Get to Know Us
Horizon3.ai is a fast-growing, remote cybersecurity company dedicated to the mission of enabling organizations to proactively find and fix and verify exploitable attack vectors before criminals exploit them. Our flagship product, the NodeZeroTM platform, delivers production-safe autonomous pentests and other key assessment operations that scale across the largest internal, external, cloud, and hybrid cloud environments. NodeZero has been adopted by organizations of all sizes, from small educational institutions to government agencies and Global 100 enterprises. It is used by ITOps/SecOps teams, consulting pentesters, and MSSPs and MSPs.
We are a fusion of former U.S. Special Operations cyber operators, startup engineers, and formerly frustrated cybersecurity practitioners. We're committed to helping solve our common security problems: ineffective security tools, false positives resulting in alert fatigue, blind spots, "checkbox” security culture, cybersecurity skills shortage, and the long lead time and expense of hiring outside consultants. Collectively, we are a team of learn it alls, committed to a culture of respect, collaboration, ownership, and results.
We are seeking a highly motivated and experienced Security Operations Center (SOC) Manager to lead our internal SOC. We aren’t building a traditional, "stare-at-screens" SOC. As the SOC Manager, you are the architect of our defensive and offensive resilience. This is a high-impact, hybrid leadership role designed for a "builder" who thrives in the fast-paced environment of a scaling startup. You will lead a sophisticated team that doesn't just monitor alerts but actively engineers a self-healing security ecosystem.
You will bridge the gap between technical execution and strategic risk reduction. Your focus is to integrate AI/ML-enabled detection, hyperautomation, dynamic defensive controls, and continuous offensive testing into a unified operation that scales seamlessly with our business.
Build & Lead the Horizon3 SOC: Establish and scale the core Security Operations Center. You will define functional requirements for all SOC capabilities, ensuring every tool and process is mapped to a formal operational needs statement.
Proactive Threat Intelligence: Lead the Threat Intel function by collecting, analyzing, and disseminating actionable intelligence. You will integrate open-source (OSINT), commercial, and dark web feeds into our SIEM/SOAR to pivot from reactive alerting to proactive threat hunting and adversary tracking.
Incident Response Leadership: Act as the primary lead for incident response actions across the Horizon3 enterprise, ensuring rapid containment and thorough remediation of any security events.
Strategic Capability Mapping: Continuously assess cybersecurity capabilities to identify gaps in coverage and visibility. You will map these gaps to industry frameworks such as—MITRE ATT&CK, NIST CSF, CIS, and SANS Top 20—and provide data-driven recommendations for improvements.
Drive Hyperautomation: Transition the SOC from manual intervention to an automation-first culture. You will design SOAR workflows and leverage AI/ML tools to automate triage, investigation, and remediation.
Operationalize Offensive Security: Oversee internal penetration testing and "Purple Team" exercises. You will use these findings to continuously tune detection logic and preventative controls. You will lead the transition from manual playbooks to AI/ML-driven SOAR workflows that automate triage and response. Manual playbooks will be created and leveraged as needed as well.
Scale the Engine: Build and mentor a high-performing team of detection engineers and analysts. You will define the hiring roadmap and operational processes that allow us to scale 10x without compromising security.
Threat Engineering: Lead the development of custom detection signatures (Sigma, YARA) and proactive threat hunting programs focused on our SaaS infrastructure and CI/CD pipelines.
Strategic Alignment: Translate complex security telemetry into actionable business intelligence. You will manage the budget, vendor relationships, and KPIs that demonstrate systemic risk reduction to executive leadership.
Documentation: Create and maintain comprehensive documentation for SOC processes, SOPs, system configurations, and end-user guides.
Automation and AI: Drive the adoption of automation and AI within IT operations to reduce manual effort, including configuring chatbots for Tier 1 and 2 support, lifecycle management for secure onboarding and offboarding sequences, automating ticket routing, securely provisioning and de-provisioning applications, and implementing predictive system maintenance alerts.
Zero Trust & SASE: Own the management and operational health of our SASE environment. You will leverage these platforms to enforce granular access policies, provide deep SSL inspection, Data Loss Prevention (DLP), and secure our distributed workforce without a "castle-and-moat" perimeter.
Horizon Scanning: Maintain a constant pulse on the industry to identify the latest emerging technologies and evolving threats, ensuring Horizon3 stays ahead of the adversary.
The Startup Scale-Up Veteran: You have lived through the rapid growth of a tech startup (Series B/C+) and know how to build systems today that won't break when the company triples in size tomorrow.
