1

Cyber Operations Manager Jobs in Michigan (NOW HIRING)

Maintain ticket management and DevOps activity tracking to ensure accurate work intake ... Cyber Design * Incident Response * Security Architecture * Business Partnership Qualifications ...

Cyber Manager - ServiceNow Our Deloitte Cyber team understands the unique challenges and ... Operations Management, Information Technology Asset Management, and Third-Party Risk Management ...

Cyber Manager - ServiceNow Our Deloitte Cyber team understands the unique challenges and ... Operations Management, Information Technology Asset Management, and Third-Party Risk Management ...

Technical Cyber Advisor On-site

Detroit, MI · Hybrid

$109K - $110K/yr

Collaborate with IT, security, and operational teams to implement necessary controls and measures ... Develop and manage Plan of Action and Milestones (POA&Ms) to address identified gaps, ensuring ...

next page

Showing results 1-20

Cyber Operations Manager information

What does a Cyber Operations Manager do?

A Cyber Operations Manager oversees an organization's cybersecurity operations, ensuring that systems, networks, and data are protected from cyber threats. They develop and implement security policies, manage incident response, and coordinate cybersecurity teams. Their responsibilities often include monitoring for security breaches, analyzing vulnerabilities, and ensuring compliance with industry regulations. In addition, they collaborate with IT and executive leadership to align security strategies with business goals.

What are some common challenges faced by Cyber Operations Managers, and how can they be addressed?

Cyber Operations Managers often contend with rapidly evolving cyber threats, balancing proactive defense strategies with incident response. Staying ahead of emerging attack vectors requires continuous learning and adaptation, as well as effective communication across technical and non-technical teams. To address these challenges, it's crucial to foster a culture of ongoing training, leverage threat intelligence, and maintain clear incident response protocols. Collaborating closely with IT, legal, and executive leadership also ensures alignment on security priorities and resource allocation.

Can you make $500,000 a year in cyber security?

Cyber Operations Managers with extensive experience, advanced certifications, and leadership roles in large organizations can potentially earn salaries approaching or exceeding $500,000 annually, especially with bonuses and stock options. However, such high compensation levels are uncommon and typically require a combination of specialized skills, strategic positions, and industry demand.

Can you make $200,000 in cyber security?

Cyber Operations Managers with extensive experience, advanced certifications, and leadership roles can earn salaries around or above $200,000 annually, especially in high-demand industries or large organizations. Achieving this level often requires specialized skills in threat management, incident response, and strategic planning, along with a strong track record of successful security initiatives.

What are the key skills and qualifications needed to thrive as a Cyber Operations Manager, and why are they important?

To thrive as a Cyber Operations Manager, you need expertise in cybersecurity principles, risk management, and incident response, typically supported by a bachelor's degree in information security or related fields and relevant certifications like CISSP or CISM. Familiarity with security information and event management (SIEM) systems, intrusion detection tools, and network monitoring software is crucial. Strong leadership, analytical thinking, and effective communication skills help manage teams and convey complex security issues to stakeholders. These skills and qualities are essential to ensure organizational resilience against cyber threats and to lead robust security operations.

What is the difference between Cyber Operations Manager vs Cyber Security Analyst?

AspectCyber Operations ManagerCyber Security Analyst
Required CredentialsCertifications like CISSP, CISM, or Security+; Bachelor's or Master's in Cybersecurity or related fieldsCertifications like Security+, CEH, CISSP; Bachelor's in Cybersecurity, Information Technology, or related fields
Work EnvironmentOversees security teams, manages security operations, strategic planningAnalyzes security threats, monitors networks, implements security measures
Employer & Industry UsageUsed in organizations with dedicated security teams, government agencies, large corporationsCommon in IT departments, security firms, and organizations needing threat analysis

The Cyber Operations Manager focuses on managing security teams and strategic security initiatives, while the Cyber Security Analyst primarily monitors and analyzes security threats. Both roles require relevant certifications and work within cybersecurity environments, but their responsibilities differ in scope and focus.

Is CISO a high paying job?

A Chief Information Security Officer (CISO) is typically a high-level executive role with a high salary, often reflecting extensive experience in cybersecurity, leadership skills, and certifications such as CISSP or CISM. Salaries can vary based on industry, company size, and location but generally rank among the top-paying cybersecurity positions.

What is the role of a cyber operations manager?

A cyber operations manager oversees an organization's cybersecurity activities, including monitoring networks for threats, coordinating incident response, and implementing security measures. They often manage security teams, utilize tools like SIEM systems, and require knowledge of cybersecurity frameworks and certifications such as CISSP or CISM.
What are popular job titles related to Cyber Operations Manager jobs in Michigan? For Cyber Operations Manager jobs in Michigan, the most frequently searched job titles are:
What cities in Michigan are hiring for Cyber Operations Manager jobs? Cities in Michigan with the most Cyber Operations Manager job openings:
Senior Consultant Cyber Engineering

Senior Consultant Cyber Engineering

Deloitte

Detroit, MI • On-site

Other

Posted 17 days ago


Deloitte rating

8.1

Company rating: 8.1 out of 10

Based on 90 frontline employees who took The Breakroom Quiz

59th of 148 rated financial services


Job description

Are you passionate about technology and interested in joining a community of collaborative colleagues who respectfully and courageously seek to challenge the status quo? If so, read on to learn more about an exciting opportunity with Deloitte Technology US (DT - US). We are curious and life-long learners focused on technology and innovation.

