Security Director - SOC operations

Strategic Leadership: Develop and implement a holistic cybersecurity strategy that aligns with business objectives, managing both physical and cyber security measures. Security Operations Center (SOC) Oversight: Lead day-to-day SOC operations, including 24/7 monitoring, threat detection, analysis, and incident response. Develop and maintain incident response plans and procedures. Vulnerability Management: Build and mature a full lifecycle vulnerability management program, from asset discovery and risk assessment to remediation tracking and reporting. Identity and Access Management (IAM): Oversee IAM strategies and operations, including privileged access management and regular user access reviews, ensuring least privilege principles are applied. Domain Expertise Management: Provide leadership and operational expertise across various security domains, including Active Directory, Application Security (App Sec), network security, and data loss prevention (DLP). Compliance and Risk Management: Ensure adherence to relevant security regulations and standards (e.g., ISO 27001, NIST, GDPR) and lead risk assessment audits to identify vulnerabilities. Team Management and Development: Recruit, mentor, and develop a high-performing security team, fostering a culture of continuous improvement and professional growth. Manage Performances, Time, Leaves, Resource Challenges. Stakeholder Communication: Serve as the primary point of contact for security incidents, preparing and presenting performance metrics, threat landscapes, and risk postures to executive leadership and the board. Finance management: Oversee and Track Finances for entire Security Division, Monitor PnL, Ensure Billing for the services. Experience: Minimum 15+ years of progressive experience in cybersecurity operations, with at least 7+ years in a leadership/management role. Education: Bachelor's degree in Cybersecurity, Information Technology, Criminal Justice, or a related field. A Master's degree is a plus. Professional Certifications: Must hold at least one (preferably more) relevant professional certification such as CISSP, CISA, CISM, or CRISC. Technical Knowledge: Deep understanding of cybersecurity principles, incident response methodologies, threat intelligence, and a wide range of security technologies and frameworks (e.g., NIST, MITRE ATT&CK). Leadership Skills: Strong leadership, team management, and problem-solving skills, with the ability to handle high-pressure situations and make quick decisions. Communication: Excellent verbal and written communication skills, with demonstrated experience in preparing senior-level briefings and reports for diverse stakeholders