Security Operations Manager
Company Summary
LCPtracker, Inc. is a cloud-based software (SaaS) provider specializing in labor compliance for public works construction projects. Headquartered in Orange, CA – with offices in New Braunfels, TX and Fenton, MI LCPtracker helps government agencies and prime contractors meet Davis-Bacon/prevailing wage compliance requirements on projects backed by federal, state, and/or local funding.
Thousands of clients and over 100,000 contractors use LCPtracker for their certified payroll and construction site compliance needs.
LCPtracker has been recognized year after year since 2017 as one of the “Best Places to Work” in Orange County by the Orange County Register.
Position Summary
LCPtracker is seeking a seasoned Security Manager to lead our Security Operations (Sec Ops) team. This role is pivotal in safeguarding our platforms and products by overseeing a team of security analysts, security engineers, and application testers. The ideal candidate will bring deep expertise in Microsoft Azure tooling, Zscaler, vulnerability management, secure software development, and cloud security operations.
Primary Duties and Responsibilities
- Lead and mentor the Sec Ops team, including:
- Security Analysts who monitor platforms for vulnerabilities.
- Security Engineers who remediate identified security issues.
- Application Testers who conduct pre- and post-release code testing and contact application testing across all products.
- Develop and execute strategic security plans aligned with business objectives.
- Foster a culture of security awareness, collaboration, and continuous improvement.
Security Operations:
- Oversee real-time threat detection, incident response, and vulnerability assessments.
- Ensure timely remediation of security issues across infrastructure and applications.
- Manage endpoint compliance and identity protection across Windows, macOS, and Linux environments.
Application & Platform Security:
- Supervise secure code review and testing processes.
- Coordinate contact application testing for all products.
- Collaborate with development teams to embed security into the SDLC.
Cloud Security & Microsoft Azure:
- Architect and maintain secure cloud infrastructure using Microsoft Azure, including:
- Azure NSGs, Microsoft Entra ID, and multi-domain environments.
- Microsoft Intune for macOS device management.
- Microsoft 365 services (Exchange Online, Teams, SharePoint).
- Automate security tasks using PowerShell and other scripting tools.
- Monitor system performance, patch compliance, and threat detection tools.
Compliance & Reporting:
- Ensure adherence to security frameworks such as NIST, FedRAMP and SOC 2.
- Prepare and present security metrics, risk assessments, and incident reports.
- Document technical configurations, procedures, and operational processes.
Core Competencies
- Confidentiality & Integrity: Handle sensitive information with discretion.
- Technical Expertise: Advanced knowledge of Microsoft cloud solutions and endpoint management.
- Problem Solving: Skilled in troubleshooting complex security issues and proposing scalable solutions.
- Communication: Strong documentation and cross-functional collaboration skills.
- Initiative & Innovation: Proactive in identifying and implementing security enhancements.
- Results-Driven: Focused on uptime, performance, and security excellence.
- Quality & Time Management: Maintain high standards while balancing project and support tasks.
Education and Experience
- Bachelor’s degree in computer science, Information Security, or a related field.
- 5 years of experience in application security, software development, or a related field.
- Proficiency in security testing tools such as OWASP ZAP, Burp Suite, or similar.
- Strong understanding of web application architecture, APIs, and common vulnerabilities (e.g., OWASP Top Ten).
- Familiarity with programming languages such as Java, Python, C#, or JavaScript.
- Experience with cloud security practices AWS, Azure
Certifications (Preferred)
- Microsoft Certified: Azure Administrator Associate
- Microsoft Certified: Endpoint Administrator Associate
- CompTIA Security+, Network+, or equivalent
- 5 plus years of progressive experience managing security operation teams
- Experience in managing security compliance audits (EX: SOC 2 Type 2 NIST 800-181)
- CISSP
Work Environment
This position operates in a professional office environment and role routinely uses standard office equipment such as computers, phones, mobile devices, photocopiers, filing cabinets and fax machines.
Physical Demands
While performing the functions of this job, the employee is regularly required to sit; frequently required to talk and hear, use hands and fingers to type, scroll and use computer equipment. The employee is required to have close visual acuity to perform an activity such as preparing and analyzing data and figures; transcribing; viewing a computer terminal; extensive reading; visual inspection of text/data in both print and electronic forms. Ability to lift and move up to 25 pounds.
Position Type and Expected Hours of Work
This is a Fulltime Non-Exempt position, reporting onsite to our New Braunfels, TX office. Working hours are M-F 8am-5pm. Days/hours worked are dependent on the workload at the time. General availability and presence in the office is expected during regular business hours Monday -Friday. Days/hours worked subject to change and are dependent on the workload at the time.
Travel
There is no major travel requirement for this position. However, infrequent travel may be necessary to visit remote office(s), attend conferences/industry events, etc. Attendance at our annual corporate Staff Retreat is required, which typically takes place in December. This event is a 2-3-day retreat. Attendance at LCPtracker Conference(s) as assigned.
Salary Range
The salary range for this role is $140,000.00 - $160,000.00.
Pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. The total compensation package for this position may also include other elements dependent on the position offered. Details of participation in these benefit plans will be provided if an employee receives an offer of employment.
Benefits
Along with competitive pay, as a full-time LCPtracker employee, you are eligible for the following benefits:
- Paid Time Off
- 10 Paid Holidays
- Phantom Stock
- 401k Plan with up to 4% company match
- Medical Benefits (Health, Vision and Dental)
- Life Insurance (company paid)
- Long-Term Disability and Short-Term Disability (company paid)
LCPtracker participates in the E-Verify Program. E-Verify is an internet-based system operated by the Department of Homeland Security and the Social Security Administration. It allows employers to confirm an individual’s employment eligibility to work in the United States. View the attached notices, available in English and Spanish, for important information regarding the E-Verify program. E-Verify Notice (PDF); Right to Work Notice (PDF)
LCPtracker, Inc. is an equal opportunity employer of all qualified individuals; including minorities, women, veterans, and individuals with disabilities, and regardless of sexual orientation or gender identity. LCPtracker, Inc. will consider for employment qualified applicants with criminal histories in a manner consistent with all federal, state, and local ordinances.
LCPtracker is committed to the full inclusion of all qualified individuals. In keeping with our commitment, LCPtracker will take steps to assure that people with disabilities are provided reasonable accommodations. Accordingly, if reasonable accommodation is required to fully participate in the job application or interview process, to perform the essential functions of the position, and/or to receive all other benefits and privileges of employment, please contact the LCPtracker Human Resources Department at HR@lcptracker.com.
