Match Group
Security
CybersecurityManager(IncidentResponse&SecurityOperations)
Neural analysis suggests this role is
optimal for Manager candidates.
“Cybersecurity Manager (Incident Response & Security Operations) at Match Group. Skills: Incident Response, Security Operations, Detection Engineering, AI-augmented SOC. Lead integrated team. Drive strategic vision”
What You'll Achieve.
Maximize rapid threat response; Maximize accurate threat response; Reduce noise; Accelerate response; Scale across portfolio; Reduce false positives; Accelerate initial response speed; Validate detection capabilities; Improve playbooks; Close detection gaps; Improve detection times; Improve response times; Mitigate incident impact
Industry & Context.
Root cause analysis; Troubleshooting; Alert tuning; Investigation; Incident resolution
24/7 coverage
What They're Looking For.
Must Have
5+ years security operations, 5+ years incident response, 5+ years detection engineering, 5+ years threat hunting, 2+ years team leadership, 2+ years management role, Build and operate modern SOC, Experience with SIEM platforms, Experience with SOAR tools, Understanding AI/ML applications, Manage full incident lifecycle, Experience with cloud security monitoring, Experience with datacenter security, Experience with container orchestration security, Familiarity with identity access security monitoring, Experience coordinating external IR teams, Experience coordinating with law enforcement, Experience coordinating with cross-functional stakeholders, Polished verbal communication skills, Polished written communication skills
Nice to Have
Python-based detections experience, Log analysis experience, Background consumer internet industry, Background dating industry, Background high-scale B2C platforms, Cloudflare experience, CrowdStrike experience, SaaS security monitoring experience, Obsidian experience, Experience building Blue Team program, Experience leading Blue Team program, Experience building cross-functional security team, Experience leading cross-functional security team
What You'll Do.
Drive strategic vision
Maximize threat response capabilities
Integrate core functions
Leverage AI innovation
Own detection lifecycle
Build AI-augmented SOC model
Develop high-performing team
Operate across time zones
Provide 24/7 coverage
Develop detection engineering framework
Contribute to detections-as-code
Drive AI Agentic SOC adoption
Manage full incident lifecycle
Partner with Communications
Partner with Engineering
Build detection content
Integrate log sources
Establish SOC metrics
Visualize performance
Visualize alert fidelity
Visualize response effectiveness
Coordinate IR tabletop exercises
Execute IR tabletop exercises
Partner with Red Team
Validate detection capabilities
Collaborate with Platform Security
Collaborate with InfraSec
Collaborate with AppSec
Identify detection gaps
Integrate threat intelligence
Anticipate emerging threats
Proactively defend threats
Improve detection times
Improve response times
Mitigate incident impact
How You'll Work.
Team & Collaboration
Cross-functional stakeholders; External incident response teams; Law enforcement; Platform Security teams; InfraSec teams; AppSec teams; Legal teams; Communications teams; Privacy teams; Engineering teams; Red Team
Communication Scope
Verbal communication; Written communication; Post-incident reports
Process & Methodology
Detections-as-code, GitOps, CI/CD pipelines
Full Job Description
## About the Role As the Manager, IR / SOC, you will lead the integrated team responsible for Detection Engineering, Security Operations Center (SOC), and Incident Response (IR) across Match Group. Reporting to the Sr. Director of Security Engineering, you will drive the strategic vision of maximizing rapid and accurate threat response capabilities by integrating these three core functions and leveraging AI-driven innovation. You will own the detection lifecycle end-to-end — from signal engineering and alert tuning through triage, investigation, and incident resolution — while building toward an AI-augmented SOC model that reduces noise, accelerates response, and scales across a global portfolio. ## What You'll Do Lead and develop a high-performing team of SOC analysts, detection engineers, and incident responders operating across multiple time zones with 24/7 coverage Play a key role in developing the detection engineering framework, contributing to detections-as-code (DaC) via GitOps/CI/CD pipelines for consistency and automated deployment Drive AI Agentic SOC adoption — evaluate, select, and implement AI-driven triage and investigation tooling to maximize SOC efficiency, reduce false positives, and accelerate initial response speed Manage the full incident lifecycle — from detection through containment, eradication, recovery, and lessons learned — partnering with Legal, Communications, Privacy, and Engineering teams Build and refine detection content across the SIEM platform, integrating log sources across all MG brands (Tinder, Hinge, Match, E&E, HPCNT, Eureka, and New Bets) Establish and track SOC metrics and SLAs, creating dashboards to visualize performance, alert fidelity, and response effectiveness Coordinate and execute IR tabletop exercises (technical and management-level) across brands to validate readiness and improve playbooks Partner with the Red Team to validate detection capabilities through adversary simulation and assumed-compromise testing Collab
Applying for this Cybersecurity Manager (Incident Response & Security Operations) role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Lever
- Lever uses a streamlined one-page form — apply in under 5 minutes.
- LinkedIn import works well; review parsed data before submitting.
- The cover letter field is optional but visible to reviewers — use it to differentiate.
- Referral codes from employees can significantly boost visibility of your application.
ANONYMOUS · UNFILTERED
What do employees actually say about Match Group?
Real rants from real employees. Read before you apply.