Cyber Security Operations Director

About The Position

Requirements

• Bachelor’s degree in information security, computer science, or related field; a master's degree is preferred
• Deep understanding of Security Operations Center (SOC) technologies, incident response, threat intelligence, and security frameworks (e.g., PCI-DSS, GDPR, ISO 27001, NIST CSF, SOC-2, etc.)
• Strong leadership, communication, and stakeholder management skills
• Has experience effectively leading a follow-the-sun incident response/management model
• Minimum of 1 relevant certification, such as CISSP, CISM, GIAC, or equivalent
• At least 4 years of experience liaising with a cybersecurity Managed Security Services Provider (MSSP)
• 8+ years of experience in security operations, with at least 3 years in a leadership or management role

Responsibilities

• Develop and execute the vision, strategy, and roadmap for the SOC in alignment with organizational goals and risk appetite
• Lead, mentor, and manage SOC staff and stakeholders, including analysts, engineers, and incident responders, fostering a high-performance and collaborative culture in coordination with the MSSP
• Establish and monitor key performance indicators (KPIs) and metrics to measure SOC effectiveness and drive continuous improvement
• Oversee day-to-day SOC operations, ensuring timely detection, analysis, escalation, and response to security incidents
• Manage the documentation, maintenance, and regular testing of SOC processes, playbooks, and incident response procedures
• Manage resource allocation, shift schedules, and escalation protocols to maintain 24/7 coverage as required in coordination with the MSSP
• Oversee threat intelligence gathering, analysis, and integration into SOC operations
• Coordinate investigation, containment, eradication, and recovery activities from security incidents, working with IT, legal, compliance, and business units as needed
• Lead post-incident reviews and facilitate a root cause and lessons learned session, which integrates changes into SOC processes
• Evaluate, assist in selection, and implement SOC technologies (Security Information and Event Management [SIEM], Security Orchestration, Automation, and Response [SOAR], Endpoint Detection Response [EDR], threat intelligence platforms) to enhance detection and response capabilities
• Identify opportunities for automation and process optimization, and implement automation to improve efficiency by reducing response times
• Stay current with emerging threats, trends, and leading practices in security operations
• Ensure SOC operations comply with relevant regulatory, legal, and industry requirements
• Prepare and present regular reports to executive leadership on SOC performance, threat landscape, and risk posture

Benefits

• Very competitive compensation
• Generous Paid Time Off (25 PTO days)
• 8 Hours Annually Volunteer Time Off (VTO)
• We offer a comprehensive medical, dental and Wellness Program
• 12 weeks paid parental leave
• An infrastructure that allows flexible working arrangements
• Formal and informal reward, recognition and acknowledgement programs
• Lots of fun and engaging employee development events