Detection Engineering Team Lead

This role offers a hybrid work schedule; offering the flexibility to work remotely two days a week, while providing the opportunity for in-person collaboration at our Buffalo, NY Tech Hub.

Overview:  

Manages the activities of one or multiple cybersecurity teams. Responsible for financial and human capital planning to ensure short- and long-term priorities support and protect the Bank from internal and external cybersecurity threats.

Primary Responsibilities:

• Develop and implement comprehensive plan, policies, and procedures related to immediate function(s) of oversight.
• Lead a team of threat detection engineers, providing technical mentorship and strategic guidance.
• Develop and enhance threat detection logic using Risk-Based Alerting (RBA) methodologies.
• Implement and manage detection-as-code frameworks to enable scalable, version-controlled, and automated detection rule deployments.
• Leverage industry frameworks such as MITRE ATT&CK to map detection coverage and identify gaps.
• Design and optimize workflows within SOAR (Security Orchestration, Automation, and Response) platforms to improve operational efficiency.
• Proficiency in threat modeling methodologies and applying industry-standard frameworks (e.g., MITRE ATT&CK, Cyber Kill Chain).
• Strong background in scripting and automation using Python, PowerShell, or similar languages.
• Understanding of log management and telemetry ingestion from diverse sources such as network traffic, endpoint security solutions, cloud environments, and identity management systems.
• Familiarity with integrating threat intelligence feeds and enrichment tools into security operations.
• Understand and adhere to the Company’s risk and regulatory standards, policies, and controls in accordance with the Company’s Risk Appetite. Design, implement, maintain, and enhance internal controls to mitigate risk on an ongoing basis. Identify risk-related issues needing escalation to management.
• Promote an environment that supports diversity and reflects the M&T Bank brand.
• Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.
• Complete other related duties as assigned.

Scope of Responsibilities:

• Primary partners: Cybersecurity Senior Managers and Managers.
• Stakeholders: Technology team and the Bank.
• Work is accomplished with limited direction; translates Cybersecurity imperatives to objectives within team.
• Oversees 1 or more function(s)/team(s) within Cybersecurity.
• Typically leads a team of 5-10 FTEs (entry to mid-level individual contributors).
• Provides input for budget as it pertains to specific team needs, and accountable for meeting budget.
• This role manages one or more functions/teams/departments within Cybersecurity:
  • Operations and Threat – proactively identify, analyze, and respond to cyber threats, ensuring the Bank's digital assets are secure and resilient against potential risks and attacks. Functions/teams may include security operations center, governance & oversight, insider threat, data loss prevention, threat intel & hunt, incident response, detection & protection engineering
  • Security Engineering – design, implementation, and management of robust security measures and systems to protect digital assets, data, and networks from cybersecurity threats and unauthorized access. It encompasses various disciplines such as network security, access controls, and threat protection and detection, with the overarching goal of ensuring the confidentiality, integrity, and availability of information in the face of evolving cybersecurity risks

Manager Responsibility:

Typically leads a team of 5-10 FTEs (entry to mid-level individual contributors)

Education and Experience Required:

• Bachelor's degree and a minimum of 5 years’ relevant work experience, or in lieu of a degree, a combined minimum of 9 years’ higher education and/or work experience
• Demonstrated advanced knowledge of Cybersecurity principles.
• Minimum 4 years’ work experience in/with the specific cybersecurity function.
• Minimum 1 year’s managerial experience.

Education and Experience Preferred:

• Minimum of 2 years’ managerial experience.
• Proven ability to train and mentor cybersecurity individual contributors.
• Excellent communication skills
• Excellent interpersonal skills.
• Proficient persuasive communication skills to gain buy-in of others.
• Experience prioritizing across competing priorities and quickly changing landscape.
• Experience in a highly regulated industry environment.
• Understanding of financial services regulations, compliance requirements, and risk management practices.

 #LI-JB3 #Hybrid

M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $110,635.01 - $184,391.68 Annual (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation.

LocationBuffalo, New York, United States of America