Lead Manager, Security Operations - DDS


The Security Operations Manager for Caesars is responsible for implementing and managing the Data & Digital Security (DDS) program at a tactical and operational level (network and infrastructure) to ensure that security controls are functioning efficiently and effectively, more specifically in the realm of security logging, monitoring, alert management, incident handling, vulnerability and configuration management. Furthermore, this position also supports the DDS Team in doing security research and development, product evaluations, consulting, project support, and any other operational tasks needed to support the overall requirements of the program and strategy. This is a hands-on position and provides technical expertise to establish and implement security related standards, procedures, and guidelines appropriate to securing the existing environment in partnership with various properties and Information Technology. The Security Operations Manager will also be responsible for managing the Security Operations Center (SOC) working with the DDS team, IT teams, and various service providers.


Other SIEM/SOC Engineers and Analysts


Operational Planning & Management

  • Develop content for a complex and growing Security Information & Event Management (SIEM) infrastructure; this includes use cases for Dashboards, Active Channels, Reports, Rules, Filters, Trends, and Active Lists
  • Provide optimization of data flow using aggregation, filters, etc.
  • Participate in the operation of Security Information and Event Management systems to include SIEM, Smart Connectors, Logger appliances, Windows and unix servers, network devices and backups
  • Life-cycle management of the platforms to including coordination and planning of upgrades, new deployments, and maintaining current operational data flow
  • Apply Configuration Management disciplines to maintain hardware/software revisions, content, security patches, hardening, and documentation
  • Provide guidance to security analyst and network engineering staff
  • Work closely with DDS Team to maintain security requirements for Operation of SIEM systems
  • Support all aspects of SIEM initiative
  • Supporting the establishment, enhancement, and continual improvement of an integrated set of correlation rules, alerts, searches, reports, and responses
  • Coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring activities
  • Management responsibilities of the Security Operations Center; Responding to day-to-day security requests relating to SIEM operations
  • Manage all activities related to MSSP
  • Tunes SIEM performance and event data quality to maximized SIEM system efficiency
  • Assist analysts, engineers using SIEM and other tools to detect and respond to IT security incidents
  • Perform routine equipment checks and preventative maintenance

Security Risk Management

  • Ensure that outstanding audit, assessment and regulatory findings and gaps are resolved by the various properties and IT
  • Support DDS Management to build an integrated end-to-end security risk and compliance framework to protect the company's information assets and supporting resources
  • Support the design and deployment of the company's security risk management framework as it relates to SIEM
  • Develop and maintain SIEM policies, standards, procedures, and guidelines that will assist the network/infrastructure teams in integrating security requirements in the network and operating systems
  • Monitor the effectiveness of corrective actions and recommending cost-effective preventive measures to preclude recurrences
  • Implement controls in specific areas that would benefit Internal Audit, External Audit and other regulators to enable them to streamline their audit activities and leverage DDS security tools and processes

Incident Management

  • Perform as the SIEM subject matter expert for the Incident Response team and investigating any possible incidents impacting the company
  • Support the activities of the Security Operations team in all SOC procedures

Research & Development

  • Evaluate and participate in selecting a new MSSP/SOC and/or SIEM platform for the organization from beginning to end
  • Provide content to technical briefings to the VP of Security, CISO and other key stakeholders on current security issues; contribute to the technical understanding and promotion of new and existing information security standards, solutions and tools; serving as a technical communication channel to the CISO
  • Provide R&D and consulting support to the DDS team, IT and business projects as needed
  • Evaluate security intelligence and risk management (SIRM) platforms as offered by external vendors or develop custom reporting framework

Documentation, Reporting & Analytics

  • Contribute to the design and implementation of an operational reporting framework that will provide regular metrics and statistics about our business and IT environment; analyze trends in security events, activities, etc. to better understand risks, insufficiencies in our solutions, staffing shortages, etc.; report security metrics and statistics to the VP of Security, CISO and other key stakeholders
  • Provide subject matter expertise for all security exceptions relating to IT and property activities that could negatively impact security risks and/or not adhere to established policies, standards, or procedures
  • Implement all SOC requirements with regards to SIEM metrics and ensure that metrics are gathered on a daily basis
  • Manage all SIEM metrics for the quarterly CISO dashboard and other reporting requirements
  • Develop custom dashboards for VP of Security, CISO and CIO-level reporting as needed

Performance and Training Management

  • Mentor application security staff on fundamentals of security threats, vulnerabilities, and testing methodologies
  • Provide training and advice to less experienced security staff and/or other non-security professionals (IT, properties, e.g.)
  • Manage security technical staff both direct reports and "virtual" Subject Matter Experts (SMEs) in various groups
  • Manage and coach current direct reports to ensure they perform at the highest level of quality and are able to achieve current goals
  • Establish and monitor team's goals and ensure they are aligned with the department's security strategy and direction
  • Self-manage career in security by leveraging available courses in-house and courses offered externally; prepare a career plan for short-term and longer-term performance management

Organizational Planning and Management

  • Manage projects with the IT and property teams, and for projects internal to DDS
  • Assist with general administrative activities in collaboration with all team members
  • Manage vendors' activities and relationships as needed including SOWs, maintenance renewals, licensing updates, etc.
  • Maintain the liaison with vendor s in areas of Support, Engineering, Product Management
  • Prepare project plans and associated documentation
  • Prepare status reports and other management metrics as needed


  • Bachelor's degree or equivalent business experience in Computer Science, Business Management, or MIS required
  • Certified training in security management, risk and compliance solutions and practices. CISSP, CISA, CISM, GSEC, CRISC, or related certification(s) required


  • 8-10 years related business experience
  • Superior communications skills, both verbal and written
  • Direct experience managing teams, remote MSSP, vendors
  • Experience leading multi-faceted IT integration projects
  • Working knowledge of process engineering and technical requirements generation in the user environment
  • Experience with current concepts in project risk assessment, metrics generation and analysis and risk management
  • Requires knowledge of underlying platform(s); prior experience working with interdependent platforms; working knowledge of standards and impact of non-standard approaches
  • Technical knowledge of business processes and procedures and underlying technical workings of system to support it
  • Ability to maximize system to support business processes, recommend and influence business process change to maximize use of system
  • Working knowledge and experience with security tools


Office at One Harrah's Court


This is not necessarily an exhaustive list of all responsibilities, skills, duties, requirements, efforts or working conditions associated with the job. While this is intended to be an accurate reflection of the current job, management reserves the right to revise the current job or to require that other or different tasks be performed when circumstances change, (e.g. emergencies, changes in personnel, workload, rush jobs or technical developments).

The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified.

Caesars Entertainment reserves the right to make changes to the job description whenever necessary.

As a part of Caesars Entertainment's employment process, finalist candidates will be required to complete a drug test and background check prior to an offer being extended. Caesars Entertainment Inc. is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, national origin, gender, age, religion, disability, sexual orientation, veteran status, or marital status.

Meet Some of Caesars Entertainment's Employees

Arielle K.

Channel Marketing Analyst

Arielle creates easy-to-understand reports that encompass all of the company’s wants and needs so that they can be quickly incorporated into the organization’s roadmaps for implementation.

Katy K.

Director of Marketing Reinvestment

Katy partners with Caesars Entertainment’s Direct Mail and Email Marketing Team, Analysts, and Events Department to create awesome offers and customer participation programs for the Las Vegas region.

Back to top