Recruiting for this role ends on 7/15/2026.

Work you'll do

The position supports the SOC as an escalation point identifying and addressing potential SIEM content/level I and II engineering security concerns as this role is the first line of operational support.  This role is also responsible for supporting Security application patching, content creation as requested from all stake holders, and development of process documentation.

Responsibilities by category:

Administrative

  • Maintain ticket management and DevOps activity tracking to ensure accurate work intake, prioritization, and status reporting.
  • Monitor and communicate Microsoft product updates; assess and advise on impacts on the environment and customers.
  • Build strong stakeholder relationships and provide timely end-user support with clear follow-through and resolution documentation.
  • Create and maintain process documentation (runbooks, SOPs, workflows) to support consistent execution and knowledge transfer.
  • Maintain and enforce change control and peer review processes to promote quality, security, and auditability.

Threat Detection

  • Threat detection development in Microsoft Sentinel and Defender platforms sing KQL.
  • Align detection rules to current and emerging threats, leveraging external threat intelligence as appropriate.
  • Identify and remediate detection gaps using the MITRE ATT&CK framework, based on business risk and priorities.
  • Collaborate with Cybersecurity teams (e.g., Incident Response, Threat Intelligence, Engineering) to ensure cross-team alignment and coverage.
  • Develop, tune, and support analytics/detection rules, including performance monitoring and optimization.
  • Develop, maintain, and optimize playbooks/notebooks, including operational reliability and performance.
  • Develop, maintain, and optimize Logic Apps, including operational reliability and performance.
  • Develop, maintain, and optimize workbooks and dashboards to support detection engineering and SOC visibility.
  • Support reporting needs tied to threat detection outcomes, metrics, and operational insights.
  • Define and document required fields per data source to enable effective detection and investigation.
  • Identify and remediate high-cost/expensive detections to improve signal-to-noise ratio and manage platform consumption.

Automation

  • Design, build, and support automation solutions that improve efficiency, consistency, and time-to-response across security operations.

SOC Support & Collaboration

  • Maintain strong SOC partnerships and provide support for SOC inquiries related to the Azure and Microsoft Defender portals, including troubleshooting and operational guidance.

The successful candidate would possess these skills

  • Ability to work independently and collaborate as part of a team
  • Effective written and verbal communication skills
  • Meticulous attention to detail and quality of work product
  • Ability to build and sustain professional relationships
  • Ability to lead projects or workstreams
  • Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
  • Strong interpersonal skills and professional demeanor
  • Ability to meet deadlines
  • Ability to provide clear guidance to others

The team

Deloitte Technology US (DT - US) helps power Deloitte's success, which serves many of the world's largest, most respected organizations. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence.

The ~3,000 professionals in DT - US deliver services including:

  • Cyber Security
  • Technology Support
  • Technology & Infrastructure
  • Applications
  • Relationship Management
  • Strategy & Communications
  • Project Management
  • Financials

Cyber Security

Cyber Security vigilantly protects Deloitte and client data. The team leads a strategic cyber risk program that adapts to a rapidly changing threat landscape, changes in business strategies, risks, and vulnerabilities. Using situational awareness, threat intelligence, and building a security culture across the organization, the team helps to protect the Deloitte brand.

Areas of focus include:

  • Risk & Compliance
  • Identity & Access Management
  • Data Protection
  • Cyber Design
  • Threat Detection
  • Incident Response
  • Security Architecture
  • Business Partnership

Qualifications

Required:

  • Bachelor's degree or equivalent in Computer Science, Computer Engineering, Business Administration.
  • Minimum 8 years of various technology experience.
  • Minimum 3 years' cyber security experience within SIEM Administration.
  • Hands-on experience with Microsoft Sentinel, including building and tuning analytics rules, hunting queries, workbooks, automation, and managing the SIEM data model and workspace.
  • Strong KQL proficiency for threat hunting, detection logic, investigation, and telemetry analysis.

Preferred:

  • MS Sentinel SC-200 badge
  • SOAR and automation experience, especially with Azure Logic Apps, playbooks, and integrations with ITSM or third-party APIs.
  • Cloud Fundamental Certificates.
  • Ability to communicate network security issues to peers and lower management.
  • Hands-on experience with Linux, working knowledge of multiple Cloud environments, Azure O365, and SOC processes.
  • An understanding of possible attack activities such as network probing/ scanning, DDOS, malicious code activity and possible abnormal activities, such as worms, Trojans, viruses, etc.

