Job Description

Director of Cybersecurity Operations

6 month Contract to Hire

Summary:

Our client is seeking an exceptionally experienced and hands-on Director of Cybersecurity Operations to lead the cybersecurity program and serve as the primary interface with MSSP and MDR providers. This senior leadership position requires a rare combination of strategic vision and technical expertise, with the ability to both architect comprehensive security frameworks and implement tactical solutions across our technology landscape. You will be responsible for executing all aspects of the cybersecurity program while maintaining a hands-on approach to security operations, threat detection, incident response, and compliance. This pivotal role demands an elite security professional who can navigate complex security challenges while ensuring the protection of critical assets, data, and reputation.

Responsibilities:

Security Program Leadership:

• Lead the development, implementation, and continuous improvement of comprehensive cybersecurity program
• Establish and maintain security frameworks, policies, standards, and procedures aligned with industry best practices and compliance requirements
• Define and implement security controls across all technology domains, including cloud, network, endpoint, and application security
• Provide expert guidance to executive leadership on security strategy, risk management, and resource allocation
• Establish key performance indicators and metrics to measure the effectiveness of security controls and initiatives
• Lead security awareness and training programs across the organization
• Develop and maintain security incident response plans, business continuity, and disaster recovery procedures
• Implement and optimize security governance processes and reporting mechanisms

Hands-on Security Operations:

• Serve as the technical security lead with direct hands-on involvement in security technology implementation and operations
• Design, implement, and maintain the Microsoft Security stack, including Microsoft Defender, Microsoft Sentinel, Purview, and Entra ID protection
• Configure, tune, and optimize security monitoring systems to detect and alert on potential security incidents
• Perform advanced security investigations and threat hunting to proactively identify potential compromises
• Lead incident response activities for high-priority security events
• Conduct detailed forensic analysis of security incidents to determine root causes and develop mitigations
• Implement and maintain security log collection, correlation, and analysis capabilities
• Develop custom detection rules, playbooks, and automation workflows for security operations

MSSP & MDR Partnership Management:

• Serve as the primary point of contact and technical liaison with Managed Security Service Provider (MSSP) and Managed Detection and Response (MDR) partners
• Establish clear roles, responsibilities, and performance expectations for security service providers
• Review and validate security alerts, escalations, and recommendations from service providers
• Collaborate with providers on incident response, threat hunting, and vulnerability management activities
• Lead regular service review meetings to assess provider performance and identify improvement opportunities
• Ensure effective integration between internal security operations and external security services
• Optimize the value derived from security service investments through continuous refinement
• Coordinate joint security exercises and tabletop drills with service providers

Vulnerability & Risk Management:

• Implement and lead comprehensive vulnerability management programs across all technology assets
• Conduct regular vulnerability scanning, penetration testing, and security assessments
• Establish risk-based prioritization frameworks for vulnerability remediation
• Coordinate remediation efforts with IT teams and track progress against security objectives
• Perform security architecture reviews for new systems and applications
• Lead security risk assessments and develop risk treatment plans
• Implement security controls to address identified vulnerabilities and risks
• Provide technical guidance to development and operations teams on secure configuration practices

Security Technology Management:

• Design and implement the security technology ecosystem, with particular focus on the Microsoft Security stack
• Configure and maintain Sumo Logic for security information and event management
• Implement and maintain endpoint detection and response (EDR) capabilities
• Design and implement data loss prevention (DLP) controls and monitoring
• Configure and manage cloud security posture management solutions
• Implement and maintain email security, identity protection, and access management controls
• Evaluate and recommend new security technologies to address emerging threats
• Optimize security tool integration to create a cohesive security ecosystem

Compliance & Security Assurance:

• Ensure security controls and practices align with relevant regulatory requirements and industry standards
• Lead security aspects of compliance audits and assessments
• Develop and maintain security documentation required for compliance and due diligence
• Perform or coordinate security reviews for third-party vendors and service providers
• Implement technical controls to meet compliance requirements
• Conduct regular security assessments and control validation
• Report on security posture and compliance status to executive leadership
• Partner with legal and compliance teams on regulatory and contractual security requirements

Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, or related field; Master's degree preferred
• Minimum of 12+ years of experience in cybersecurity, with at least a decade of hands-on technical implementation
• At least 7+ years in security leadership roles with progressive responsibility
• Extensive hands-on experience with Microsoft Security stack, including Microsoft Defender, Sentinel, Purview, and Entra ID Protection
• Demonstrated expertise in security operations, incident response, threat hunting, and forensic analysis
• In-depth knowledge of security frameworks (NIST CSF, ISO 27001, CIS Controls)
• Strong understanding of cloud security best practices for Azure and other cloud platforms
• Experience managing relationships with MSSP and MDR providers
• Advanced knowledge of security monitoring, SIEM implementation, and log analysis
• Proven experience implementing and managing comprehensive vulnerability management programs
• Strong understanding of network security, endpoint security, and application security
• Experience leading security incident response for significant security events
• Excellent written and verbal communication skills, with the ability to effectively communicate complex security concepts to technical and non-technical audiences
• Relevant security certifications (CISSP, CISM, GIAC, or equivalent)

Preferred Qualifications:

• Hands-on experience with Sumo Logic for security monitoring and analysis
• Experience in the energy efficiency, sustainability, or similar regulated industries
• Knowledge of OT/IoT security principles and practices
• Experience implementing Zero Trust security architectures
• Background in secure DevOps practices and application security
• Experience with security automation and orchestration tools
• Knowledge of threat intelligence platforms and integration
• Experience with cloud security posture management tools
• Background in implementing security controls for compliance with standards such as SOC 2, ISO 27001, or similar
• Experience building and leading security teams
• Advanced certifications in specialized security domains (SANS GIAC, Offensive Security, Cloud Security)
• Experience conducting or managing red team/blue team security exercises

This critical position offers an exceptional opportunity to shape and lead the cybersecurity program while working with cutting-edge security technologies in a dynamic, mission-driven organization. The ideal candidate will combine strategic vision with hands-on technical expertise to protect our business and enable secure digital transformation.

Benefit offerings include medical, dental, vision, term life insurance, short-term disability insurance, additional voluntary benefits, commuter benefits and 401K plan. Our program provides employees the flexibility to choose the type of coverage that meets their individual needs. Available paid leave may include Paid Sick Leave, where required by law; any other paid leave required by Federal, State or local law; and Holiday pay upon meeting eligibility criteria. Disclaimer: These benefit offerings do not apply to client-recruited jobs and jobs which are direct hire to a client

Job Tags

Similar Jobs