Instructional Design

Learning & Development

Higher Ed

K-12

Sales

Customer Success

Product Development

Software Engineering

Academic Advising

Marketing

Fully Remote

Tutoring

Information Technology

All Jobs

Companies

Schools

Former Teachers

$100K+

Entry Level
About Post a job
Existing employer? Sign in
edtech.com
Blackbaud logo

Blackbaud

Senior Manager, Threat Detection and Response

🇺🇸 Remote - US 🕑 Full-Time 💰 $134K - $174K 💻 Cybersecurity 🗓️ June 15th, 2026
Blackbaud CISM CISSP

Edtech.com's Summary

Blackbaud is hiring a Senior Manager, Threat Detection and Response. The role involves leading cybersecurity functions including detection engineering, threat monitoring, and incident response coordination, while driving continuous improvements in security operations across the enterprise. The candidate will manage technical teams, develop detection capabilities, and collaborate with various stakeholders to enhance threat detection and response processes.

Highlights
  • Lead and develop cybersecurity threat detection and response teams.
  • Manage detection engineering, alert tuning, and threat hunting roadmaps.
  • Oversee MSSP and internal development of detections across SIEM, EDR, identity, cloud, email, and network telemetry.
  • Translate threat intelligence into actionable detection content using frameworks like MITRE ATT&CK.
  • Direct incident response for high-priority cybersecurity events.
  • Collaborate with security engineering, infrastructure, cloud, legal, HR, privacy, and business units.
  • Establish and track key security metrics such as mean time to detect and respond.
  • Drive automation and orchestration to improve investigation speed and analyst efficiency.
  • Maintain playbooks, escalation procedures, and executive reporting.
  • Support audits, compliance, tabletop exercises, and security program reviews.
  • Require 10+ years in cybersecurity with significant experience in threat detection or incident response and 5+ years of technical team leadership.
  • Proficiency with SIEM, EDR/XDR, SOAR, email security, identity monitoring, and cloud security tools.
  • Knowledge of attacker tactics, detection engineering, incident response, and cybersecurity frameworks like NIST and CIS Controls.
  • Preferred experience in cloud-first or hybrid environments, detection-as-code, forensics, malware triage, and relevant certifications (CISSP, GCIH, etc.).
  • Base pay range: $133,700 to $173,800, subject to qualifications and market conditions.
  • Benefits include medical, dental, and vision insurance, remote-flexible workforce, wellness programs, 401(k) with match, paid time off, parental leave, donations for doers, pet insurance, legal and identity protection, and tuition reimbursement.

Senior Manager, Threat Detection and Response Full Description

About the role:
We are seeking an experienced and strategic cybersecurity leader to serve as our Sr. Manager of Cyber Threat Detection and Response. This role is responsible for leading detection engineering, threat monitoring, incident response coordination, and continuous improvement of security operations capabilities across the enterprise. The ideal candidate brings strong people leadership, deep technical expertise, and a proven ability to translate threat intelligence and operational data into effective detection and response outcomes.

What you'll do:
  • Lead and develop the cyber threat detection and response function, including analysts, detection engineers, and incident responders.
  • Define and execute the roadmap for threat detection, alert tuning, threat hunting, and response process maturity.
  • Oversee MSSP and internal development and optimization of high-fidelity detections across SIEM, EDR, identity, cloud, email, and network telemetry sources.
  • Translate threat intelligence, adversary techniques, and incident learnings into actionable detection content mapped to frameworks such as MITRE ATT&CK.
  • Direct incident response activities for high-priority cybersecurity events, including triage, containment, investigation, eradication, recovery, and post-incident review.
  • Partner closely with security engineering, infrastructure, cloud, legal, HR, privacy, and business stakeholders to improve readiness and response coordination.
  • Establish and monitor metrics such as mean time to detect, mean time to respond, and control effectiveness.
  • Drive automation and orchestration initiatives that improve investigation speed, response consistency, and analyst efficiency.
  • Maintain and mature playbooks, runbooks, escalation procedures, and executive reporting processes.
  • Support audits, compliance activities, tabletop exercises, and security program reviews related to detection and response capabilities.
What we'll expect you to have:
  • 10+ years of experience in cybersecurity, with significant experience in threat detection, security operations, incident response, or threat hunting.
  • 5+ years of people leadership experience managing technical security teams in a fast-paced environment.
  • Strong experience with security platforms such as SIEM, EDR/XDR, SOAR, email security, identity monitoring, and cloud security tooling.
  • Deep understanding of attacker tactics, techniques, and procedures, as well as detection engineering concepts and incident response methodologies.
  • Experience building or maturing operational processes, dashboards, metrics, and cross-functional escalation models.
  • Strong verbal and written communication skills with the ability to brief both technical teams and executive stakeholders.
  • Working knowledge of cybersecurity frameworks and standards such as NIST, MITRE ATT&CK, CIS Controls, and incident handling best practices.

Preferred Qualifications:
  • Experience leading security operations in cloud-first or hybrid enterprise environments.
  • Hands-on familiarity with detection-as-code, automation, and threat-informed defense practices.
  • Knowledge of digital forensics, malware triage, insider threat monitoring, or purple team collaboration.
  • Relevant certifications such as CISSP, GCIH, GCIA, GCED, CISM, or similar.
  • Experience in environments with complex audit and compliance requirements.

Stay up to date on everything Blackbaud, follow us on Linkedin, Twitter, Instagram, Facebook and YouTube ​
Blackbaud powers social impact through purpose‑driven technology and responsible AI. Guided by our Intelligence for Good® vision, we're building a culture where innovation, trust, and human expertise come together to help organizations make a greater difference in the world.
 
Blackbaud is proud to be an equal opportunity employer and is committed to maintaining a diverse and inclusive work environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, physical or mental disability, age, or veteran status or any other basis protected by federal, state, or local law.The starting base pay is $133,700.00 to $173,800.00. Blackbaud may pay more or less based on employee qualifications, market value, Company finances, and other operational considerations.

Benefits Include:
  • Medical, dental, and vision insurance
  • Remote-flexible workforce
  • Wellness Programs
  • 401(k) program with employer match
  • Flexible paid time off
  • Generous Parental Leave
  • Donations for Doers
  • Pet insurance, legal and identity protection
  • Tuition reimbursement program

Similar Jobs

Director, Security Architecture & Engineering

Relias

🇺🇸 Hybrid - Morrisville, NC

Senior Security Analyst

Troy University

🇺🇸 Troy, AL

INFORMATION SECURITY ANALYST

The University of Texas Rio Grande Valley

🇺🇸 Edinburg, TX

AI Information Security Engineer

Southern New Hampshire University

🇺🇸 Remote - US

Cybersecurity Analyst

University of Kentucky

🇺🇸 Hybrid - Lexington, KY