Detection and Response Manager
Con Ed
Benefits Health Savings Accounts Health Care and Dependent Care Flexible Spending Accounts 401(k) with robust matching Employee Stock Purchase Plan with a generous matching contribution State of the art Employee Assistance Program Generous paid time off plus paid holidays Family support: emergency backup child, & elder care assistance Social responsibility and volunteer opportunities Employee discount program Culture of growth and learning: career development; tuition reimbursement; recognition program Life and Long-Term Disability Benefits *Please be aware that some benefits may not apply to provisional or part-time job titles. Job Description The Detection and Response Manager will build, lead, and continuously mature the Detection and Response Team, serving as Tier 3 support for Con Edisons IT and OT Cybersecurity Operations Center (CSOC). This role is responsible for advanced threat detection, incident escalation, and enterprise wide incident response. Reporting to the Director of Cybersecurity Operations, the manager will establish a new team that functions as the primary escalation path for the CSOC, advances detection engineering maturity, and conducts proactive threat hunting across the enterprise. The role also influences front line CSOC effectiveness by delivering validated detections, well defined playbooks, and targeted training to ensure consistent and confident execution. This position partners closely with Security Engineering, the CSOC, Offensive Security, Corporate Security, and the ETS team to strengthen and evolve how threats are identified and responded to across the organization. As Con Edison continues to invest in technologies such as cloud platforms, containers, AI, and OT environments, the scope of this role includes maturing detection and response capabilities across both existing and emerging technologies. This includes enhancing incident response processes and expanding SIEM and SOAR use cases to support business growth and resilience. The Detection and Response Manager ensures the development of repeatable procedures, validation of detections through realistic scenarios, effective training of stakeholder teams, and seamless transitions of new capabilities to the CSOC. The ultimate objective is to strengthen Tier 1 and Tier 2 operations, enabling faster response times, higher confidence, and improved security outcomes. Responsibilities Build and lead the Detection and Response Team. Operate as the escalation path for high complexity alerts, suspected incidents and root cause investigations, supporting both IT and OT CSOC workflows. Improve the end-to-end response lifecycle, including alert triage, investigation, containment, remediation coordination, lessons learned and documentation. Partner with Security Engineering to develop and mature detection use cases, including tuning detections for low false positives and high signal quality. Lead continuous threat hunting by regularly scanning telemetry and investigation outputs to find stealthy attacker behavior and emerging patterns across IT and OT. Lead campaign-based threat hunting by defining hypotheses, objectives and success criteria with stakeholders, then running time bound hunts aligned to risk, new threats and specific business systems. Identify opportunities across the business where cybersecurity requirements were not implemented, were not consistently enforced, or were misaligned to risk and work with stakeholders to close those gaps. Collaborate with Offensive Security and threat intelligence stakeholders to incorporate new findings into detections, detections engineering and response improvements. Own the end to end lifecycle and continuous improvement of SIEM and SOAR use cases, spanning alert enrichment, case management, automated response actions, and orchestration. Develop and improve incident response processes, including playbook development, scenario testing, tabletop exercises and after-action reviews. Guide capability transitions to the CSOC by ensuring detections and response procedures are documented, trained, tested and ready for steady state operations. Establish measurable performance targets and an operating rhythm, including metrics such as mean time to detect, mean time to respond, investigation throughput, false positive rates and impact from tuning or automation. Evaluate, pilot, and operationalize AI-driven detection and response tools and technology (e.g., anomaly detection, alert summarization/enrichment, and automated triage) to reduce false positives and accelerate MTTD/MTTR. Qualifications Required Education/Experience Bachelor's Degree and 8 years of relevant work experience Master's Degree and 6 years of relevant work experience Preferred Education/Experience Master's Degree (IT, computer science, business administration, engineering or decision sciences including mathematics, analytics, quantitative methods) and 6 years of relevant work experience Relevant Work Experience Leadership experience in cybersecurity operations, detection engineering, or incident response, including building and maturing teams Hands‑on experience designing, tuning, and validating detections across diverse data sources, with a track record of reducing false positives Deep hands‑on experience with SIEM and SOAR platforms, including building correlation logic, case workflows, and automation playbooks Demonstrated experience leading hypothesis‑driven threat hunts and converting findings into durable detections Experience operating in or alongside cloud security (AWS, GCP, Azure, or OCI) Exposure to OT environments and a willingness to develop OT depth, including OT risk, telemetry, and operational constraints Experience developing and operationalizing playbooks, procedures, and training material Experience validating detections through tabletop exercises, purple team testing, and controlled scenarios Track record of improving operational