The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $97,600 to $200,600.  

You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance. 

EA_ExpHire

RITM10703562

Qualifications:

Are you passionate about technology and interested in joining a community of collaborative colleagues who respectfully and courageously seek to challenge the status quo? If so, read on to learn more about an exciting opportunity with Deloitte Technology US (DT - US). We are curious and life-long learners focused on technology and innovation.

Recruiting for this role ends on 7/15/2026.

Work you'll do

The position supports the SOC as an escalation point identifying and addressing potential SIEM content/level I and II engineering security concerns as this role is the first line of operational support.  This role is also responsible for supporting Security application patching, content creation as requested from all stake holders, and development of process documentation.

Responsibilities by category:

Administrative

  • Maintain ticket management and DevOps activity tracking to ensure accurate work intake, prioritization, and status reporting.
  • Monitor and communicate Microsoft product updates; assess and advise on impacts on the environment and customers.
  • Build strong stakeholder relationships and provide timely end-user support with clear follow-through and resolution documentation.
  • Create and maintain process documentation (runbooks, SOPs, workflows) to support consistent execution and knowledge transfer.
  • Maintain and enforce change control and peer review processes to promote quality, security, and auditability.

Threat Detection

  • Threat detection development in Microsoft Sentinel and Defender platforms sing KQL.
  • Align detection rules to current and emerging threats, leveraging external threat intelligence as appropriate.
  • Identify and remediate detection gaps using the MITRE ATT&CK framework, based on business risk and priorities.
  • Collaborate with Cybersecurity teams (e.g., Incident Response, Threat Intelligence, Engineering) to ensure cross-team alignment and coverage.
  • Develop, tune, and support analytics/detection rules, including performance monitoring and optimization.
  • Develop, maintain, and optimize playbooks/notebooks, including operational reliability and performance.
  • Develop, maintain, and optimize Logic Apps, including operational reliability and performance.
  • Develop, maintain, and optimize workbooks and dashboards to support detection engineering and SOC visibility.
  • Support reporting needs tied to threat detection outcomes, metrics, and operational insights.
  • Define and document required fields per data source to enable effective detection and investigation.
  • Identify and remediate high-cost/expensive detections to improve signal-to-noise ratio and manage platform consumption.

Automation

  • Design, build, and support automation solutions that improve efficiency, consistency, and time-to-response across security operations.

SOC Support & Collaboration

  • Maintain strong SOC partnerships and provide support for SOC inquiries related to the Azure and Microsoft Defender portals, including troubleshooting and operational guidance.

The successful candidate would possess these skills

  • Ability to work independently and collaborate as part of a team
  • Effective written and verbal communication skills
  • Meticulous attention to detail and quality of work product
  • Ability to build and sustain professional relationships
  • Ability to lead projects or workstreams
  • Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
  • Strong interpersonal skills and professional demeanor
  • Ability to meet deadlines
  • Ability to provide clear guidance to others

The team

Deloitte Technology US (DT - US) helps power Deloitte's success, which serves many of the world's largest, most respected organizations. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence.

The ~3,000 professionals in DT - US deliver services including:

  • Cyber Security
  • Technology Support
  • Technology & Infrastructure
  • Applications
  • Relationship Management
  • Strategy & Communications
  • Project Management
  • Financials

Cyber Security

Cyber Security vigilantly protects Deloitte and client data. The team leads a strategic cyber risk program that adapts to a rapidly changing threat landscape, changes in business strategies, risks, and vulnerabilities. Using situational awareness, threat intelligence, and building a security culture across the organization, the team helps to protect the Deloitte brand.

Areas of focus include:

  • Risk & Compliance
  • Identity & Access Management
  • Data Protection
  • Cyber Design
  • Threat Detection
  • Incident Response
  • Security Architecture
  • Business Partnership

Qualifications

Required:

  • Bachelor's degree or equivalent in Computer Science, Computer Engineering, Business Administration.
  • Minimum 8 years of various technology experience.
  • Minimum 3 years' cyber security experience within SIEM Administration.
  • Hands-on experience with Microsoft Sentinel, including building and tuning analytics rules, hunting queries, workbooks, automation, and managing the SIEM data model and workspace.
  • Strong KQL proficiency for threat hunting, detection logic, investigation, and telemetry analysis.

Preferred:

  • MS Sentinel SC-200 badge
  • SOAR and automation experience, especially with Azure Logic Apps, playbooks, and integrations with ITSM or third-party APIs.
  • Cloud Fundamental Certificates.
  • Ability to communicate network security issues to peers and lower management.
  • Hands-on experience with Linux, working knowledge of multiple Cloud environments, Azure O365, and SOC processes.
  • An understanding of possible attack activities such as network probing/ scanning, DDOS, malicious code activity and possible abnormal activities, such as worms, Trojans, viruses, etc.

The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $97,600 to $200,600.  

You may also be eligible to participate in a discretionary annual incentive...


What Deloitte employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom