Cyber Operations Manager

Position Summary
The Cyber Operations Manager is responsible for the day-to-day cybersecurity operational activities for Safran USA, covering both standard (non-regulated) IT environments and U.S. regulated environments.
This role reports directly to the Safran USA CISO and maintains a dotted-line functional relationship to the Safran Group Cyber Operations Manager to ensure alignment with Group cyber strategy, tooling, and operational standards—while preserving U.S. regulatory control and authority.
The role is structured around two distinct but integrated scopes of responsibility:
• Cyber Operational Activities – Standard (Non-Regulated) Environments (~80%)
• Cyber Operational Activities – Regulated U.S. Environments (~20%)
This structure ensures full alignment with Safran Group global SOC operations, while preserving U.S. regulatory compliance and operational control where required.
________________________________________
Reporting Structure
• Direct Reporting (Solid Line): Safran USA CISO
• Functional Reporting (Dotted Line): Safran Group Cyber Operations Manager
Key Interfaces
• Safran USA CIO
• Safran Group CISO
• Safran Group Cyber Operations Team
• Safran Companies in US
• Export Control, Legal, and Compliance
• MSSP SOC and Incident Response leadership
________________________________________

Scope of Responsibilities
1. Cyber Operational Activities – Standard (Non-Regulated) Environments (~80%)
Role Objective
For standard (non-regulated) Safran USA environments, the Cyber Operations Manager acts as an extension of the Safran Group Global SOC, ensuring local execution, coordination, and operational consistency.
Key Responsibilities
• Act as the U.S. operational extension of the group team (global SOC, CERT, vulnerability management, …)
• Apply and enforce Group-defined processes, tooling, and standards, including:
o Security monitoring and alerting
o Incident response processes
o Escalation and communication workflows
• Coordinate incident response activities in alignment with:
o Group CERT and Global SOC procedures
o Group incident classification and severity models
• Ensure proper integration of Safran USA environments into:
o Global SOC monitoring
o Centralized tooling and dashboards
• Provide local operational support and context to Global Cyber Operation teams teams during investigations
• Contribute to continuous improvement of SOC processes and detection use cases
In this scope, the role operates fully aligned with and under the operating model of the Global SOC.
2. Cyber Operational Activities – Regulated U.S. Environments (~20%)
Role Objective
For U.S. regulated environments (e.g., CMMC, ITAR, DFARS-scoped systems), the Cyber Operations Manager is responsible for piloting the MSSP, ensuring that cybersecurity operations are compliant with U.S. regulatory constraints while being smoothly and securely integrated with the Global SOC.

Position Summary
The Cyber Operations Manager is responsible for the day-to-day cybersecurity operational activities for Safran USA, covering both standard (non-regulated) IT environments and U.S. regulated environments.
This role reports directly to the Safran USA CISO and maintains a dotted-line functional relationship to the Safran Group Cyber Operations Manager to ensure alignment with Group cyber strategy, tooling, and operational standards—while preserving U.S. regulatory control and authority.
The role is structured around two distinct but integrated scopes of responsibility:
• Cyber Operational Activities – Standard (Non-Regulated) Environments (~80%)
• Cyber Operational Activities – Regulated U.S. Environments (~20%)
This structure ensures full alignment with Safran Group global SOC operations, while preserving U.S. regulatory compliance and operational control where required.
________________________________________
Reporting Structure
• Direct Reporting (Solid Line): Safran USA CISO
• Functional Reporting (Dotted Line): Safran Group Cyber Operations Manager
Key Interfaces
• Safran USA CIO
• Safran Group CISO
• Safran Group Cyber Operations Team
• Safran Companies in US
• Export Control, Legal, and Compliance
• MSSP SOC and Incident Response leadership
________________________________________

Scope of Responsibilities
1. Cyber Operational Activities – Standard (Non-Regulated) Environments (~80%)
Role Objective
For standard (non-regulated) Safran USA environments, the Cyber Operations Manager acts as an extension of the Safran Group Global SOC, ensuring local execution, coordination, and operational consistency.
Key Responsibilities
• Act as the U.S. operational extension of the group team (global SOC, CERT, vulnerability management, …)
• Apply and enforce Group-defined processes, tooling, and standards, including:
o Security monitoring and alerting
o Incident response processes
o Escalation and communication workflows
• Coordinate incident response activities in alignment with:
o Group CERT and Global SOC procedures
o Group incident classification and severity models
• Ensure proper integration of Safran USA environments into:
o Global SOC monitoring
o Centralized tooling and dashboards
• Provide local operational support and context to Global Cyber Operation teams teams during investigations
• Contribute to continuous improvement of SOC processes and detection use cases
In this scope, the role operates fully aligned with and under the operating model of the Global SOC.
2. Cyber Operational Activities – Regulated U.S. Environments (~20%)
Role Objective
For U.S. regulated environments (e.g., CMMC, ITAR, DFARS-scoped systems), the Cyber Operations Manager is responsible for piloting the MSSP, ensuring that cybersecurity operations are compliant with U.S. regulatory constraints while being smoothly and securely integrated with the Global SOC.

Job Requirements

Key Responsibilities
• Pilot and oversee external MSSP services supporting regulated U.S. environments, including:
o SOC monitoring
o Incident detection and response
o L3 escalation and incident handling
• Ensure MSSP operations comply with:
o U.S. regulatory requirements (CMMC, ITAR, DFARS)
o Export Control and data-access restrictions
• Define and enforce adapted operational processes for regulated environments
• Ensure controlled and compliant integration of regulated SOC activities into the Global SOC, including:
o Process alignment
o Tooling interoperability
o Alerting and escalation coordination
• Act as the Designated Cyber Incident Response Lead (U.S.) for regulated environments
• Ensure incident response activities respect U.S. authority, access control, and reporting requirements
• Support audits, assessments, SSPs, and POA&Ms from an operational standpoint
In this scope, the role ensures compliance-driven adaptation of global cyber operations without breaking Group alignment.
________________________________________
Cross-Cutting Responsibilities
• Maintain operational dashboards and reporting for:
o Safran USA CISO
o Safran Group Cyber Operations Manager
• Monitor SOC and MSSP performance against SLAs and KPIs
• Participate in major incident reviews and lessons-learned exercises
• Recommend improvements to detection, response, and operational resilience
________________________________________
Authority & Accountability
• Operational authority to coordinate and direct cyber incident response within Safran group
• Authority to task MSSP resources within defined contracts and playbooks
• Authority to escalate incidents to Group Cyber Operations and the Group CISO
• Cyber risk acceptance remains with the Safran USA CISO

Qualifications & Experience
• 8+ years of experience in cybersecurity operations, SOC, or incident response
• Proven experience working with global SOC models and MSSP providers
• Strong understanding of:
o Incident response frameworks (e.g., NIST 800-61)
o SOC operations and tooling
o U.S. regulatory environments (CMMC, ITAR, DFARS)
• Experience operating in matrixed, international organizations
________________________________________
Preferred
• Aerospace, defense, or regulated manufacturing experience
• Familiarity with FedRAMP-authorized services
• SOC leadership experience
• Relevant certifications (CISSP, GCIH, GCED, etc.)

Job Requirements

Key Responsibilities
• Pilot and oversee external MSSP services supporting regulated U.S. environments, including:
o SOC monitoring
o Incident detection and response
o L3 escalation and incident handling
• Ensure MSSP operations comply with:
o U.S. regulatory requirements (CMMC, ITAR, DFARS)
o Export Control and data-access restrictions
• Define and enforce adapted operational processes for regulated environments
• Ensure controlled and compliant integration of regulated SOC activities into the Global SOC, including:
o Process alignment
o Tooling interoperability
o Alerting and escalation coordination
• Act as the Designated Cyber Incident Response Lead (U.S.) for regulated environments
• Ensure incident response activities respect U.S. authority, access control, and reporting requirements
• Support audits, assessments, SSPs, and POA&Ms from an operational standpoint
In this scope, the role ensures compliance-driven adaptation of global cyber operations without breaking Group alignment.
________________________________________
Cross-Cutting Responsibilities
• Maintain operational dashboards and reporting for:
o Safran USA CISO
o Safran Group Cyber Operations Manager
• Monitor SOC and MSSP performance against SLAs and KPIs
• Participate in major incident reviews and lessons-learned exercises
• Recommend improvements to detection, response, and operational resilience
________________________________________
Authority & Accountability
• Operational authority to coordinate and direct cyber incident response within Safran group
• Authority to task MSSP resources within defined contracts and playbooks
• Authority to escalate incidents to Group Cyber Operations and the Group CISO
• Cyber risk acceptance remains with the Safran USA CISO

Qualifications & Experience
• 8+ years of experience in cybersecurity operations, SOC, or incident response
• Proven experience working with global SOC models and MSSP providers
• Strong understanding of:
o Incident response frameworks (e.g., NIST 800-61)
o SOC operations and tooling
o U.S. regulatory environments (CMMC, ITAR, DFARS)
• Experience operating in matrixed, international organizations
________________________________________
Preferred
• Aerospace, defense, or regulated manufacturing experience
• Familiarity with FedRAMP-authorized services
• SOC leadership experience
• Relevant certifications (CISSP, GCIH, GCED, etc.)

Company Information

Safran is an international high-technology group, operating in the aviation (propulsion, equipment and interiors), defense and space markets. Its core purpose is to contribute to a safer, more sustainable world, where air transport is more environmentally friendly, comfortable and accessible. Safran has a global presence, with 100,000 employees and sales of 27.3 billion euros in 2024, and holds, alone or in partnership, world or regional leadership positions in its core markets.

Safran is in the 2nd place in the aerospace and defense industry in TIME magazine's "World's best companies 2024" ranking.

Company Information

Safran is an international high-technology group, operating in the aviation (propulsion, equipment and interiors), defense and space markets. Its core purpose is to contribute to a safer, more sustainable world, where air transport is more environmentally friendly, comfortable and accessible. Safran has a global presence, with 100,000 employees and sales of 27.3 billion euros in 2024, and holds, alone or in partnership, world or regional leadership positions in its core markets.

Safran is in the 2nd place in the aerospace and defense industry in TIME magazine's "World's best companies 2024" ranking.