Director of Security Operations

Advance Stores Company•Raleigh, NC

1d•Hybrid

About The Position

Advance Auto Parts is seeking a seasoned and strategic Director of Security Operations to lead the operational arm of our Information Security program. This role is responsible for overseeing the day-to-day execution of security operations, including threat detection, incident response, vulnerability management, and security monitoring across the enterprise. The ideal candidate will bring deep technical expertise, strong leadership capabilities, and a proactive approach to managing cyber events in a dynamic retail environment. The key responsibilities of the role include: This position is 4 days in office, 1 day remote per week, based at our corporate headquarters in Raleigh, North Carolina (North Hills)

Requirements

Bachelor’s or master’s degree in computer science, Information Security, or related field.
10+ years of experience in cybersecurity, with 5+ years in a leadership role focused on security operations.
Proven experience managing SOCs, incident response, vulnerability management programs, and IAM programs.
Strong understanding of SIEM, EDR, threat intelligence, forensic tools, IAM platforms, and access governance models.
Excellent communication and leadership skills.
Strong analytical and decision-making abilities.
Deep technical knowledge of security operations and IAM tools.
Ability to manage high-pressure situations and complex incidents.
Experience in regulated environments and compliance frameworks.

Responsibilities

Security Operations Leadership Lead and manage the Security Operations Center (SOC), ensuring 24/7 monitoring, threat detection, and incident response capabilities.
Oversee the development and execution of operational security processes, playbooks, and escalation procedures.
Threat & Incident Management Direct the incident response program, including investigation, containment, remediation, and post-incident reviews.
Collaborate with internal teams and external partners to manage and mitigate security threats.
Vulnerability & Risk Management Own the vulnerability management lifecycle, including scanning, prioritization, remediation tracking, and reporting.
Partner with infrastructure and application teams to ensure timely resolution of security findings.
Identity & Access Management (IAM) Own the IAM strategy and roadmap, including identity lifecycle management, access provisioning, and de-provisioning.
Define and enforce access scopes using RBAC and ABAC models to ensure least privilege and separation of duties.
Oversee IAM platforms (e.g., Okta, Azure AD, SailPoint) and ensure integration with enterprise systems and cloud environments.
Lead periodic access reviews, certification campaigns, and compliance reporting.
Monitoring & Analytics Implement and optimize security monitoring tools and SIEM platforms to improve visibility and response times.
Develop metrics and dashboards to measure operational effectiveness and risk posture.
Team Development & Collaboration Build and mentor a high-performing security operations team.
Foster collaboration across IT, compliance, legal, and business units to align security operations with enterprise goals.
Continuous Improvement Stay current with emerging threats, technologies, and best practices.
Drive innovation and automation in security operations to improve efficiency and scalability.