Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Detection and Response Manager

Con Ed

Benefits Health Savings Accounts Health Care and Dependent Care Flexible Spending Accounts 401(k) with robust matching Employee Stock Purchase Plan with a generous matching contribution State of the art Employee Assistance Program Generous paid time off plus paid holidays Family support: emergency backup child, & elder care assistance Social responsibility and volunteer opportunities Employee discount program Culture of growth and learning: career development; tuition reimbursement; recognition program Life and Long-Term Disability Benefits *Please be aware that some benefits may not apply to provisional or part-time job titles. Job Description The Detection and Response Manager will build, lead, and continuously mature the Detection and Response Team, serving as Tier 3 support for Con Edisons IT and OT Cybersecurity Operations Center (CSOC). This role is responsible for advanced threat detection, incident escalation, and enterprise wide incident response. Reporting to the Director of Cybersecurity Operations, the manager will establish a new team that functions as the primary escalation path for the CSOC, advances detection engineering maturity, and conducts proactive threat hunting across the enterprise. The role also influences front line CSOC effectiveness by delivering validated detections, well defined playbooks, and targeted training to ensure consistent and confident execution. This position partners closely with Security Engineering, the CSOC, Offensive Security, Corporate Security, and the ETS team to strengthen and evolve how threats are identified and responded to across the organization. As Con Edison continues to invest in technologies such as cloud platforms, containers, AI, and OT environments, the scope of this role includes maturing detection and response capabilities across both existing and emerging technologies. This includes enhancing incident response processes and expanding SIEM and SOAR use cases to support business growth and resilience. The Detection and Response Manager ensures the development of repeatable procedures, validation of detections through realistic scenarios, effective training of stakeholder teams, and seamless transitions of new capabilities to the CSOC. The ultimate objective is to strengthen Tier 1 and Tier 2 operations, enabling faster response times, higher confidence, and improved security outcomes. Responsibilities Build and lead the Detection and Response Team. Operate as the escalation path for high complexity alerts, suspected incidents and root cause investigations, supporting both IT and OT CSOC workflows. Improve the end-to-end response lifecycle, including alert triage, investigation, containment, remediation coordination, lessons learned and documentation. Partner with Security Engineering to develop and mature detection use cases, including tuning detections for low false positives and high signal quality. Lead continuous threat hunting by regularly scanning telemetry and investigation outputs to find stealthy attacker behavior and emerging patterns across IT and OT. Lead campaign-based threat hunting by defining hypotheses, objectives and success criteria with stakeholders, then running time bound hunts aligned to risk, new threats and specific business systems. Identify opportunities across the business where cybersecurity requirements were not implemented, were not consistently enforced, or were misaligned to risk and work with stakeholders to close those gaps. Collaborate with Offensive Security and threat intelligence stakeholders to incorporate new findings into detections, detections engineering and response improvements. Own the end to end lifecycle and continuous improvement of SIEM and SOAR use cases, spanning alert enrichment, case management, automated response actions, and orchestration. Develop and improve incident response processes, including playbook development, scenario testing, tabletop exercises and after-action reviews. Guide capability transitions to the CSOC by ensuring detections and response procedures are documented, trained, tested and ready for steady state operations. Establish measurable performance targets and an operating rhythm, including metrics such as mean time to detect, mean time to respond, investigation throughput, false positive rates and impact from tuning or automation. Evaluate, pilot, and operationalize AI-driven detection and response tools and technology (e.g., anomaly detection, alert summarization/enrichment, and automated triage) to reduce false positives and accelerate MTTD/MTTR. Qualifications Required Education/Experience Bachelor's Degree and 8 years of relevant work experience Master's Degree and 6 years of relevant work experience Preferred Education/Experience Master's Degree (IT, computer science, business administration, engineering or decision sciences including mathematics, analytics, quantitative methods) and 6 years of relevant work experience Relevant Work Experience Leadership experience in cybersecurity operations, detection engineering, or incident response, including building and maturing teams Hands‑on experience designing, tuning, and validating detections across diverse data sources, with a track record of reducing false positives Deep hands‑on experience with SIEM and SOAR platforms, including building correlation logic, case workflows, and automation playbooks Demonstrated experience leading hypothesis‑driven threat hunts and converting findings into durable detections Experience operating in or alongside cloud security (AWS, GCP, Azure, or OCI) Exposure to OT environments and a willingness to develop OT depth, including OT risk, telemetry, and operational constraints Experience developing and operationalizing playbooks, procedures, and training material Experience validating detections through tabletop exercises, purple team testing, and controlled scenarios Track record of improving operational metrics (MTTD, MTTR, false positive reduction) Direct experience in OT or critical infrastructure environments (preferred) Experience partnering with offensive security or threat intelligence teams to translate findings into detections and response improvements (preferred) Experience evaluating and deploying AI‑driven security tooling in a production environment (preferred) Strong working knowledge of MITRE ATT&CK, used to map detections, hunts, and coverage gaps (preferred) Strong stakeholder management across security, engineering, and business teams (preferred) Skills and Abilities Effective leadership skills Demonstrated problem‑solving skills Demonstrated written communication skills Licenses and Certifications Driver's License Required Project Management Professional (PMP) training and/or certification in Project Management is a plus (Preferred) Other cybersecurity certifications such as CISSP, CISM, GCFA, GCIA, or GCFE (Preferred) Physical Demands Sit or stand to answer a phone for the duration of the workday Sit or stand to use a keyboard, mouse, and computer for the duration of the workday Ability to read small print and symbols Additional Physical Demands The selected candidate will be assigned a System Emergency Assignment (i.e., an emergency response role) and will be expected to work non‑business hours during emergencies, which may include nights, weekends, and holidays. Must be able and willing to travel within Company service territory, as needed

