Cybersecurity Operations Lead

Cybersecurity Operations Lead

Requirements

• Bachelor’s degree in IT, Security or equivalent experience
• 5+ years experience in security operations management, preferably in the technology or defense industry
• Strong time management skills, with the ability to multitask and meet tight deadlines
• Excellent communication and interpersonal skills, including experience engaging with executive leadership
• Attention to detail and a commitment to quality
• Proficiency in security operations software and tools

Responsibilities

• Lead and manage the day-to-day activities of the cybersecurity operations team, ensuring round-the-clock security monitoring and response
• Maintain an updated cybersecurity operations plan that outlines protocols for detecting, responding to, and recovering from security incidents
• Oversee the deployment and management of security tools such as firewalls, SIEM systems, endpoint protection, and other threat detection systems
• Develop and implement incident response policy and coordinate the investigation of cybersecurity incidents, ensuring swift remediation and reporting
• Continuously monitor for threats using tools such as SIEM and threat intelligence platforms
• Lead post-incident reviews and lessons learned sessions, and ensure adjustments are made to processes and technologies to prevent future incidents
• Ensure continuous monitoring of network traffic, system logs, and application activities to identify anomalous behavior or security breaches
• Conduct regular vulnerability assessments and penetration testing to identify weaknesses in the system
• Implement remediation plans and work with IT teams to patch vulnerabilities and secure systems
• Ensure the organization’s cybersecurity operations comply with regulatory requirements and industry standards (e.g., NIST 800-171, CMMC, ISO 27001)
• Collaborate with the compliance team to ensure all security policies and procedures align with data privacy laws and security frameworks
• Assist in internal and external audits, ensuring any findings are resolved quickly and appropriately
• Develop and lead employee cybersecurity training and awareness programs to educate staff on recognizing threats such as phishing, social engineering, and insider risks
• Train and mentor cybersecurity operations team members, fostering continuous learning and development
• Conduct tabletop exercises and simulations to test the organization’s incident response readiness
• Oversee the implementation and optimization of cybersecurity tools and technologies, ensuring they provide effective protection
• Evaluate emerging cybersecurity technologies and make recommendations for improving the company’s security stack
• Collaborate with IT teams to ensure that new software or hardware deployments meet the organization’s security standards
• Act as the primary point of contact during security incidents, collaborating with other departments such as IT, legal, and compliance to contain and resolve incidents
• Liaise with external security providers and vendors to maintain service levels and ensure the effectiveness of outsourced security solutions
• Foster relationships with law enforcement and cybersecurity agencies for threat intelligence sharing and support during incidents
• Assist in the development of long-term cybersecurity strategies in alignment with the organization’s business goals
• Provide regular reports and briefings to senior management on the state of cybersecurity operations, emerging threats, and incident response activities
• Support the development of the cybersecurity budget and ensure that resources are allocated effectively
• Work closely with cross-functional teams, including IT, sales, engineering, and product development, to ensure alignment on objectives and messaging

Preferred Qualifications

• Familiarity with Department of Defense (DoD) or military industry projects is preferred
• Knowledge of autonomous systems or maritime technology is preferred