Head of Cyber Defense, Cyber Security Operations Center (CSOC)

About The Position

Requirements

• Minimum of 12 years of experience in cybersecurity, with significant leadership in cyber defense / security operations (SOC).
• Undergraduate degree in Technical discipline, Computer Science or related field required.
• Certified Information Systems Security Professional (CISSP) and/or Certified Information Security Manager (CISM).
• Demonstrated ownership of end-to-end cyber defense operations, including detection, response, and post-incident improvement.
• Proven experience leading large, complex, multi-layered technical organizations (leader-of-leaders model).
• Deep experience across: Data center and enterprise security; Multi-cloud environments (AWS, Azure, GCP).
• Strong understanding of: Threat intelligence integration; Detection engineering and response frameworks; Modern attack vectors and adversary tactics.
• Demonstrated success operating at senior leadership levels, influencing across complex organizations.
• Exceptional stakeholder management and executive communication skills.
• Ability to translate technical risk into business-relevant insights and decisions.

Nice To Haves

• Graduate degree preferred.

Responsibilities

• Execute and evolve Vanguard’s CSOC cyber defense strategy, translating enterprise priorities into actionable, measurable outcomes.
• Drive an intelligence-led, proactive defense model across all domains.
• Continuously adapt capabilities to address an evolving and complex threat landscape.
• Accountable for end-to-end execution of integrated cyber defense capabilities, including: Threat detection, analysis, and rapid mitigation; Advanced attack analytics and forensics; Integration with cyber threat intelligence to enable proactive defense; Close alignment with incident response, detection engineering, and platform teams; Continuous monitoring and protection across cloud, network, and enterprise systems.
• Lead high-performing, 24x7 global operation teams with a focus on speed, accuracy, and resilience.
• Establish and manage key performance indicators (e.g., mitigation speed, detection effectiveness, containment outcomes).
• Drive continuous improvement to enhance operational efficiency and effectiveness.
• Ensure seamless coordination across CSOC domains to deliver unified cyber defense outcomes.
• Advance Threat Mitigation capabilities toward a fully integrated, intelligence-led defense model.
• Drive automation and orchestration to improve scalability, speed, and consistency.
• Reduce complexity and technical debt while strengthening platform integration.
• Align capabilities to leading frameworks (e.g., NIST CSF).
• Advance cyber defense toward a fully integrated, intelligence-driven, and automated model.
• Drive adoption of: Automation and orchestration; Advanced analytics and AI-enabled capabilities.
• Reduce complexity while strengthening platform integration and scalability.
• Maintain a strong, defensible control environment aligned with leading frameworks (e.g., NIST CSF).
• Own audit readiness and remediation.
• Provide clear, executive-level visibility into cyber risk and mitigation effectiveness.
• Serve as a trusted advisor to senior stakeholders across technology, risk, and business functions.
• Enable secure growth by balancing risk rigor with business agility.
• Operate effectively in a dynamic, evolving stakeholder environment.
• Build and sustain a high-performing, diverse cyber defense organization.
• Develop future leaders and succession pipelines across all layers.
• Foster a culture of ownership, innovation, and continuous improvement.

Benefits

• Hybrid working model