EQUAL OPPORTUNITY EMPLOYER

EEO Statement: Consolidated Edison Company of New York, Inc. (Con Edison), Orange & Rockland Utilities (O&R), and Consolidated Edison Transmission (CET) are equal opportunity employers. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of the individual’s actual or perceived disability, protected veteran status, race, color, creed, religion, sex, age, national origin, gender, gender identity, gender expression, genetic information, marital status, sexual orientation, citizenship, domestic violence victim status, or any other actual or perceived status protected by law. #J-18808-Ljbffr Con Ed

Vacancy posted 4 days ago
Similar jobs that could be interesting for youBased on the Detection and Response Manager in New York, NY vacancy
  • $145k - $195k

    Service Delivery Manager, Managed Detection and Response We have a new and exciting role for a Service Delivery Manager available within our Managed Detection and Response Team in the Cybersecurity practice in the USA. Cybersecurity USA Who we are S-RM is a global intelligence... 
    Suggested
    Immediate start
    Flexible hours
    Shift work

    S-RM Intelligence and Risk Consulting

    New York, NY
    3 days ago
  • $234k - $300k

    What You’ll Do: Lead and grow a team of product managers focused on Datadog’s TDIR capabilities within Cloud SIEM Define and execute product strategy across detection workflows, investigation experiences, and response automation Own the roadmap for core pillars: integrations... 
    Suggested

    The Consulting Solutions

    New York, NY
    2 days ago
  •  ...Principal Software Engineer to shape and deliver advanced threat detection and incident response solutions. In this pivotal role, you will influence the...  .... With 10-15 years of relevant experience, you will manage security logging infrastructures and support incident... 
    Suggested

    Remotewoman

    New York, NY
    4 days ago
  • $168k - $195k

     ...the ultimate technical authority for cyber defense and incident response. This high‑impact leadership role combines elite technical...  ...specific APT groups and real‑world attack scenarios. Advanced Detection & Hunting Strategy Threat Hunting Architecture: Design and oversee... 
    Suggested
    Local area
    Shift work

    Dormont Manufacturing Company

    New York, NY
    6 hours ago
  • $168k - $195k

     ...services and ensures the necessary IT risk management and security measures are in place and...  ...for cyber defense and incident response. This is a high-impact leadership role that...  ...and real-world attack scenarios. Advanced Detection & Hunting Strategy Threat Hunting Architecture... 
    Suggested
    16 hours
    Work at office
    Local area
    Immediate start
    Remote work
    Relocation
    Shift work

    Corebridge Financial

    Jersey City, NJ
    2 days ago
  • Con Edison is seeking a Detection and Response Manager based in New York to lead the Detection and Response Team within the Cybersecurity Operations Center. This pivotal role is responsible for advanced threat detection and incident response, overseeing a new team that... 

