Director, Integrated Security Operations Centre

The Director, Integrated Security Operations Centre, is responsible for leading and overseeing the consolidation and operational management of a multi-subsidiary Security Operations Centre (SOC). This role directs the integration of multiple subsidiary SOCs, ensuring seamless operations, unified incident response, and consistent security standards across the organization. The Director will drive operational excellence, set strategic direction, and foster collaboration across subsidiary teams to support a cohesive cyber defense posture.

This position requires a leader who can manage complex integration projects, develop and implement scalable processes, and build high-performing teams aligned with organizational objectives. The Director will be expected to demonstrate exceptional communication and stakeholder management skills, ensuring transparency and alignment throughout the integration process.

Main Activities: :
• Lead the integration and ongoing management of multiple SOCs, ensuring unified processes, toolsets, and response protocols.

• Direct operations for cyber security detection tools and technologies, aligning deployment and monitoring with enterprise risk appetite.

• Manage talent acquisition, development, and retention to support the evolving needs of the integrated SOC environment.

• Ensure effective governance and compliance with organizational policies and regulatory standards across all subsidiaries.

• Maintain oversight of defensive security capabilities that directly impact the SOC’s effectiveness (e.g. Endpoint protection, Identity protection and monitoring etc.)

• Oversee establishment of expanded use cases for Identity Threat Detection and Response, Insider risk management.

• Accountable for endtoend ITDR operational ownership, including tooling strategy, control effectiveness, integration with IAM platforms, coordination with fraud and business teams, and executivelevel reporting on identity risk and attack trends

• Foster a collaborative environment between subsidiary SOC teams, promoting knowledge sharing and unified incident response.

• Continuously assess and optimize SOC operations, identifying opportunities for improvement and innovation.

• Manages performance and operational excellence of teams supporting cyber security tools under purview. Providing data driven insight into performance.

• Ensures processes and monitoring measures are in place to ensure cyber security tools operate effectively and deployment coverage align with organization risk appetite.

• Manage team’s talent and skill to ensure appropriate alignment with needs of administering technologies under purview.
Ensure alignment and support of the Cyber defense centre with investigations into cyber events, with clear responsibilities and escalation paths for regulatory notifications.

• Ensures expanded SIRT (Security Incident Response Team) structure supports responsiveness required to address current attack velocity trends.

• Drive cross-functional collaboration to achieve objectives of the SOC.

• Responsible for maintaining the standards, procedures and guidelines for domains under purview.

• Provide technical guidance for team and subject matter advice to stakeholders.

• Provide business view of SOC stability and executive reporting to support oversight.

Knowledge/Skill Requirements: :
• Technical Expertise: Strong understanding of SOC technologies, cyber security protection tools, network security, and Zero Trust Network Access principles.

• Operational Excellence: Ability to establish, monitor, and optimize service levels, ensuring effective coverage and performance across subsidiaries.

• Stakeholder Engagement: Excellent communication and relationship management skills to coordinate with senior leadership, subsidiary teams, and external partners.

• Governance & Compliance: Deep knowledge of cyber security governance, regulatory requirements, and best practices for encryption, certificates, and network device hardening.

• Strong engineering or security architecture knowledge, (prior hands-on technology engineering experience is preferred)

• Service management or service excellence experience (i.e. IT service Management)

• Strategic Vision: Ability to develop and execute a unified SOC strategy, integrating multiple subsidiaries to deliver effective cyber defense and operational resilience.

• Leadership & Team Building: Proven experience in leading diverse teams, fostering a culture of collaboration, accountability, and continuous improvement across integrated operations.