Key skills
AWSAzureGoogle CloudIAMLeadershipCommunication
About this role
Dice is seeking a Director / Senior Director of Information Security Operations & Engineering who will serve as the operational and technical counterpart to the CISO. The role involves leading security operations, incident response, and engineering efforts to enhance the company's security posture and maturity.
Responsibilities:
- Act as the primary operational partner to the CISO
- Drive security strategy, roadmap, and crossfunctional initiatives
- Translate business risk into practical controls
- Support executive/boardlevel communication
- Improve measurable security maturity
- Lead IR program and act as a senior escalation during incidents
- Enhance detection, containment, eradication, and recovery
- Build playbooks (ransomware, insider threat, BEC, cloud attacks)
- Coordinate with legal, forensics, and cyber insurance
- Implement layered ransomware defenses
- Strengthen segmentation, PAM, EDR, backups, DR/BCP
- Run tabletop exercises and validate resilience
- Lead security across AWS/Azure/Google Cloud Platform, hybrid, onprem, colo
- Secure identity, network, compute, storage, apps
- Improve telemetry, logging, and monitoring
- Partner with Infra/DevOps on secure architecture
- Build and operationalize DLP strategy
- Improve classification, monitoring, access, and insiderrisk controls
- Oversee SIEM, EDR/XDR, IAM/PAM, vuln mgmt, email security, network controls, backup/recovery
- Reduce tool sprawl and noise; focus on operational effectiveness
- Conduct practical risk assessments
- Prioritize remediation based on business impact
- Improve policies, standards, governance
- Support audits, customer reviews, and compliance
- Establish meaningful metrics
Requirements:
- 10+ years of progressive security experience
- Senior leadership in security operations/engineering
- Deep handson expertise in IR, ransomware, cloud, infra, IAM, and architecture
- Strong understanding of attacker TTPs
- Proven ability to build/scale security programs
- Strong communication with technical + executive audiences
- High ownership, calm under pressure
- Deputy CISO or direct CISOsupport experience
- Hybrid cloud/onprem environments
- Crisis leadership experience
- Tool rationalization experience
- M&A or rapidgrowth environments