    Con Edison

    New York, NY
    1 day ago
  • Con Ed is seeking a Detection and Response Manager to lead the team responsible for advanced threat detection and incident management within the IT and OT Cybersecurity Operations Center. This role involves enhancing processes, developing detection capabilities, and ensuring... 

    Con Ed

    New York, NY
    4 days ago
  • Blackbaud is seeking a Sr. Manager of Cyber Threat Detection and Response to lead the detection engineering and incident response teams. Responsibilities include developing threat detection frameworks and managing incident response efforts across varied security operations... 
    Remote work
    Flexible hours

    Blackbaud

    New York, NY
    11 hours ago
  • $150.9k - $226.3k

    Role Overview The Incident Response Technical Program Manager is a senior cross‑functional operator who will lead Harvey's response to security and...  ...security, and business teams under pressure. They join the Detection & Response function within Harvey's Information Security... 

    jobr.pro

    New York, NY
    3 days ago
  • $254k - $349k

     ...defining work. We're all in on this mission. If you are too, let's talk. We are seeking a Director, Product Manager, Okta Identity Threat Detection and Response Products  to drive the evolution of Okta’s cutting-edge identity security offerings. This is an individual... 
    Local area
    Worldwide
    Flexible hours

    Okta

    New York, NY
    10 days ago
  •  ...Cyber Monitoring & Incident Response Manager Are you ready to make an impact at DTCC? Do you want to work on innovative projects, collaborate...  ...of analysts and associates located in the APAC region who detect, investigate, and respond to cyber security events in the... 
    Remote work
    Flexible hours
    Night shift

    Dtcc

    Jersey City, NJ
    4 days ago
  • $170k - $210k

     ...drive their global operations strategy. This role involves leading a high-performing team for 24/7 security monitoring, incident response, and ensuring regulatory compliance. Candidates should have extensive cybersecurity experience, particularly in SOC environments,... 

    The Security Executive Council

    New York, NY
    11 hours ago
  •  ...new areas of inspiration and expand your capabilities, then consider a career in Advisory. We are currently seeking a Manager, Incident Response to join our Advisory practice. Responsibilities Lead and manage cyber incident response activities, including triage... 
    Full time
    Work experience placement
    H1b
    Local area

    KPMG

    New York, NY
    9 days ago
  • $70k - $80k

    Metropolitan Council on Jewish Poverty is looking for an Operations Manager in New York City. This role involves responding to building-...  ...NYC regulations. The job requires frequent travel and hands-on response, offering a salary of $70,000 - $80,000 plus comprehensive... 
    Live in

    Metropolitan Council on Jewish Poverty

    New York, NY
    4 days ago
  • $281k - $392k

     ...Director, Product Management, SecOps Detections, Google Cloud Security Apply Benefits for this role include: Health, dental, vision, life...  ...SecOps and Threat Operations). The organization is responsible for the strategy and development of our entire security product... 
    Temporary work
    Shift work

    Google Inc.

    New York, NY
    4 days ago
  • $190k - $234k

     ...operations platform. From component sourcing to end customer management, we enable and create value for Waymo through scaled and orchestrated...  .... In this hybrid role, you will report to the Head of Event Response. Responsibilities Improve real‑time workflows for critical... 
    Full time

    Waymo

    New York, NY
    2 days ago
  • $200k - $230k

     ...Business Director - Multi-Cancer Early Detection (East)Applylocations: Remote - New York...  ...RBD) is a senior sales leadership role responsible for driving regional MCED growth while...  ...coaches, and develops a team of 6-9 Account Managers and Early Detection Specialists, while... 
    Work experience placement
    Work at office
    Remote work
    Afternoon shift

    Caris Life Sciences, Ltd.

