Director of IT Security Operations

Director of IT Security Operations

Metro Dallas

Direct-Hire

RedStream Technology is searching for a Director if IT Security Operations to work for our client, a leader in the automotive industry. The Director of IT Security Operations is responsible for leading the organization’s cybersecurity operations program, including Security Operations Center (SOC) functions, incident response, threat detection, vulnerability management, cyber defense engineering, and operational security strategy.

This role provides leadership for enterprise-wide security monitoring and response capabilities while partnering closely with Infrastructure, Cloud, Engineering, Compliance, Legal, Privacy, and executive leadership teams. The ideal candidate is a strategic and hands-on cybersecurity leader with deep experience building and scaling modern security operations capabilities across hybrid enterprise environments, including cloud, SaaS, endpoint, identity, and network security domains.

Key Responsibilities:

• Lead and manage the Security Operations team, including SOC analysts, incident responders, threat hunters, and security engineers.
• Develop and execute the enterprise security operations strategy aligned with business objectives and risk management priorities.
• Establish operational metrics, KPIs, and dashboards for executive reporting.
• Build and mature a 24x7 detection and response capability.
• Manage relationships with MSSPs, MDR providers, and security technology vendors. Threat Detection & Response
• Oversee enterprise monitoring, detection, triage, investigation, containment, eradication, and recovery activities.
• Lead incident response efforts for cybersecurity events, including ransomware, insider threats, phishing, cloud compromise, and advanced persistent threats.
• Develop and maintain incident response playbooks and cyber crisis management procedures.
• Coordinate tabletop exercises and red/blue team engagements.
• Oversee deployment and optimization of various tools including (but not limited to: Security Information and Event Management tools (SIEM), Security Orchestration, Automation, and Response (SOAR), Email Security, IAM and PAM integrations, Vulnerability Management tools,
• Ensure security Monitoring coverage across various environments including: Cloud Platforms (Azure, AWS, GCP), SaaS environments, Endpoints, Networks
• DevOps pipelines Leadership and Collaboration
• Mentor and develop cybersecurity talent and leadership succession plans.
• Partner with CISO to communicate cyber risk and operations posture.
• Work close with Infrastructure, Cloud, DevOps, Privacy, Legal and HR team during investigations and remediation activities.

Required Skills:

• Bachelor’s degree. Preferred in in Computer Science, Cybersecurity, or related field.
• 10 years of cybersecurity experience, with at least 5 years of leading Security Operations or SOC teams.
• Experience leading enterprise-scale incident response and cyber defense programs
• Strong expertise in:
• SIEM platforms
• EDR/XDR technologies
• Cloud security
• Identity security
• Threat detection and response
• Security automation
• Experience implementing AI-driven security operations and automation capabilities.