Director, Cybersecurity Operations Center (SOC)
About The Position
As the Director of our global Cybersecurity Operations Center (SOC), you will lead a world‑class team responsible for monitoring, detecting, investigating, and responding to cyber threats across a complex global enterprise. This is a high‑impact leadership role that requires a strategic mindset, operational excellence, and the ability to drive continuous improvement in a 24x7x365 environment. You will shape our detection and response strategy, mature our capabilities, strengthen our global posture, and ensure our SOC remains resilient, adaptive, and aligned with both business objectives and regulatory expectations.
Requirements
- 10+ years of experience in cybersecurity with at least 5 years leading SOC or incident response functions at scale.
- Proven ability to lead during crises and communicate effectively with senior leadership.
- Experience managing global or multi‑regional teams and 24x7 operations.
- Deep expertise in incident response, threat analysis, detection engineering, and cyber defense tools (SIEM/SOAR/EDR/NDR).
- Strong understanding of cloud platforms (Azure, AWS, GCP) and hybrid enterprise environments.
Nice To Haves
- Experience in a global Fortune 500 or similarly complex global organization.
- Certifications such as CISSP, CISM, GIAC (GCIA, GCED, GCIH, GMON), or similar.
- Experience with zero‑trust strategies, advanced correlation logic, and automation at scale.
- Familiarity with ITIL, DevSecOps practices, and security monitoring for OT/ICS environments.
Responsibilities
- Strategic Leadership Define and execute the global SOC strategy aligned with enterprise risk objectives and the broader security program.
- Forecast emerging threats and evolve capabilities in threat detection, incident response, and cyber defense.
- Partner with the CISO and executive stakeholders to communicate risk, readiness, and operational performance.
- Operational Excellence Lead global SOC operations, spanning threat detection, incident response, threat hunting, cyber intelligence, and digital forensics.
- Oversee triage, escalation, containment, and remediation of security incidents.
- Build and maintain playbooks, response procedures, and operational KPIs.
- Drive consistent service delivery across regions and time zones.
- Technology & Architecture Oversee SIEM, SOAR, EDR, NDR, and related detection technologies; ensure scalability, performance, and global standardization.
- Collaborate with engineering and architecture teams to advance automation, telemetry integration, and detection logic.
- Champion a data‑driven approach to security, leveraging analytics and machine learning where applicable.
- Team Leadership & Development Manage, mentor, and grow a high‑performing team of SOC managers, analysts, threat hunters, and incident responders.
- Foster a culture of curiosity, accountability, and rapid learning.
- Ensure continuous skill development and readiness for high-severity incidents.
- Ensure SOC operations align with industry frameworks (NIST CSF, MITRE ATT\&CK, ISO 27001).
- Oversee documentation, reporting, audit readiness, and compliance evidence for security operations.
- Partner with Legal, HR, IT, and Business Continuity teams during major events.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Director
Education Level
No Education Listed
Number of Employees
5,001-10,000 employees
