Manager, Intelligence and Operations

Position Title:â Manager Intelligence and Operations

Location: Herndon Virginia - Hybrid (in office 3x/week)

âJob Overview:

This individual will serve as the Manager of theSecurityIntelligence and Operations team within the Exostar Security Office (ESO)and report to the CISO& VP of Information personleads Exostars centralized security operations and security platform capabilities supporting highly regulated cloud services for Aerospace & Defense and Life Sciences customers. This role is accountable for the operational effectiveness maturity and strategic evolution of Exostars security monitoring incident response vulnerability management and cloud security capabilities with a strong emphasis on Azure and Microsoft 365based FedRAMP and managed service offerings.

This position partners closely with security governance compliance and architecture. The role supports audits and regulatory activities by ensuring security operations evidence and response capabilities function as designed while primary ownership for control design and compliance strategyresideswith a dedicated team.

This position combines technical security leadership with peoplevendor and program management ensuring security operations scale effectivelyremaincompliant with regulatory obligations andalignwith business growth. While technical depth isrequired success in this role depends on the ability to set direction prioritize work mature processes andleadingthrough others.

The team consists of one direct-report security engineer and a rotating group of contractors providing 24/7 monitoring engineering support and continuous monitoring activities

Responsibilities Include:

Security Operations Leadership

• Own the day-to-day and strategic operation of security monitoring incident response and threat detection across cloud and on-prem environments.

• Serve as the technical escalation and decision authority for security incidents advising executive stakeholders and acting as a core member of the Crisis Response Team.

• Lead and mature incident response digital forensics and threat intelligence capabilities across Azure Microsoft 365 and supporting infrastructure.

• Ensure 24/7 security operations coverage through effective contractor oversight clear runbooks and defined escalation paths.

• Cloud & Microsoft Security Focus

• Provide operational leadership and direction for security controls andmonitoringrelated to Azure Microsoft Entra ID Defender Sentinel Secure Score and Microsoft 365.

• Partner with engineering and product teams to embed security inDevSecOps.

• Advise onsecure cloud architecture decisions and ensure security tooling aligns with multi-tenant and regulated service models.

Vulnerability Risk & Operational Assurance

• Direct the Vulnerability Management program covering infrastructure applications and cloud configurations.

• Lead threat hunting and operational risk assessmentsidentifyinggaps in detection response and visibility.

• Support audits and compliance activities by providing operational evidence incident records and control validation.

• Provide input and recommendations to governance and architecture teams based on operational findings andobservedrisk trends.

Security Technology & Program Management

• Own the security tooling ecosystem including SIEM EDR IDS email security DLP and application control technologies.

• Develop andmaintainsecuritytechnologyroadmaps evaluating new tools and capabilities based on risk reduction scalability and cost/benefit.

• Drive standardization documentation and operational maturity through SOPs playbooks and metrics.

People Vendor & Stakeholder Management

• Coach and mentor the security engineer and contractors setting clear expectations priorities and performance standards.

• Balance contractor-driven execution with internal ownership ensuringknowledgeretention and accountability.

• Partner closelywith IT Cloud Engineering Product Compliance and Executive Leadership to integrate security into business initiatives.

• Communicate complex security topics clearly to both technical and non-technical stakeholders.

• Drive strategic and operational directionto the teamandmaintainresponsibility for ensuring the maintenance operations and support of complex security products.

• Provide leadership & technicalexpertiseof Threat Intelligence Incident Responseand Forensicsactivities in cloud (Azure/M365) andon-premiseenvironments

• Ability to advise on technical solutions in alignment with compliance requirements including FedRAMP NIST 800-171 CMMC UK Cyber Essentials and ISO 27001.

• Manage and refine the security monitoring tools suite including SIEM Endpointprotections IDSDetection and Response (EDR) Email Gateway Application Whitelisting and DLP.

• Knowledge of Azure cloud and security technologies includingEntraID Defender for Cloud and Secure Score.

• Lead and conductRisk assessments and routine threat huntsofthe environment and developsolutions to address issuesidentified.

• Direct and evolve the Vulnerability Managementprogram with experience in infrastructure application (DAST) and code scanning (SAST/SCA/IaC) technologies.

• Provideadvice and recommendations for system and device hardening and familiarity with common baseline compliance frameworks (e.g. CIS Benchmarks)

• Develop security technology roadmaps evaluate new products for varying system architectures and provide cost/benefit analysis in alignment with businessobjectives.

• Manage the physical security and access management of the facilities

• Manage incidents advise executive stakeholders and serve as the technical focal point for the Crisis Response Team in response to cyber incidents.

• Coach manage and mentor the team members with a strong focus on refining standard operating procedures and documentation.

• Coordinateand partnerclosely with variousparts of thebusiness and their managementto ensure security integration

Required Skills:

• 10 years of progressive experience in information security or IT security roles.

• 3 years in a technical security leadership or management role with responsibility for setting direction and leading teams.

• Strong background in security operations incident response threat detection and monitoring.

• Demonstrated experience securing Azure and Microsoft 365 environments in regulated or enterprise contexts.

• Working knowledge of SIEM platforms (e.g. Sentinel Splunk) EDR/NGAV email security and vulnerability management tools.

• Experience aligning technical security controls to regulatory frameworks (FedRAMP NIST CMMC).

• Excellent communication prioritization and cross-functional coordination skills.

• Must gain andmaintainTrusted Role.

• U.S. citizenshiprequireddue to contract obligations.

Desired Skills:

• Experience leading and scaling 24/7 security operations with a mix of internal staff and third-party providers.

• Familiarity with cloud service delivery models and managed security operations.

• Experience supporting audits through operational readiness documentation and response coordination.

• Ability to evaluate security tooling and make risk-based recommendations without requiring deep hands-on implementation.

• Prior experience in highly regulated industries or SaaS environments serving government or critical-infrastructure customers.

• CISSP or comparable senior-level security certification

Education:

• Bachelors degree inan ITor Security-related discipline or equivalent experience.

• CISSP and other security/technicalcertifications are a plus.

Exostar - The Company:

• Exostars cloud-based platforms create exclusive communities within the Aerospace and Defense Life Sciences and other highly regulated industries where members securely collaborate share information and operate compliantly. Within these communities we build trust. By analyzing community data we provide insights and intelligence enabling organizations to make better timelier decisions to mitigate risk and operate more efficiently.
• We believe in employee development: we promote internally and provide training and educational assistance
• We provide a fun engaged workplace with social and community-building events
• We offer comprehensive benefits and flexible time off plans

Exostar is an Equal Opportunity Employment Employer. The company provides equal employment opportunities to all applicants without regard to race color religion sex national origin age marital status disability status or genetic information. Exostar is committed to providing equal employment opportunities for all persons in all facets of employment including recruiting hiring compensation promotion training benefits transfers and working conditions.

Equal Opportunity Employer
This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information please review theKnow Your Rightsnotice from the Department of Labor.

Required Experience:

Manager