Director, Cybersecurity Operations Center (SOC)

About The Position

Requirements

• 10+ years of experience in cybersecurity with at least 5 years leading SOC or incident response functions at scale.
• Proven ability to lead during crises and communicate effectively with senior leadership.
• Experience managing global or multi‑regional teams and 24x7 operations.
• Deep expertise in incident response, threat analysis, detection engineering, and cyber defense tools (SIEM/SOAR/EDR/NDR).
• Strong understanding of cloud platforms (Azure, AWS, GCP) and hybrid enterprise environments.
• Experience in a global Fortune 500 or similarly complex global organization.
• Certifications such as CISSP, CISM, GIAC (GCIA, GCED, GCIH, GMON), or similar.

Nice To Haves

• Experience with zero‑trust strategies, advanced correlation logic, and automation at scale.
• Familiarity with ITIL, DevSecOps practices, and security monitoring for OT/ICS environments.

Responsibilities

• Define and execute the global SOC strategy aligned with enterprise risk objectives and the broader security program.
• Forecast emerging threats and evolve capabilities in threat detection, incident response, and cyber defense.
• Partner with the CISO and executive stakeholders to communicate risk, readiness, and operational performance.
• Manage, mentor, and grow a high‑performing team of SOC managers, analysts, threat hunters, and incident responders.
• Foster a culture of curiosity, accountability, and rapid learning.
• Ensure continuous skill development and readiness for high‑severity incidents.
• Build and maintain playbooks, response procedures, and operational KPIs.
• Collaborate with engineering and architecture teams to advance automation, telemetry integration, and detection logic.
• Ensure SOC operations align with industry frameworks (NIST CSF, MITRE ATT&CK, ISO 27001).