Haystack
← Back to Jobs
Technology

Technical Product Manager

Purple Drive Technologies LLCDurham, NC🇺🇸United StatesPosted 15 Jul 2026

Quick Overview

Work Type
Hybrid
Level
Mid Senior

Job Description

Job Title: Technical Product Manager - SIEM/SOAR & Security Platforms

Location: Research Triangle Park, NC / Remote

Job Type: Full-Time

Experience: 6-8 Years



Job Summary

We are seeking a Technical Product Manager with expertise in SIEM, SOAR, Security Telemetry, and Detection Engineering to drive the operational excellence of enterprise security platforms. The ideal candidate will have a strong technical background in cybersecurity, security operations, and platform management, with experience leading cross-functional initiatives involving SOC, engineering, compliance, and product teams. This role focuses on enhancing security monitoring, telemetry quality, detection capabilities, and regulatory compliance while leveraging AI to improve operational efficiency.



Required Skills

SIEM & SOAR Platforms

  • 6-8 years of experience in Cybersecurity, Security Operations, or Security Platform Management
  • Hands-on experience with:
    • SIEM Platforms (Splunk, Microsoft Sentinel, QRadar, Elastic SIEM, etc.)
    • SOAR Platforms
    • Security Monitoring
    • Security Operations

Security Telemetry & Detection Engineering

  • Security Log Management
  • Telemetry Ingestion
  • Log Normalization
  • Detection Engineering
  • Detection Rules
  • Use Case Development
  • Threat Detection
  • Security Analytics

Query Languages

  • SQL
  • Splunk SPL
  • Elastic DSL
  • Log Analytics Queries
  • Security Data Analysis

Security Compliance

  • SEC Attestation
  • Logging Compliance
  • Audit Readiness
  • Security Governance
  • Regulatory Compliance
  • Security Standards

Platform Operations

  • Platform Performance Management
  • Service Availability
  • Incident Management
  • Root Cause Analysis
  • Continuous Improvement
  • SLA / SLO Monitoring
  • Detection Coverage Metrics

Documentation

  • Standard Operating Procedures (SOPs)
  • Runbooks
  • Technical Documentation
  • Operational Procedures

Cross-Functional Leadership

  • Product Management
  • Engineering Coordination
  • SOC Collaboration
  • Stakeholder Management
  • Vendor Coordination
  • Technical Program Leadership

AI & Automation

  • AI-enabled Security Operations
  • AI-driven Process Automation
  • Operational Intelligence
  • Security Platform Optimization



Key Responsibilities

  • Manage the operational lifecycle of SIEM/SOAR platforms, including telemetry ingestion, detection use cases, and platform availability
  • Monitor and optimize SIEM/SOAR pipelines for stability, scalability, and performance
  • Develop, tune, and manage detection content, rules, and security use cases to improve threat detection capabilities
  • Validate security telemetry quality, log normalization, and data integrity across multiple sources
  • Define, monitor, and report on service-level metrics including detection coverage, response timelines, and workflow health
  • Collaborate with Engineering, Product, SOC, Platform, and Compliance teams to deliver enterprise security capabilities
  • Analyze security data using SQL, Splunk SPL, Elastic DSL, and other query languages to troubleshoot issues and answer business questions
  • Assess client environments for logging compliance and SEC attestation requirements
  • Create and maintain operational runbooks, SOPs, technical documentation, and best practices
  • Support technical integration of security platforms for acquisitions and enterprise expansion
  • Leverage AI technologies to improve platform operations, security analytics, and operational efficiency



Preferred Qualifications

  • Experience with Splunk Enterprise Security, Microsoft Sentinel, Elastic Security, QRadar, or similar SIEM platforms
  • Experience with SOAR solutions such as Splunk SOAR, Cortex XSOAR, or Microsoft Sentinel Automation
  • Knowledge of MITRE ATT&CK, SOC operations, and threat hunting
  • Security certifications such as:
    • CISSP
    • GIAC
    • Security+
    • Splunk Certifications
  • Experience in enterprise cybersecurity environments and security platform modernization

Skills

SQL
Splunk
Stakeholder Management

Similar jobs