metrics (MTTD, MTTR, false positive reduction) Direct experience in OT or critical infrastructure environments (preferred) Experience partnering with offensive security or threat intelligence teams to translate findings into detections and response improvements (preferred) Experience evaluating and deploying AI‑driven security tooling in a production environment (preferred) Strong working knowledge of MITRE ATT&CK, used to map detections, hunts, and coverage gaps (preferred) Strong stakeholder management across security, engineering, and business teams (preferred) Skills and Abilities Effective leadership skills Demonstrated problem‑solving skills Demonstrated written communication skills Licenses and Certifications Driver's License Required Project Management Professional (PMP) training and/or certification in Project Management is a plus (Preferred) Other cybersecurity certifications such as CISSP, CISM, GCFA, GCIA, or GCFE (Preferred) Physical Demands Sit or stand to answer a phone for the duration of the workday Sit or stand to use a keyboard, mouse, and computer for the duration of the workday Ability to read small print and symbols Additional Physical Demands The selected candidate will be assigned a System Emergency Assignment (i.e., an emergency response role) and will be expected to work non‑business hours during emergencies, which may include nights, weekends, and holidays. Must be able and willing to travel within Company service territory, as needed
EQUAL OPPORTUNITY EMPLOYER
EEO Statement: Consolidated Edison Company of New York, Inc. (Con Edison), Orange & Rockland Utilities (O&R), and Consolidated Edison Transmission (CET) are equal opportunity employers. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of the individual’s actual or perceived disability, protected veteran status, race, color, creed, religion, sex, age, national origin, gender, gender identity, gender expression, genetic information, marital status, sexual orientation, citizenship, domestic violence victim status, or any other actual or perceived status protected by law. #J-18808-Ljbffr Con Ed$145k - $195k
Service Delivery Manager, Managed Detection and Response We have a new and exciting role for a Service Delivery Manager available within our Managed Detection and Response Team in the Cybersecurity practice in the USA. Cybersecurity USA Who we are S-RM is a global intelligence...SuggestedImmediate startFlexible hoursShift work$234k - $300k
What You’ll Do: Lead and grow a team of product managers focused on Datadog’s TDIR capabilities within Cloud SIEM Define and execute product strategy across detection workflows, investigation experiences, and response automation Own the roadmap for core pillars: integrations...Suggested- ...Principal Software Engineer to shape and deliver advanced threat detection and incident response solutions. In this pivotal role, you will influence the... .... With 10-15 years of relevant experience, you will manage security logging infrastructures and support incident...Suggested
$168k - $195k
...the ultimate technical authority for cyber defense and incident response. This high‑impact leadership role combines elite technical... ...specific APT groups and real‑world attack scenarios. Advanced Detection & Hunting Strategy Threat Hunting Architecture: Design and oversee...SuggestedLocal areaShift work$168k - $195k
...services and ensures the necessary IT risk management and security measures are in place and... ...for cyber defense and incident response. This is a high-impact leadership role that... ...and real-world attack scenarios. Advanced Detection & Hunting Strategy Threat Hunting Architecture...Suggested16 hoursWork at officeLocal areaImmediate startRemote workRelocationShift work- Con Edison is seeking a Detection and Response Manager based in New York to lead the Detection and Response Team within the Cybersecurity Operations Center. This pivotal role is responsible for advanced threat detection and incident response, overseeing a new team that...
- Con Ed is seeking a Detection and Response Manager to lead the team responsible for advanced threat detection and incident management within the IT and OT Cybersecurity Operations Center. This role involves enhancing processes, developing detection capabilities, and ensuring...
- Blackbaud is seeking a Sr. Manager of Cyber Threat Detection and Response to lead the detection engineering and incident response teams. Responsibilities include developing threat detection frameworks and managing incident response efforts across varied security operations...Remote workFlexible hours
$150.9k - $226.3k
Role Overview The Incident Response Technical Program Manager is a senior cross‑functional operator who will lead Harvey's response to security and... ...security, and business teams under pressure. They join the Detection & Response function within Harvey's Information Security...$254k - $349k
...defining work. We're all in on this mission. If you are too, let's talk. We are seeking a Director, Product Manager, Okta Identity Threat Detection and Response Products to drive the evolution of Okta’s cutting-edge identity security offerings. This is an individual...Local areaWorldwideFlexible hours- ...Cyber Monitoring & Incident Response Manager Are you ready to make an impact at DTCC? Do you want to work on innovative projects, collaborate... ...of analysts and associates located in the APAC region who detect, investigate, and respond to cyber security events in the...Remote workFlexible hoursNight shift
$170k - $210k
...drive their global operations strategy. This role involves leading a high-performing team for 24/7 security monitoring, incident response, and ensuring regulatory compliance. Candidates should have extensive cybersecurity experience, particularly in SOC environments,...- ...new areas of inspiration and expand your capabilities, then consider a career in Advisory. We are currently seeking a Manager, Incident Response to join our Advisory practice. Responsibilities Lead and manage cyber incident response activities, including triage...Full timeWork experience placementH1bLocal area