The Automation Architect: You don't just automate for speed; you automate for security. You have experience building scalable detection sequences and believe that Tier 1 tasks should be handled by AI-driven bots and intelligent routing.
Analytical Framework Mastery: You think in frameworks. You can look at a gap in visibility and immediately map it back to MITRE ATT&CK or NIST CSF to prioritize the fix.
Technical Intelligence Analyst: You have the "private eye" mindset needed for OSINT and Dark Web intelligence, with the technical ability to turn that intel into actionable SIEM detections.
Operational Discipline: You believe that if a process isn't documented, it doesn't exist. You bring a high standard for SOPs, system configuration docs, and end-user guides to ensure continuity as we scale.
SASE Pillar Expertise: Deep technical proficiency in managing Secure Web Gateways (SWG) and CASB to secure cloud application usage. You are an expert in implementing high-fidelity Data Loss Prevention (DLP) rules and leveraging User and Entity Behavior Analytics (UEBA) to detect anomalous activity and insider threats.
Extreme Ownership: You treat security as a product. You are obsessed with reducing MTTR (Mean Time to Respond) and eliminating false positives through better engineering.
Innovation First: You are dissatisfied with the status quo of "legacy SOCs." You have a proven track record of implementing AI-driven tools and autonomous security operations.
SASE / SSE Platforms: Hands-on expertise in Netskope, Zscaler, or similar platform (specifically SWG/ZIA/ZPA/CASB/DLP/UEBA).
AI/Automation Platforms: Experience with SOAR (Tines, Torq) and AI/Chatbot integration for SecOps support.
Cloud Infrastructure: Expert-level experience securing AWS, GCP, or Azure.
Detection & Response: Mastery of modern SIEM/XDR (e.g., Panther, Snowflake-based security lakes, or Microsoft Sentinel).
Offensive Tooling: Proficiency with testing frameworks such as Metasploit, Burp Suite, or Cobalt Strike.
Scripting & Data: Strong proficiency in Python or Go for automation and SQL for querying large datasets.
Other duties
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee. Duties, responsibilities, and activities may change at any time with or without notice.
Perks of Horizon3.ai
Inclusive Team: We value diversity and promote an inclusive culture where everyone can thrive.
Growth Opportunities: Be part of a dynamic and growing team with numerous career development opportunities.
Innovative Culture: Work in a collaborative environment that encourages creativity and out-of-the-box thinking.
Remote Work: We are a 100% remote company. Enjoy the convenience and work-life balance that comes with remote work.
Competitive Compensation: We offer competitive salary, equity and benefits. Our benefits include health, vision & dental insurance for you and your family, a flexible vacation policy, and generous parental leave.
Compensation and Values
At Horizon3, we believe that our people are our greatest asset, and our compensation philosophy reflects this core value. We are committed to fostering an environment where all employees feel valued, respected, and rewarded for their contributions. Our compensation structure is designed to be fair, competitive, and transparent, ensuring that every team member is recognized and compensated equitably across roles, levels, and locations.
In accordance with various State’s transparency regulations, we provide the following salary range information for this position:
Base salary range: $160,000 - $190,000 annually. The exact salary will be determined based on the selected candidate’s location, qualifications, experience, and relevant skills.
Additional compensation: All full-time roles are eligible for an equity package in the form of stock options.
You Belong Here
Horizon3 is not just an equal opportunity employer - we are a community that values diversity, equity, and inclusion as fundamental principles of our culture and success. We are dedicated to fostering a workplace where everyone feels welcome and respected, regardless of race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, hair length or any other legally protected status by law.
Our commitment to diversity and inclusion means we strive to attract, develop, and retain a workforce that reflects the varied communities we serve. We believe that diverse perspectives drive innovation and strengthen our ability to create cutting-edge cybersecurity solutions. At Horizon3, every team member is valued and supported in an environment that encourages personal and professional growth.
We welcome candidates from all backgrounds and experiences, and we encourage all qualified individuals to apply. Come be a part of Horizon3, where your unique contributions are recognized, and your potential is limitless.
Other Duties
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee. Duties, responsibilities, and activities may change at any time with or without notice.
Application Note
In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.
Please mention you found this job on AI Jobs. It helps us get more startups to hire on our site. Thanks and good luck!
Understand the required skills and qualifications, anticipate the questions you may be asked, and study well-prepared answers using our sample responses.
Manager Q&A's