What are the responsibilities and job description for the SecOps Manager position at Veryon?
Description:About VeryonVeryon is the leading global provider of aviation software and information services, trusted by over 7,500 customers, 75,000 maintenance professionals, and 100 OEMs across nearly 150 countries. Our mission is to deliver smarter, predictive technology solutions, including our AI platform, Veryon AIRE that maximizes aircraft uptime and operational efficiency for the world’s most demanding aviation organizations. About the RoleThe SecOps Manager is a hands-on technical security role responsible for strengthening the company’s security posture across cloud infrastructure, applications, endpoints, and identity systems. This role focuses on executing and improving security controls, driving vulnerability remediation, supporting DevOps security practices, and responding to security events. In addition to technical ownership, the SecOps Manager partners with Sales, Product, and Engineering to complete customer security questionnaires, RFPs, and audits, ensuring our security posture is clearly articulated and continuously improving. This role participates in on-call rotations and works closely with Infrastructure, DevOps, IT, and external security partners to deliver measurable security outcomes. Key ResponsibilitiesOwn and operate day-to-day security operations including monitoring, alert triage, and incident response. Implement and improve security tooling across cloud, endpoint, identity, and network layers. Drive vulnerability management for infrastructure and applications, including prioritization, tracking, and remediation support. Enable DevSecOps practices such as: Secure CI/CD pipelines Secrets management SAST, DAST, and dependency scanning Image and artifact security Make hands-on technical changes in cloud environments (AWS/Azure) to improve security and resilience. Collaborate with DevOps and Engineering teams to embed security into delivery workflows. Support and complete customer security questionnaires, RFPs, and due diligence requests. Assist with security audits and evidence collection (SOC 2, ISO 27001). Develop and maintain security documentation, runbooks, and operational procedures. Participate in on-call rotation for security and critical IT incidents. Support identity and access management, zero trust improvements, and endpoint compliance. Requirements:Requirements:5 years of experience in Security Operations, DevSecOps, or Infrastructure Security roles. Strong hands-on experience with: Cloud platforms (AWS and/or Azure) Security tools (EDR, SIEM, IAM, vulnerability scanners) Networking fundamentals (firewalls, VPNs, DNS, routing) Proven experience managing vulnerability remediation for applications and infrastructure. Experience integrating security into CI/CD pipelines. Ability to write clear, accurate security responses for RFPs and questionnaires. Comfortable working in a fast-paced, hands-on environment with on-call responsibilities. Strong troubleshooting, analytical, and communication skills. Preferred Qualifications:Experience in SaaS environments and regulated industries. Certifications such as Security , CySA , CISM, CISSP, or cloud security certifications. Familiarity with compliance frameworks (SOC 2, ISO 27001, CIS, NIST). Experience with container security (Docker, Kubernetes). Exposure to automation and scripting (Python, Bash, PowerShell). Experience working with third-party SOC or MDR providers. Our Core Values:Fueled by Customers: Customers are at the core of every decision. Win Together: Collaboration is our competitive edge. Make It Happen: No excuses. Just outcomes. Innovate to Elevate: We boldly challenge what’s standard and lift what’s possible.