Talent.com
Match Group
IR / SOC Manager (Security Engineering)Match Group • Vancouver, British Columbia
No longer accepting applications
IR / SOC Manager (Security Engineering)

IR / SOC Manager (Security Engineering)

Match Group • Vancouver, British Columbia
22 days ago
Job type
  • Full-time
Job description

About the Role

As the Manager, IR / SOC, you will lead the integrated team responsible for Detection Engineering, Security Operations Center (SOC), and Incident Response (IR) across Match Group. Reporting to the Sr. Director of Security Engineering, you will drive the strategic vision of maximizing rapid and accurate threat response capabilities by integrating these three core functions and leveraging AI-driven innovation.

You will own the detection lifecycle end-to-end — from signal engineering and alert tuning through triage, investigation, and incident resolution — while building toward an AI-augmented SOC model that reduces noise, accelerates response, and scales across a global portfolio.

What You'll Do

  • Lead and develop a high-performing team of SOC analysts, detection engineers, and incident responders operating across multiple time zones with 24/7 coverage

  • Play a key role in developing the detection engineering framework, contributing to detections-as-code (DaC) via GitOps/CI/CD pipelines for consistency and automated deployment

  • Drive AI Agentic SOC adoption — evaluate, select, and implement AI-driven triage and investigation tooling to maximize SOC efficiency, reduce false positives, and accelerate initial response speed

  • Manage the full incident lifecycle — from detection through containment, eradication, recovery, and lessons learned — partnering with Legal, Communications, Privacy, and Engineering teams

  • Build and refine detection content across the SIEM platform, integrating log sources across all MG brands (Tinder, Hinge, Match, E&E, HPCNT, Eureka, and New Bets)

  • Establish and track SOC metrics and SLAs, creating dashboards to visualize performance, alert fidelity, and response effectiveness

  • Coordinate and execute IR tabletop exercises (technical and management-level) across brands to validate readiness and improve playbooks

  • Partner with the Red Team to validate detection capabilities through adversary simulation and assumed-compromise testing

  • Collaborate with Platform Security, InfraSec, and AppSec teams to identify and close detection gaps across cloud-native and hybrid environments (AWS, GCP), datacenter infrastructure, endpoints (CrowdStrike), identity (Okta), SaaS, and application layers

  • Integrate threat intelligence into detection and response workflows to anticipate and proactively defend against emerging threats

  • Use automation to improve detection and response times and mitigate incident impact

What You'll Bring

  • 5+ years of experience in security operations, incident response, detection engineering, or threat hunting, with 2+ years in a team leadership or management role
  • Proven experience building and operating a modern SOC in cloud-native and hybrid environments (AWS, GCP) and datacenter infrastructure
  • Hands-on experience with SIEM platforms and SOAR tools — including detection-as-code methodologies
  • Strong understanding of AI/ML applications in security operations — agentic SOC, automated triage, and intelligent alert enrichment
  • Experience managing the full incident lifecycle across complex, multi-brand or multi-tenant environments
  • Deep knowledge of attacker TTPs (MITRE ATT&CK), endpoint and network forensics, and threat hunting techniques
  • Experience with cloud security monitoring (AWS CloudTrail, GuardDuty, Security Hub, CloudWatch; GCP Security Command Center), datacenter security, and container orchestration security (Kubernetes)
  • Familiarity with identity and access security monitoring (Okta, SSO, MFA events)
  • Experience coordinating with external incident response teams, law enforcement, and cross-functional stakeholders during security events
  • Polished verbal and written communication skills — ability to communicate clearly during high-pressure incidents and deliver thorough post-incident reports to technical and executive audiences
  • Relevant certifications are a plus: GCIH, GCFA, GCIA, GSOM, CISSP, or equivalent

