Director, Threat Detection & Response

About The Position

Requirements

• A bachelor's degree or equivalent experience required.
• 10 years of experience in digital forensics and incident response.
• Digital forensics tools and techniques.
• Incident response including major incident response leadership.
• Technical writing and communication.
• Cyber defense frameworks (NIST, ISO, CIS).
• SIEM tools (Splunk, Sentinel).
• Programming or scripting (PHP, Python, Javascript).
• Familiarity with Artificial Intelligence and ML‑based threat detection and automation tools and how to govern their use in a SOC/TDR context.
• Understanding of ML model behavior, false‑positive reduction, and ethical governance.
• Data interpretation and feature‑analysis capabilities for threat‑analytics models.

Nice To Haves

• Business Process Design
• Creating Purpose
• Crisis Management
• Critical Thinking
• Cybersecurity
• Developing Others
• Inclusive Leadership
• Information Security Auditing
• Information Security Management System (ISMS)
• Information Technology (IT) Security Assessments
• Information Technology Strategies
• Leadership
• Organizing
• People Performance Management
• Presentation Design
• Process Optimization
• Security Architecture Design
• Security Policies

Responsibilities

• Provide subject matter expertise and participate in performing continuous monitoring of suspicious activity and alerts, triage and diagnosis of threats, and root cause analysis and remediation of incidents.
• Review and accept escalations for business impacting incidents and command a technical investigation team to respond through containment and recovery.
• Collect and analyze electronic devices, logs, malware, and other digital artifacts in support of security investigations and response.
• Prepare and present regular reports and updates to senior management on the status and impact of incident response efforts.
• Mentor and develop team members, fostering a culture of innovation and continuous improvement.
• Evaluate and recommend cybersecurity tools and technologies that enhance response capabilities.
• Identify potential risks and vulnerabilities in systems and processes and coordinate mitigation of them.
• Utilize threat intelligence to inform response efforts and to bolster proactive defense measures.
• Establish key performance indicators (KPIs) to measure the effectiveness of incident response services and initiatives.
• Drive and participate in global on-call rotation to coordinate around the clock monitoring and response to major incidents.

Benefits

• medical
• dental
• vision
• life insurance
• short- and long-term disability
• business accident insurance
• group legal insurance
• consolidated retirement plan (pension)
• savings plan (401(k))
• long-term incentive program
• Vacation –120 hours per calendar year
• Sick time - 40 hours per calendar year
• Holiday pay, including Floating Holidays –13 days per calendar year
• Work, Personal and Family Time - up to 40 hours per calendar year
• Parental Leave – 480 hours within one year of the birth/adoption/foster care of a child
• Condolence Leave – 30 days for an immediate family member: 5 days for an extended family member
• Caregiver Leave – 10 days
• Volunteer Leave – 4 days
• Military Spouse Time-Off – 80 hours