$70k - $80k
Metropolitan Council on Jewish Poverty is looking for an Operations Manager in New York City. This role involves responding to building-... ...NYC regulations. The job requires frequent travel and hands-on response, offering a salary of $70,000 - $80,000 plus comprehensive...Live in$281k - $392k
...Director, Product Management, SecOps Detections, Google Cloud Security Apply Benefits for this role include: Health, dental, vision, life... ...SecOps and Threat Operations). The organization is responsible for the strategy and development of our entire security product...Temporary workShift work$190k - $234k
...operations platform. From component sourcing to end customer management, we enable and create value for Waymo through scaled and orchestrated... .... In this hybrid role, you will report to the Head of Event Response. Responsibilities Improve real‑time workflows for critical...Full time$200k - $230k
...Business Director - Multi-Cancer Early Detection (East)Applylocations: Remote - New York... ...RBD) is a senior sales leadership role responsible for driving regional MCED growth while... ...coaches, and develops a team of 6-9 Account Managers and Early Detection Specialists, while...Work experience placementWork at officeRemote workAfternoon shift- ...and experienced Leader for its Incident Response team. This is a senior-level, hands‑on,... ...and practical experience in AI‑assisted detection, security automation, and modern SOC engineering... ...a motivated leader who will directly manage, mentor, and develop a team of SOC...Shift work
- American Express is seeking a Senior Manager for Internal Fraud Rules Development to lead... ...the design and implementation of fraud detection rules. The role requires tight... ...required, with a preference for a Master’s. Responsibilities include monitoring rule performance and...
- PBS Facility Service is looking for a Manager of Laborers, Handyman, and Emergency Response Operations in New York. In this role, you will oversee a team, coordinate maintenance and repair work, and provide guidance to staff to ensure compliance with industry standards....
$140k - $245k
...collaboration, join us! We’re looking for an expert Technical Program Manager (TPM) to support our Security Operations team. In this role... ...processes, risk assessments, security investigations, detection and response operations, and incident response Familiarity with security...Full timeRemote workWork from home- ...Accounting Advisory Services for our Deal Advisory practice. Responsibilities: Provide client-focused accounting advisory assistance on... ...Lead the education and development team of associates to managers around similar technical accounting topics Partner with our...Full timeH1bLocal area
$290k - $365k
Incident Response Manager - Product & Engineering About Anthropic Anthropic’s mission is to create reliable, interpretable, and steerable AI... ...to-market teams to continuously improve how the organization detects, responds to, and learns from incidents You May Be a Good...Visa sponsorship- Emergency Response Roster - Humanitarian Advocacy & External Engagement Director Join to apply for the Emergency Response Roster - Humanitarian... ...disaster strikes. Job Purpose In line with the WVI Disaster Management Standards for global emergencies this position fills an...Full timeWork at officeLocal areaImmediate startRemote workShift work
$290k - $365k
About The Role We are looking for an Incident Response Manager to serve as the operational backbone of how Anthropic handles incidents. When... ...to-market teams to continuously improve how the organization detects, responds to, and learns from incidents Qualifications Have...Work at officeVisa sponsorshipFlexible hours- ...expand your capabilities, then consider a career in Advisory. KPMG is currently seeking a Manager in Enterprise Solutions for our Consulting practice. Responsibilities : Lead Oracle Fusion Supply Chain implementation projects specific to Manufacturing and...Full timeH1bWork at officeLocal area
$94k - $125k
...driven, entrepreneurial Customer Marketing Manager to join our Corporate Marketing team — a group of talented professionals responsible for sourcing, creating, and amplifying... ...and security into one place, using AI to detect and resolve issues before they impact customers...Work at office- ...an agentic AI platform that proactively detects, monitors, and takes down impersonators... ...is looking for a Technical Account Manager to lead customer-facing engagements and... ...technically, this role is for you. Responsibilities Pre-sales execution: Partner with...Work at officeFlexible hours
$95k - $115k
...Project Manager For North American Operations Mini-Circuits designs, manufactures and... ...applications. Our products are also used in detection, measurement and imaging applications,... ...for North American Operations will be responsible for leading and managing all assigned operational...Permanent employmentFor contractorsRelocationNight shift- ...Security Operations to join its expanding team in New York. This role is pivotal in managing day-to-day security operations and involves coordinating with our managed detection and response provider. The ideal candidate should have over 5 years of experience in security...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Detection and Response Manager. Be the first to apply!
- yacht manager New York, NY
- adoption manager New York, NY
- cardiology manager New York, NY
- screen printing manager New York, NY
- infection prevention manager New York, NY
- manager total rewards New York, NY
- recreation manager New York, NY
- copy manager New York, NY
- electronic manager New York, NY
- storage manager New York, NY



