Director, Security Operations
CyberSheath
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇺🇸 United States
Visit company websiteSalary
💰 $150,000 - $180,000 per year
Job Level
Lead
Tech Stack
AWSAzureCloudCyber Security
About the role
- Develop and execute the overall vision for the Security Operations Center (SOC) in alignment with organizational goals and client requirements.
- Build, mentor, and lead a high-performing team of security analysts, engineers, and incident responders.
- Establish and maintain operational metrics, key performance indicators (KPIs), and service-level agreements (SLAs) to demonstrate effectiveness.
- Serve as the primary escalation point for severe security incidents across the client base.
- Direct daily SOC activities including threat monitoring, incident detection, response, remediation, and forensic investigations.
- Oversee the development of runbooks, playbooks, and procedures for security incident handling.
- Coordinate with engineering teams on deployment and continuous improvement of security monitoring tools, SIEM, endpoint detection, and intrusion detection systems.
- Ensure consistent delivery of managed detection and response (MDR) and managed security services (MSS) to clients.
- Act as the senior point of contact for clients on all security operations matters.
- Provide regular reporting, executive summaries, and recommendations on threat intelligence, vulnerabilities, and incident response posture.
- Support sales and account management by participating in prospective client meetings and articulating security capabilities.
- Ensure security deliverables and compliance obligations are met for each client contract.
Requirements
- Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field (Master’s preferred).
- 10+ years of progressive experience in cybersecurity, including at least 5 years in leadership roles.
- Proven experience managing security operations in a managed services or MSSP environment preferred.
- Strong understanding of SOC operations, SIEM platforms, endpoint protection, threat intelligence, and incident response workflows.
- Familiarity with cloud security operations (AWS, Azure, Google Cloud).
- Demonstrated success in building and leading diverse, distributed teams.
- Excellent communication skills with the ability to engage technical teams and executive stakeholders.
- Relevant certifications such as CISSP, CISM, GIAC, or equivalent.
Benefits
- Health insurance
- 401(k)
- Flexible work hours
- Paid time off
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
cybersecuritysecurity operationsincident responsethreat monitoringforensic investigationssecurity incident handlingmanaged detection and responsemanaged security servicescloud securityendpoint protection
Soft skills
leadershipmentoringcommunicationteam buildingclient engagementreportingproblem-solvingcollaborationorganizational skillsstakeholder management
Certifications
CISSPCISMGIAC