Cybersecurity Operations Director

Pearl Technology

$120K — $150K *
Information Technology
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in IT or related field with 10+ years in security/risk management
  • Hands-on experience with PTES and OWASP testing frameworks
  • Knowledge of Windows, Unix/Linux, Mac OS, VMware/Xen, and cloud platforms (AWS, Azure, Google Cloud)
  • In-depth understanding of cyber-attack techniques and risk management
  • Strong organizational, time management, and problem-solving skills
  • Detail-oriented with excellent written and verbal communication abilities
  • Experience in vendor management.

Responsibilities

  • Lead and manage a 24/7 Security Operations Center
  • Proactively identify and respond to security incidents
  • Ensure accurate incident assessment and reporting
  • Adhere to SLAs and improve operational processes
  • Revise processes to enhance governance and operational effectiveness
  • Oversee team management and resource allocation
  • Perform threat management and develop use cases for security monitoring
  • Create and present operational reports and metrics
  • Conduct hands-on penetration testing and vulnerability assessments
  • Manage consulting engagements, acting as the primary contact
  • Communicate security issues to diverse internal and external stakeholders
  • Ensure regular testing of disaster recovery and business continuity plans.

Benefits

  • Comprehensive health insurance options
  • 401(k) retirement plan with employer match
  • Flexible work schedule and remote work options
  • Professional development opportunities
  • Paid time off and holidays.
Full Job Description
The Cybersecurity Operations Director role combines a comprehensive understanding of information security with the management and coordination skills required to analyze and implement best security practices and proper risk management across the corporate landscape.

  • Also responsible for monitoring, detecting, analyzing, mitigating, and responding to cyber threats against IT assets, networks, and information.
  • The environment includes local area networks/wide area networks (LAN/WAN), commercial Internet connections, public facing websites, wireless, mobile/cellular, cloud, security devices, servers and workstations.
  • Take lead in performing security testing of applications, networks and infrastructures, including vulnerability assessments, penetration testing and manual testing techniques.


ESSENTIAL DUTIES AND RESPONSIBILITIES

  • Lead and manage a 24x7x365 Security Operations Center providing technical oversight.
  • Lead staff to proactively identify, prevent and respond to security incidents.
  • Ensure incident identification, assessment, quantification, reporting, communication, mitigation and monitoring.
  • Ensure compliance to Service Level Agreements (SLA), process adherence and process improvisation to achieve operational objectives and mitigate threats.
  • Revise and develop processes to strengthen the current operational activities; review policies and recommend changes to improve governance.
  • Responsible for team management, personnel scheduling, overall use of resources and initiation of corrective action where required for Security Operations Center.
  • Perform threat management, threat modeling, identify threat vectors and develop use cases for security monitoring.
  • Creation of reports, dashboards, metrics for SOC operations and presentation to client.
  • Operate a hands-on role involving penetration testing and vulnerability assessment activities of complex applications, operating systems, wired and wireless networks, and mobile applications/devices.
  • Manage consulting engagements, with a focus on incident response and forensics. Provide both subject matter expertise and project management experience to serve as the "point person" for engagements.
  • Communicate security issues to a wide variety of internal and external "customers" to include technical teams, executives, risk groups, vendors and regulators.
  • Ensures that disaster recovery and business continuity plans are in place and tested on a regular basis.


SUPERVISORY RESPONSIBILITIES

Direct supervision of the Security Services department. Carries out supervisory responsibilities in accordance with Company policies, procedures, and applicable laws. Responsibilities include interviewing, hiring, promoting and training employees; planning, assigning, directing and approving work; appraising performance; rewarding and disciplining employees; addressing complaints and resolving problems; and recommending salary adjustments.

QUALIFICATIONS

Education and Experience:

  • Bachelor's degree in information technology or related field and combination of experience in the following areas:
    • 10+ years in security and/or risk assessment/management related field
    • Hands on experience with testing frameworks such as the PTES and OWASP
    • Applicable knowledge of Windows client/server, Unix/Linux systems, Mac OS X, VMware/Xen, and cloud technologies such as AWS, Azure, or Google Cloud
    • In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.

  • Excellent organizational and time management skills.
  • Critical thinker and problem solver.
  • Experience in performing vendor management.
  • Detailed orientated with effective written and communication skills.


Certifications and Licenses:

  • CISSP, GIAC, CISSP, CEH, OSCP, or equivalent certifications a plus

Similar Jobs

More Jobs at Pearl Technology

More Information Technology Jobs

Find similar Cybersecurity Operations Director jobs: