Manager, Global Security Operations Center

Requistion ID: 82842

Dentsply Sirona is the world’s largest manufacturer of professional dental products and technologies, with a 130-year history of innovation and service to the dental industry and patients worldwide. Dentsply Sirona develops, manufactures, and markets a comprehensive solutions offering including dental and oral health products as well as other consumable medical devices under a strong portfolio of world class brands. Dentsply Sirona’s products provide innovative, high-quality and effective solutions to advance patient care and deliver better and safer dentistry. Dentsply Sirona’s global headquarters is located in Charlotte, North Carolina. The company’s shares are listed in the United States on NASDAQ under the symbol XRAY.

Bringing out the best in people

As advanced as dentistry is today, we are dedicated to making it even better. Our people have a passion for innovation and are committed to applying it to improve dental care. We live and breathe high performance, working as one global team, bringing out the best in each other for the benefit of dental patients, and the professionals who serve them. If you want to grow and develop as a part of a team that is shaping an industry, then we’re looking for the best to join us.

Working At Dentsply Sirona You Are Able To

Develop faster - with our commitment to the best professional development.

Perform better - as part of a high-performance, empowering culture.

Shape an industry - with a market leader that continues to drive innovation.

Make a difference -by helping improve oral health worldwide.

The Senior Manager of the Global Security Operations Center (SOC) provides strategic and operational leadership for Dentsply Sirona’s global cyber-defense function.

This Role Oversees a Hybrid Operational Model Integrating

• Third Party or Internal 24x7 Tier 1-2 monitoring
• Internal Tier 3 analysts across the Americas, EMEA, and APAC
• Supported Monitoring, Alerting, and Response Tooling
  
  

And integrates capabilities through tooling, telemetry, and detection development in coordination with:

• Security Architecture and Engineering
• Corporate Infrastructure
• Enterprise Architecture
• Others as required
  
  

This leader ensures consistent detection, investigation, and response across cloud, enterprise, and manufacturing environments while driving automation, improving signal quality, reducing response time, and maturing operational processes in alignment with ISO 27001, IEC 81001-5-1, SOX, and NIST frameworks. The role aligns with internationally recognized cybersecurity standards and frameworks, including ISO/IEC 27001, ISO/IEC 27032, ENISA guidelines, and NIST NICE, ensuring global applicability and compliance.

Role Scope Includes

• Leadership of global SOC operations, personnel, and vendor partnerships
• Governance of SIEM, SOAR, and XDR platforms and other GSOC relevant tooling
• Ownership of incident response workflows and SOC process maturity
• Reporting and operational metrics (MTTD, MTTR, automation ROI, false positive rate)
• Cross-functional coordination with IT, OT, Cloud, Compliance, and Architecture teams
  
  

Leadership & Governance

• Lead, mentor, and develop a distributed team of senior SOC analysts across multiple regions.
• Govern 3rd Party tooling and personnel performance, SLAs, escalations, and service quality.
• Define, maintain, and enforce SOC standard operating procedures, playbooks, and escalation paths.
  
  

Detection & Response Operations

• Oversee end-to-end incident lifecycle: detection → triage → containment → remediation → lessons learned.
• Ensure high-quality triage and reduced false positives through tuning and signal optimization.
• Coordinate closely with Security Architecture to onboard new log sources and build detection-as-code pipelines.
  
  

Technology Ownership

• Own SIEM/SOAR operations, including SIEM, SOAR, CASB, and XDR with others as required and defined
• Lead log onboarding, rule tuning, alert correlation, automation playbook development, and health monitoring.
• Evaluate and implement new telemetry sources, threat intelligence integrations, and detection models.
  
  

Threat Intelligence & Hunting

• Develop and operationalize a threat intelligence capability drawing from MSTIC, Mandiant, ISACs, etc.
• Lead or coordinate threat hunting, adversary emulation, and advanced TTP analysis initiatives.
  
  

Metrics, Reporting & Continuous Improvement

• Establish and maintain operational dashboards and KPIs (MTTD, MTTR, coverage, automation usage, FP rate).
• Deliver weekly operational updates, monthly reports, and quarterly executive briefings to leadership.
• Conduct post-incident reviews, trend analysis, and maturity assessments to drive measurable improvement.
  
  

Compliance & Security Assurance

• Support internal and external audits for SOX, ISO 27001, IEC 81001-5-1 along with others as required and defined.
• Maintain evidence documentation and ensure SOC controls remain effective and test-ready.
• Plan and execute quarterly DR exercises and annual table-top scenarios.
  
  

Requirements

Education

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• Master’s degree preferred (or equivalent practical experience).
  
  

Experience

• 8+ years in security operations, cyber defense, incident response, or threat management.
• 3–5 years in a leadership role managing SOC or IR teams within a global enterprise or MSSP/SOC-as-a-Service environment.
• Hands-on experience with SIEM/SOAR administration and tuning—ideally Google SecOps / Splunk/ or other industry leading SIEM tools.
• Proven experience managing Global SOC Operations, external MSSP relationships, and internal response teams.
• Background with cloud security (Azure / GCP preferred; AWS/Alibaba a plus) and, ideally, exposure to OT/Manufacturing environments.
• Expert understanding of SOC operations, MITRE ATT&CK, detection engineering, and incident response methodologies.
  
  

Key Skills & Knowledge

• Strong analytical and problem-solving capabilities; ability to interpret large datasets and signals.
• Proficiency with security automation, REST APIs, and playbook engineering.
• Real-world experience with threat intel application and proactive threat hunting.
• Exceptional communication and documentation skills — clear, concise, and executive-ready.
• Preferred certifications: CISSP, CISM, GCIA, GCIH, GSOC, GMON, Microsoft SC-series certifications, CompTIA Security+, EC-Council CSA, GIAC GSOC, GIAC GCIH, Offensive Security OSCP, ISO/IEC 27001 Lead Implementer, and other globally recognized cybersecurity certifications.
  
  

Dentsply Sirona is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, sexual orientation, disability, or protected Veteran status. We appreciate your interest in Dentsply Sirona.

If you need assistance with completing the online application due to a disability, please send an accommodation request to careers@dentsplysirona.com. Please be sure to include “Accommodation Request” in the subject.

For California Residents

We may collect the following categories of personal information in connection with the submission of your resume or application materials to us for employment, and if hired, your employment with us: identifiers (e.g., name, address, email address, birthdate); personal records (e.g., telephone number, signature, education information, criminal background information, passport number and visa information); consumer characteristics (e.g., sex, marital status, veteran status, race, disability, sexual orientation); professional or employment information (e.g., resume, cover letter, employment history, background check forms, references, certifications, transcripts and languages spoken); and inferences from personal information collected (e.g., a profile reflecting abilities and aptitudes).

The above categories of personal information are collected for the following business purposes: performing recruitment and hiring services; processing interactions and transactions (e.g., to comply with federal and state laws requiring us to maintain certain records, managing the workforce); and security (e.g., detecting security incidents, protecting against fraudulent or illegal activity).

For additional details and questions, contact us at careers@dentsplysirona.com