Nice to Have

  • Experience with Python-based detections and log analysis in modern cloud-native SIEM platforms
  • Background in the consumer internet/dating industry or other high-scale B2C platforms
  • Familiarity with Cloudflare (WAF, Bot Management), CrowdStrike, and SaaS security monitoring (Obsidian or similar)
  • Experience building or leading a Blue Team volunteer program or cross-functional security response team
$170,000 - $190,000 a yearWhy Match Group?
Our mission is simple – to help people find love and happiness! We love our employees too and understand the importance of all life's milestones. Here are some of the benefits we are proud to offer:
Mind & Body – Medical, mental health, and wellness benefits to support your overall health and well-beingFinancial Wellness – Competitive compensation, 100% employer match on 401k contributions up to 10% (cap at $10,000), as well as an employee stock purchase program to help you feel supported in your financial securityUnplug – Generous PTO and 14 paid holidays so you can unplugCareer – Annual training allowance for professional development and ERG membership opportunities and events so you feel connected and empowered in your workFamily – Families come in all shapes and sizes so we offer 20 weeks of 100% paid parental leave, fertility, adoption, and child care resources, as well as pet insurance and discounts Company Gatherings – We host company events where our employees get to know each other and build a sense of connection and belonging!
We are proud to be an equal opportunity employer and we value the rich dynamics that diversity brings to our company. We do not discriminate on the basis of race, religion, color, creed, national origin, ancestry, disability, marital status, age, sexual orientation, sex (including pregnancy and sexual harassment), gender identity or expression, uniformed service or veteran status, genetic information, or any other legally protected characteristic. Period.
If you require a reasonable accommodation to participate in the hiring process — such as during pre-employment testing or interviews — please indicate this by selecting “Yes” in the accommodation request field. We’ll reach out to discuss your needs if you're selected for the interview stage.
#MG.
Create a job alert for this search

IR / SOC Manager (Security Engineering) • Vancouver, British Columbia

Similar jobs

Information Security Analyst - SIEM, IR & Cloud Security

Fortinet, Inc.Burnaby, Metro Vancouver Regional District, CA
Full-time

A cybersecurity leader is seeking an experienced Information Security Analyst in Burnaby to ensure the security of their global infrastructure.The role involves monitoring security operations, resp... Show more

 • Promoted

OT Security Solutions Architect — Pre‑Sales

FortinetVancouver, Metro Vancouver Regional District, CA
Full-time

A global cybersecurity company seeks an OT Business Development Engineer to drive customer engagement and lead technical solutions in Operational Technology security.Responsibilities include engagi... Show more

 • Promoted

Infrastructure & Capital Projects – Sr. Risk Specialist, COM

AccentureVancouver
Full-time

You’ve Never Been Satisfied with “Good Enough.You want to make an impact, not just manage projects, but change how the world gets built.At Accenture Infrastructure & Capital Projects, you’ll do exa... Show more

 • Promoted

Security Policy Architect & Implementation Lead

TELUSVancouver, British Columbia, Canada
Full-time

A leading technology firm is looking for an Information Security Policy and Implementation Specialist in Metro Vancouver to enhance security policies and standards.This role involves ensuring compl... Show more

 • Promoted

Activision Senior Manager, Product Security

Activision BlizzardVancouver, British Columbia, Canada
Full-time

Lead security innovation at Activision as a Senior Product Manager.Drive product strategies to combat cheating and ensure player safety across gaming platforms.In this pivotal role at Activision's ... Show more

 • Promoted

Senior SOC Analyst — Threat Detection & IR Lead

lululemonVancouver
Full-time

A leading performance apparel company in Vancouver is seeking a Senior Cybersecurity Analyst to enhance cybersecurity initiatives.This role involves leading complex analyses, evaluating risks, and ... Show more

 • Promoted

Remote Cloud Security Architect: DevSecOps & Risk Leader

Intuitive.aiVancouver, Metro Vancouver Regional District, CA
Remote
Full-time

A leading cybersecurity solutions company is seeking a Cybersecurity Specialist (GCP) to enhance their Cybersecurity Program.The role involves developing comprehensive security strategies in cloud ... Show more

