation strategies

• Ensures compliance with relevant regulations and standards

• Provides coverage in a 24/7 shift environment, including nights, weekends, and holidays

• Participates in on-call as needed to respond to security incidents outside of regular working hours

• Provides storm/emergency response support

What does it take to be a Manager – Information Security Operations & Threat Intelligence?

Required:

• Bachelor’s degree in Computer Science, Information Technology or related field of study and 5 years of Information Security or closely related experience. In lieu of a bachelor’s degree, an associate’s degree with 7 years of Information Security or closely related experience or a high school diploma or equivalency degree and 9 years of related experience will be considered.

• Proven leadership, facilitation, and organizational skills with at least 3 years of experience in a leadership role

• Proven experience in cybersecurity management with a focus on operations and CSOC management

• Proven experience with cybersecurity incident response and management

• Proven experience with creating and maintaining external and internal relationships with key stakeholders

• Proficient in security technologies, including SIEM solutions, IDS/IPS, firewalls, email security, and endpoint protection

• Excellent knowledge of threat intelligence, vulnerability management, and risk assessment

• Strong leadership skills, with the ability to manage and mentor a team

• Excellent communication skills, with the ability to collaborate effectively with diverse teams

• Familiarity with regulatory requirements and compliance frameworks

• Analytical mindset with the ability to assess complex situations and make informed decisions

• Proven ability to present at all levels of the organization

• A strong background with an understanding of the intersection between business and cybersecurity to improve security practices

• Ability to influence business decision-making by providing quantitative/qualitative data analytics, metrics, and analysis

• A results-oriented mindset with the ability to solve problems and make decisions

• Ability to work with limited direct supervision and professionally respond to constructive feedback

• Valid driver’s license

Preferred:

• Experience in Energy & Utilities or services industry

• Strong understanding of cybersecurity frameworks, standards, and best practices

• Proficient in cloud security

• Experience with SOAR solutions

• Experience with Microsoft PowerBI

• Experience with data visualization tools

• Experience in risk management

• Relevant certifications such as CISSP, CISM, or comparable

Applications will be accepted until May 20, 2026. 

Pay range: $143,100-221,600

Please go to https://www.cenhud.com/employment. Click the “Search Career Opportunities” button. Follow the directions to submit an application and upload your resume for the desired position.

Applications sent via e-mail and US Mail will not be accepted.  No phone calls or agencies, please.  All replies will be held in strict confidence.

All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, creed, color, ethnicity, arrest or conviction record, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, citizenship, genetic information, familial status, marital status, pregnancy-related condition, domestic violence victim status, veteran or military status, or any other characteristic protected by federal, state or local laws. Central Hudson Gas & Electric Corporation takes affirmative action in support of its policy to employ and advance employment in individuals who are protected veterans and individuals with disabilities.

VEVRAA FEDERAL CONTRACTOR