Sr. Director, Security Operations

Fortra is seeking a highly skilled, self-driven and motivated Senior Director of Managed Security Operations to lead our Digital Risk Security Operations Center (SOC). The ideal candidate will have a strong background in cybersecurity, excellent leadership skills, and a proven track record of overseeing security operations, scaling security effectiveness, and customer engagement. As the Senior Director of Managed Security Operations, you and your team will play a crucial role in ensuring the protection of our customers against cyber threats.  

The Senior Director of Security Operations for Managed Services will be responsible for overseeing and managing security operations within our managed services division. This role involves developing and implementing security strategies, ensuring the effective operation of security controls, and leading a team to protect client environments and internal infrastructure. The Senior Director will work closely with senior leadership, clients, and internal teams to enhance security posture and respond to security challenges. 

WHAT YOU'LL DO

 General Responsibilities: 

• Lead and mentor a team of Managers, security analysts, Leads and SMEs, fostering a culture of collaboration, continuous learning, and professional growth.  

• Responsible for collaborating with R&D to continually drive to better automated security outcomes 

• Collaborate with CSMs and AMs to ensure full-value delivery and communication for all customers  

• Leverage automation to ensure optimal gross margins  

• Continuously evaluate and mature a strong set of KPIs and control plans to ensure trends are monitored and deviations are addressed proactively. 

• Provide guidance, training, and performance evaluations to ensure the team's effectiveness and growth.  

• Drive innovation and scale into our day-to-day processes and methodologies, leveraging skillsets and capabilities present on the team, and partnering with cross functional stakeholders  

• Partner with SOC Leads to Coordinate schedules, assignments, and tasks to ensure 24/7 coverage and effective response to security incidents  

• Accountable for the daily operations of the SOC, overseeing incident detection, analysis, response, and resolution. 

• Collaborate with team members to investigate and mitigate security incidents, ensuring timely and effective containment and resolution.  

• Build visualizations for and monitor SOC metrics/Key Performance Indicators (KPIs) and assess trends to evaluate operational efficiency and identify opportunities for improvement.  

•  Be deeply engaged in the delivery of managed security services to customers, ensuring desired security outcomes, attainment of service-level agreements (SLAs) and customer satisfaction.  

• Establish and maintain strong relationships with customers, acting as an escalation point of contact for customer issues.  

• Collaborate with customers to understand their security needs, provide recommendations, and communicate security posture and incident status.  

• Lead and support incident response efforts, guiding the team in handling and mitigating security incidents to minimize impact and prevent future occurrences.  

• Stay current with emerging cyber threats and vulnerabilities, utilizing threat intelligence to enhance threat detection and response capabilities. 

• Identify opportunities to streamline and automate security processes, enhancing the efficiency and effectiveness of the SOC.  

• Implement best practices, workflows, and procedures to ensure consistent and standardized incident response and reporting.  

  Strategic Security Management:

• Develop and execute security strategies and plans specific to managed services. 

• Align security operations with organizational goals and client requirements. 

• Stay abreast of industry trends and emerging threats to ensure proactive security measures. 

Client and Stakeholder Engagement:

• Serve as a key contact for clients regarding security operations and concerns. 

• Build and maintain strong relationships with clients to ensure satisfaction with security services. 

• Address complex security issues and provide timely resolutions to client concerns. 

Team Leadership and Development:

• Lead, mentor, and develop a high-performing security operations team. 

• Oversee team recruitment, training, and professional development. 

• Foster a collaborative and innovative work environment within the security operations group. 

Risk Management and Compliance:

• Ensure compliance with relevant regulations, industry standards, and best practices. 

• Conduct risk assessments, vulnerability analyses, and audits to identify and mitigate potential risks. 

• Implement and manage compliance and security audits to ensure adherence to policies. 

Budget and Resource Management:

• Develop and manage the budget for security operations, ensuring alignment with financial objectives. 

• Allocate resources effectively to support operational and security goals. 

• Evaluate and manage relationships with external vendors and service providers. 

Strategic Collaboration:

• Collaborate with other departments and senior leadership to integrate security considerations into broader business strategies. 

• Provide regular updates and reports on security posture, risks, and initiatives to executive leadership. 

• Represent the organization in industry events, forums, and with external partners. 

 QUALIFICATIONS  

• Bachelor's degree or higher in Cybersecurity, Information Technology, Computer Science, or a related field. Relevant certifications such as CISSP, CISM, CompTIA Security+, or similar are a plus.  

•  10 years of experience in cybersecurity, with a proven track record of managing security operations and delivering managed security services. At least 5 years in a senior management or Director role. 

• Strong knowledge of security technologies and tools, including Phishing techniques, email based threats, Social network based threats, threat intelligence, data mining and countermeasure design and creation.  

• Excellent leadership and team management skills, with the ability to motivate and guide cross-functional teams.  

• Excellent communication and interpersonal skills, capable of building relationships with customers and stakeholders.  

• Familiarity with compliance frameworks (e.g., NIST, ISO 27001, SOC 2) and regulatory requirements.  

• Strong analytical and problem-solving abilities, with a proactive approach to identifying and addressing security risks.  

• Demonstrated ability to drive security initiatives and manage complex security challenges.