VP, Security Operations

About The Position

Requirements

• Minimum 5 years' experience in Security Operations (SOC, SIEM & EDR management, vulnerability management, penetration testing).
• Hands-on experience with Cybersecurity Incident Response.
• Proven management and leadership experience, including vendor oversight.
• Strong background in security tool administration and program management, budget governance.
• Professional certifications strongly preferred (CISSP, CISM, CISA, CRISC, CCISO, or equivalent).
• Bachelor's degree in Information Security, Computer Science, or related field.

Nice To Haves

• Excellent written and verbal communication skills for both technical and executive audiences.
• Strong analytical thinking and problem-solving abilities.
• Proficiency in computer system troubleshooting and network design.
• Experience with Azure Cloud security and engineering.

Responsibilities

• Define and execute the security operations strategy aligned with business goals and regulatory obligations.
• Lead the security operations team, including SOC analysts, incident responders, and threat hunters.
• Provide executive-level reporting on risk posture, threats, and incident trends to senior leadership and the Board.
• Oversee and manage key security programs, including Security Operations Center (SOC), SIEM & EDR management, Systems hardening, Phishing governance, Firewall Change Review, Vulnerability Management, and penetration testing.
• Lead security event monitoring, incident management, and response activities to safeguard systems against cyber threats.
• Manage, administer, and maintain security technologies under the SOC's control, ensuring SLA compliance and process improvement.
• Develop dashboards, metrics, executive-level reports, and presentations to communicate risk, threats, and performance to senior leadership.
• Conduct threat modeling, identify attack vectors, and develop monitoring use cases, including oversight of penetration testing, incident response tabletop initiatives.
• Direct internal staff and external vendors, ensuring effective resource utilization and initiating corrective actions when necessary.
• Work with Bank IT governing Bank IT's change management procedures supporting governance and reconciliation processes.
• Collaborate with compliance and risk teams to ensure adherence to regulatory frameworks (FFIEC, GLBA, PCI-DSS, SOX, etc.).
• Support audits, examinations, and regulatory reviews related to information security.
• Foster a culture of security awareness across the institution.