Summary

The Head of Cyber Security Operations is the technical authority responsible for the hardening and defense of the organization’s digital trust infrastructure. This role ensures that security policies—including the Information Security Policy (ISP) and the Certificate Policy/Certification Practice Statement (CP/CPS)—are translated into effective, auditable technical controls.

As the Incident Manager and Security Gatekeeper, you will provide the technical oversight necessary to protect the integrity of the Certification Authority (CA), Time Stamping Authority (TSA) and Digital Signature platforms. This is a foundational leadership role tasked with building the Cyber Security Operations Department (CSOD) and ensuring constant readiness for high-stakes regulatory audits.

Responsibilities

• Security Policy Implementation & Control Governance: Lead implementation of mandated security controls (ISP/CP/CPS) and ensure network/system configurations align with corporate governance.
• Threat Intelligence & Proactive Defense: Analyze industry-relevant threat data, perform threat hunting using Sophos EDR telemetry, and direct the vulnerability management lifecycle.
• Security Monitoring & Audit Trail Oversight: Conduct recurring reviews of system audit trails, application logs, CCTV footage, and biometric access reports to identify unauthorized activities.
• Access Authority & Gatekeeping: Serve as the sole approving authority for the Master Access Control List (ACL) and enforce the "Principle of Least Privilege" through rigorous monthly audits.
• Incident Management & BCM: Lead tactical responses during security events, coordinating containment, forensic investigation, and eradication while briefing the Incident Commander (COO).
• Trust Operations & Audit Defense: Act as the official Security Witness during cryptographic rituals/Key Ceremonies and serve as the primary technical auditee for WebTrust, ISO 27001, etc.

Requirements and Skills

• Bachelor’s (Master’s preferred) in Cybersecurity, Computer Science, IT, or Information Security Management.
• 6–12 years in IT/Security, with 5+ years in active Incident Response/SecOps and 2+ years in a leadership capacity.
• Prior experience in a Certificate Authority (CA), Bank, or highly regulated tech environment is essential.
• Deep familiarity with ISO 27001, ISO 22301, and NIST frameworks.
• Certifications (Advantageous): GCIH (highly preferred), CISSP, CISM, or CISA. Specialized PKI training is a significant plus.
• Must pass stringent background checks due to the sensitivity of the CA environment.

Apply Now