 • Promoted

Remotely Piloted Aircraft Systems Platform I.T./Network Specialist

MDA Systems Ltd.Richmond, Metro Vancouver Regional District, CA
Remote
Full-time

Remotely Piloted Aircraft Systems Platform I.A wholly‑owned subsidiary of MDA Space, building on more than five decades of trusted Canadian defense delivery, 49North operates as a sovereign Canadia... Show more

 • Promoted

Strategic Information Security Architect

ColliersVancouver, Metro Vancouver Regional District, CA
Full-time

Transform global security architecture as a Strategic Information Security Architect.Spearhead cloud migration security strategies while ensuring systems are secure and compliant.This pivotal role ... Show more

 • Promoted

Senior SRE - Fintech Reliability & Security Lead

RelayVancouver, Metro Vancouver Regional District, CA
Full-time

A leading digital banking platform is seeking a Senior Site Reliability Engineer to enhance their infrastructure and improve reliability.The role involves building and optimizing production infrast... Show more

 • Promoted

Team Lead, CSOC

Global RelayVancouver, British Columbia, Canada
Full-time

Your role The Information Security Team Lead for the Cyber Security Operations Center (CSOC) leads a team of Cyber Security Specialists and serves as the primary escalation point for security event... Show more

 • Promoted

Senior Manager, Safety And Security

Armstrong CollectiveVancouver, Canada
Full-time

PurposeReporting to the Director, Safety, Risk & Compliance, the Senior Manager, Safety & Security is a senior leader accountable for advancing Armstrong Collective's safety, security, ... Show more

 • Promoted

Technical Program Manager, Security Engineering

Match GroupVancouver, Canada
Full-time

About Match GroupMatch Group (NASDAQ: MTCH) is a leading provider of dating products across the globe, operating a portfolio of brands including Tinder, Hinge, Match, OkCupid, Pairs, Meetic, and mo... Show more

 • Promoted

Manager - SAP Security, Controls and GRC

EYVancouver, Metro Vancouver Regional District, Canada
Full-time

At EY, we’re all in to shape your future with confidence.We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go.Join EY and help ... Show more

 • Promoted

Program Specialist, Integrated Safety Management Systems (iSMS)

Vancouver Airport AuthorityVancouver, Metro Vancouver Regional District, CA
Full-time

YVR is a place of connection, bringing together people, places and cargo while ensuring a safe and efficient experience for everyone.Operational Safety, within the Airport Operations business unit,... Show more

 • Promoted

Information Technology Security Manager

TEEMARichmond, Metro Vancouver Regional District, CA
Full-time

Get AI-powered advice on this job and more exclusive features.This range is provided by TEEMA.Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.Di... Show more

 • Promoted

AI Security CSM: Automation & SOC Orchestration

D3 SecurityVancouver, Metro Vancouver Regional District, CA
Full-time

A cybersecurity technology firm is seeking a Technical Customer Success Manager in Canada to drive customer engagement and ensure effective deployment of their AI-driven automation platform.Candida... Show more

 • Promoted

Remote Senior SOC Analyst for Threat Detection and Incident Management

TreantlyVancouver, Metro Vancouver Regional District, CA
Remote
Full-time

Shape cybersecurity efforts as a Senior SOC Analyst, proficient in threat detection and incident response.Lead remote operations to tackle complex security challenges while mentoring junior analyst... Show more

 • Promoted

Hybrid Project Manager, Security & Risk Programs

Insight GlobalVancouver, Metro Vancouver Regional District, CA
Full-time

A leading performance apparel and wellness company is seeking a Project Manager to oversee large projects within the Security & Risk domain.The role requires a minimum of 3 years of project managem... Show more

 • Promoted

Technology Manager Driving Security in Identity Access Management

Best Buy CanadaVancouver, British Columbia, Canada
Full-time

Lead the charge in security and efficiency with a role as a Technology Manager in IAM.This remote-first position allows you to leverage your expertise in managing identity and access systems effect... Show more