Principal Operations Program Manager, Global SOC

Huntress • United States • 2d ago

Why This Job is Featured on The SaaS Jobs

Security operations is increasingly a core SaaS differentiator, especially for vendors that deliver managed detection and response alongside a platform. This Principal Operations Program Manager role sits at the intersection of productized security outcomes and the operational machinery required to deliver them, translating real SOC constraints into repeatable systems. The remit spans workflow design, tooling, and reporting, reflecting how modern SaaS security teams formalize service delivery at scale rather than relying on individual analyst heroics.

For a SaaS career, the role builds durable operating skills that travel across security, support, and technical operations functions. Ownership of metrics such as queue health and MTTD and MTTR, plus responsibility for documentation and standards, develops the ability to turn noisy operational signals into decisions and engineering-ready requirements. The emphasis on backlog management and cross-functional delivery mirrors how SaaS organizations continuously refine internal systems to protect customer experience while expanding throughput.

This position is best suited to operators who prefer structured problem solving, are comfortable moving between data and day-to-day workflow realities, and can coordinate stakeholders without heavy oversight. It aligns with professionals who want to be close to frontline execution while shaping the processes and instrumentation that make a 24/7 SaaS service reliable.

The section above is editorial commentary from The SaaS Jobs, provided to help SaaS professionals understand the role in a broader industry context.

Job Description

Reports to: Director, Security Operations and Enablement

Location: Remote US

Compensation Range: $185,000 to $200,000 base plus bonus and equity

What We Do:

Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact.

Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. That’s why we build our technology in-house and back it with a 24/7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customers' protection.

Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other.

What You’ll Do:

The Principal Operations Program Manager is the operational backbone of Huntress's Security Operations Center. You will translate analyst workflow realities into structural improvements, partnering closely with SOC leadership to transform how investigations move through the team. You will reduce friction, enforce consistency, and build the reporting infrastructure that turns detection signal into operational decisions. This role is about replacing tribal knowledge and reactive triage with a disciplined, continuously improving SOC operation that scales without sacrificing quality, managing multiple workstreams and stakeholders to get there.

Responsibilities:

Partner with SOC leadership to develop an authoritative understanding of analyst workflows, investigation patterns, and operational bottlenecks, then translate that understanding into a prioritized improvement agenda with clear milestones and owners
Own the identification, prioritization, and delivery of process and tooling improvements across SOC functions; maintain a structured backlog in close coordination with SO&E Engineering
Build and maintain reporting infrastructure that surfaces meaningful SOC performance signal including queue health, MTTD/MTTR trends, escalation patterns, and analyst utilization in service of decisions, not dashboards
Drive alignment with Support Operations on shared operational standards, coordinating cross-functional workstreams to ensure improvements scale across functions rather than solving in isolation
Own documentation quality within the SOC, holding the organization accountable to accuracy and usability standards that reflect a mature, auditable security operation
Translate operational findings into precise, executable requirements that move from analysis to engineering without back-and-forth
Lead the rollout of new tools, workflows, and training initiatives, owning adoption outcomes and surfacing friction before it becomes regression

What You Bring To The Team:

5+ years in an operations, business operations, or process improvement role — ideally within a SOC, security, or technical support environment
Demonstrated ability to analyze workflows and translate findings into structured, prioritized requirements
Experience building or maintaining operational reporting and dashboards; comfortable working with data to tell a coherent story
Familiarity with how SOC teams operate, including ticketing systems, alert queues, SLA tracking, and escalation workflows
Proven track record of working cross-functionally with engineering or product teams to scope and deliver operational improvements
Able to manage a backlog and communicate tradeoffs clearly without needing heavy oversight
You use AI tools actively in your work today, not occasionally but as a default, and when you look at a workflow you're already asking which parts a well-designed system could handle; familiarity with where agentic workflows are heading in security operations is a strong plus

What We Offer:

100% remote work environment - since our founding in 2015
Generous paid time off policy, including vacation, sick time, and paid holidays
12 weeks of paid parental leave
Highly competitive and comprehensive medical, dental, and vision benefits plans
401(k) with a 5% contribution regardless of employee contribution
Life and Disability insurance plans
Stock options for all full-time employees
One-time $500 reimbursement for building/upgrading home office
Annual allowance for education and professional development assistance
$75 USD/month digital reimbursement
Access to the BetterUp platform for coaching, personal, and professional growth

Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are.

We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status.

We do discriminate against hackers who try to exploit businesses of all sizes.

Accommodations:

If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to accommodations@huntresslabs.com. Please note that non-accommodation requests to this inbox will not receive a response.

Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights.

#BI-Remote