    New York, NY
    4 days ago
  •  ...and experienced Leader for its Incident Response team. This is a senior-level, hands‑on,...  ...and practical experience in AI‑assisted detection, security automation, and modern SOC engineering...  ...a motivated leader who will directly manage, mentor, and develop a team of SOC... 
    Shift work

    American Express

    New York, NY
    3 days ago
  • American Express is seeking a Senior Manager for Internal Fraud Rules Development to lead...  ...the design and implementation of fraud detection rules. The role requires tight...  ...required, with a preference for a Master’s. Responsibilities include monitoring rule performance and... 

    American Express

    New York, NY
    11 hours ago
  • PBS Facility Service is looking for a Manager of Laborers, Handyman, and Emergency Response Operations in New York. In this role, you will oversee a team, coordinate maintenance and repair work, and provide guidance to staff to ensure compliance with industry standards.... 

    PBS Facility Service

    New York, NY
    11 hours ago
  • $140k - $245k

     ...collaboration, join us! We’re looking for an expert Technical Program Manager (TPM) to support our Security Operations team. In this role...  ...processes, risk assessments, security investigations, detection and response operations, and incident response Familiarity with security... 
    Full time
    Remote work
    Work from home

    Figma

    New York, NY
    2 days ago
  •  ...Accounting Advisory Services for our  Deal Advisory practice. Responsibilities: Provide client-focused accounting advisory assistance on...  ...Lead the education and development team of associates to managers around similar technical accounting topics Partner with our... 
    Full time
    H1b
    Local area

    KPMG

    New York, NY
    13 days ago
  • $290k - $365k

    Incident Response Manager - Product & Engineering About Anthropic Anthropic’s mission is to create reliable, interpretable, and steerable AI...  ...to-market teams to continuously improve how the organization detects, responds to, and learns from incidents You May Be a Good... 
    Visa sponsorship

    Anthropic

    New York, NY
    4 days ago
  • Emergency Response Roster - Humanitarian Advocacy & External Engagement Director Join to apply for the Emergency Response Roster - Humanitarian...  ...disaster strikes. Job Purpose In line with the WVI Disaster Management Standards for global emergencies this position fills an... 
    Full time
    Work at office
    Local area
    Immediate start
    Remote work
    Shift work

    World Vision

    New York, NY
    11 hours ago
  • $290k - $365k

    About The Role We are looking for an Incident Response Manager to serve as the operational backbone of how Anthropic handles incidents. When...  ...to-market teams to continuously improve how the organization detects, responds to, and learns from incidents Qualifications Have... 
    Work at office
    Visa sponsorship
    Flexible hours

    Anthropic

    New York, NY
    1 day ago
  •  ...expand your capabilities, then consider a career in Advisory. KPMG is currently seeking a Manager in Enterprise Solutions for our Consulting practice. Responsibilities : Lead Oracle Fusion Supply Chain implementation projects specific to Manufacturing and... 
    Full time
    H1b
    Work at office
    Local area

    KPMG

    New York, NY
    9 days ago
  • $94k - $125k

     ...driven, entrepreneurial Customer Marketing Manager to join our Corporate Marketing team — a group of talented professionals responsible for sourcing, creating, and amplifying...  ...and security into one place, using AI to detect and resolve issues before they impact customers... 
    Work at office

    Datadog

    New York, NY
    1 day ago
  •  ...an agentic AI platform that proactively detects, monitors, and takes down impersonators...  ...is looking for a Technical Account Manager to lead customer-facing engagements and...  ...technically, this role is for you. Responsibilities Pre-sales execution: Partner with... 
    Work at office
    Flexible hours

    Outtake

    New York, NY
    2 days ago
  • $95k - $115k

     ...Project Manager For North American Operations Mini-Circuits designs, manufactures and...  ...applications. Our products are also used in detection, measurement and imaging applications,...  ...for North American Operations will be responsible for leading and managing all assigned operational... 
    Permanent employment
    For contractors
    Relocation
    Night shift

    Mini-Circuits

    Brooklyn, NY
    3 days ago
  •  ...Security Operations to join its expanding team in New York. This role is pivotal in managing day-to-day security operations and involves coordinating with our managed detection and response provider. The ideal candidate should have over 5 years of experience in security... 

    Andersen

    New York, NY
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Detection and Response Manager. Be the first to apply!