Director, Security Operations

Unqork empowers enterprises to accelerate growth by rapidly building, testing, and running AI-powered applications that embody the future of enterprise development. Trusted by the world’s largest organizations in highly regulated industries, these applications become more secure over time while significantly reducing technical debt—allowing businesses to focus on innovation rather than maintenance. Unqork’s customers include Goldman Sachs, Marsh, BlackRock, and the U.S. Department of Health and Human Services. 

At Unqork, we value inclusive and innovative thinkers who boldly challenge the status quo. We encourage you to apply! 

The Impact U will make:

As the Director of Security Operations, you will be a strategic and operational leader, reporting to the Chief Trust Officer, you will manage the teams responsible for Threat Detection & Response (TDR), Technical Security Architecture,  IT Operations and Identity and Access Management. You will lead the development and execution of our security operations programs and ensure our foundational technology infrastructure is robust. Your primary focus will be to implement and maintain cutting-edge technologies and robust processes to proactively protect and defend our critical assets and manage our enterprise technology against an evolving threat landscape. 

• Strategic Security Operations Leadership & Program Maturity: Define, champion, and drive the long-term vision and strategic roadmap for Unqork's security operations threat detection and response program. Own the end-to-end execution of security log optimization, monitoring, threat detection, triaging, and incident response initiatives, ensuring alignment with organizational goals and risk appetite.
• Security Operations & Incident Response: Lead and mature our security operations capabilities, including our SIEM, SOAR, MDR,, threat detection, vulnerability management, and incident response. Oversee the strategic direction of major security incidents, guiding containment, root cause analysis, and implementing preventative measures.
• Threat & Vulnerability Management: Lead the use of threat intelligence to inform our defensive strategies. Oversee proactive threat hunting activities and manage the full lifecycle of vulnerability management, from discovery to remediation.
• Security Automation & Innovation: Champion the use of automation to enhance security efficacy and efficiency within security operation  and identify and access management processes. Evaluate and integrate cutting-edge security technologies, such as SIEM, SOAR, and EDR/XDR platforms, to continuously strengthen our detection and response capabilities.
• Cross-Functional Technical Partnership: Collaborate extensively with senior leadership in Engineering, Product, IT, and other departments to embed operational security requirements, influence architectural decisions for detectability, and foster a strong security culture. Serve as the primary security technical expert for these partnerships.
• Operational Governance & Reporting: Oversee technical monitoring to ensure adherence to security policies and compliance requirements (e.g., SOC 2, ISO 27001). Develop and present clear metrics and reports on operational security posture and incident trends to executive leadership, driving continuous improvement.
•  A major part of this role involves transforming our Identity and Access Management (IAM) capabilities. We need a leader who can not only manage our existing IAM framework but also envision and implement a more mature, risk-based approach. You'll be responsible for creating and deploying new processes, automating identity lifecycles, and ensuring we have the right controls in place to protect our systems and data.
• In addition to core security duties, you will play a key role in elevating our IT Operations functions. You will be responsible for enhancing the team's efficiency in critical areas such as asset management, system access management, and technical troubleshooting. This includes optimizing workflows, implementing automation, and establishing best practices to ensure a seamless and secure experience for all employees. You will mentor and guide both the security and IT teams, fostering a culture of collaboration and continuous improvement to build a more resilient and efficient operational environment.
• Team Development (Future Focus): Potentially build, mentor, and lead a high-performing team of security analysts and threat hunters as the program expands, fostering their growth and technical excellence.

What U bring: 

• 10+ years of progressive experience in Security Operations, with at least 5 years in a senior leadership or management role overseeing a Security Operations Center (SOC), Managed Detection Response Service, and Incident Response team.
• Proven track record as a hands-on operational leader, having designed, implemented, and managed a mature SOC and incident response capabilities in a dynamic, cloud-native environment, Identity and Access Management Solutions, and IT Operational processes.
• Deep hands-on technical expertise in threat detection, incident response, vulnerability management, and the use of SIEM, EDR/XDR, other security monitoring platforms, IAM solutions and processes.
• Strong understanding of modern security threats, attack vectors, and defensive strategies.
• Expertise in security frameworks (e.g., NIST, MITRE ATT&CK) and their practical application in threat detection, analysis, and incident response.
• Exceptional leadership, communication, and interpersonal skills, with the ability to influence and effectively collaborate with technical and non-technical stakeholders at all levels, including executive leadership.
• Demonstrated ability to translate complex operational security incidents and risks into clear, actionable strategies and communicate effectively to diverse audiences.
• Relevant industry certifications highly preferred (e.g., CISSP, CISM, GCIH, GCIA, or OSCP).
• Bachelor's degree in Computer Science, Information Security, or a related technical field; Master's degree a plus. 

Compensation, Benefits, & Perks

💻 Work from home with a remote-first community

🏝 Unlimited PTO (and the encouragement to use it)

📝 Student loan payback program

🏥 100% employer-covered medical, dental, and vision options available to you and your dependents

💸 Flexible Spending Account (FSA)

🏠 Monthly stipend toward your WFH setup, vacation, development and more

💰 Employer-sponsored 401(k) with contribution match

🏋🏻‍♀️ Subsidized ClassPass Membership

🍼 Generous Paid Parental Leave 

💲 Hiring Ranges:

• Tier 1: $190,000 - $238,000 base salary 
• Tier 2: $170,000 - $214,000 base salary

Unqork employs a market-driven approach to establish compensation ranges. In addition to a base salary, employees may also be eligible to receive a target incentive and company equity in the form of stock options.

An employee’s compensation within the range provided above depends on a variety of factors including, but not limited to, their location, role, skillset, level of experience, and similar peer salaries.

As a remote-first company, Unqork incorporates a geographic differential into our compensation structure, depending on the candidate’s location. We utilize a tiered system—Tier 1 and Tier 2—to accurately reflect local market rates and ensure our compensation packages are both fair and competitive.

Our geographic tiers are defined as follows:

• Tier 1: New York Metro, Seattle Metro, San Francisco Bay Area 
• Tier 2: All other US and US territory locations 

Unqork embraces a culture of security and privacy awareness by consistently safeguarding sensitive information, adhering to company policies, and actively participating in training and initiatives to protect our data and the privacy of our stakeholders. 

Unqork is an equal opportunity employer. We will consider all qualified applicants without regard to race, color, nationality, gender, gender identity or expression, sexual orientation, religion, disability or age. 

#LI-LN1