Director, Security Operations Center (SOC)

Make a difference here.

What You'll Do:

• Provide strategic leadership and oversight of daily SOC operations, ensuring effective monitoring, detection, analysis, and incident response across client environments.
• Establish and continuously refine SOC governance, policies, and playbooks aligned with industry frameworks such as MITRE ATT&CK to drive standardization and operational excellence.
• Oversee the deployment, integration, and optimization of core security technologies—including SIEM, SOAR, IDS/IPS, EDR, and threat intelligence platforms—to maximize visibility and response efficiency.
• Direct coordinated incident response efforts across technical and business functions, ensuring timely resolution and lessons-learned integration through structured post-incident reviews.
• Partner with IT, legal, compliance, and business leaders to align SOC operations with enterprise risk management objectives and client obligations.
• Anticipate and mitigate evolving threat vectors by adapting defensive strategies.
• Build and scale a high-performing SOC team through targeted recruiting, mentorship, and professional development initiatives.
• Deliver actionable insights and performance reporting to executive stakeholders, translating operational metrics into business outcomes and risk reduction.
• Define, track, and report on key performance indicators (KPIs) to assess SOC effectiveness, operational efficiency, and client value realization.
• Leverage automation, orchestration, and scripting (e.g., Python, KQL, PowerShell) to improve detection fidelity, reduce mean time to response (MTTR), and enhance scalability across operations.

What You Have:

• US Citizenship required
• 7+ years of experience in cybersecurity operations, with at least 3+ years leading and mentoring high-performing technical teams.
• Proven ability to translate complex cybersecurity concepts into clear, actionable insights for all audiences.
• Deep technical proficiency with SIEM, EDR, and cloud-native security technologies
• Hands-on expertise in automation and data analysis through scripting languages such as Python, KQL, PowerShell
• Strong command of Linux systems, including command-line proficiency for large-scale log and data analysis.
• Demonstrated excellence in executive communication, stakeholder engagement, and cross-functional collaboration.
• Skilled at managing competing priorities and maintaining operational focus under pressure in dynamic, high-stakes environments.
Preferred Education and Certifications:
• Bachelor’s degree in Cybersecurity, Computer Science, or related field (or equivalent experience).
• Industry certifications such as GCTI, GCFA, GCIA, GREM, or OSCP.

What We Offer:

• 401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed
• Medical, Dental, and Vision insurance (available on the 1st day of the month following your first day of employment)
• Group Term Life, Short-Term Disability, and Long-Term Disability
• Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness
• Participation in the Discretionary Time Off (DTO) Program
• 11 Paid Holidays Annually