Relias logo

Relias

Director, (Cyber) Security Operations

🇺🇸 Hybrid - Morrisville, NC 🕑 Full-Time 💰 $150K - $170K 💻 Cybersecurity 🗓️ July 1st, 2026
CISM CISSP GIAC

Edtech.com's Summary

Relias LLC is hiring a Director, (Cyber) Security Operations. The role leads the strategic development and operational management of the organization's security operations, overseeing incident response, threat intelligence, vulnerability management, and security tools to protect systems, data, and business operations. The Director builds and guides a high-performing team while collaborating with multiple stakeholders to ensure security aligns with enterprise risks and compliance requirements.

Highlights
  • Lead the security operations function, including SOC capabilities, incident response, and operational resilience.
  • Manage security monitoring, detection, investigation, containment, and recovery processes.
  • Oversee vulnerability operations and remediation efforts.
  • Optimize security tools such as SIEM, SOAR, EDR/XDR, and threat intelligence platforms.
  • Develop operational metrics, dashboards, and continuous improvement initiatives.
  • Partner with legal, privacy, compliance, and business units for incident handling and regulatory alignment.
  • Require 10+ years in cybersecurity with 5+ years in security operations leadership.
  • Preferred qualifications include Master’s degree and certifications like CISSP, CISM, or GIAC.
  • Experience with SaaS, cloud-native environments, and regulatory frameworks (NIST, ISO 27001, SOC 2, HIPAA).
  • Compensation ranges from USD 150,000 to 170,000 annually.

Director, (Cyber) Security Operations Full Description

Director, (Cyber) Security Operations

Relias LLC
USD 150,000 - 170,000 (Yearly)

Company Description


Are you looking for a high energy, strategic, and fast-paced position with an impactful and mission-driven company? Join Relias, the company changing lives throughout the world by helping healthcare organizations improve their clinical and financial outcomes!
For 11,000+ health care and human service organizations, Relias helps clients deliver better clinical and financial outcomes by elevating the performance of teams. We help organizations across the continuum of care get better at maintaining compliance, developing staff and promoting consistent, high-quality care. Our platform employs assessments to reveal specific gaps in skills and addresses them with personalized and engaging learning, choosing from 7,000+ online courses that meet accrediting board, state and federal requirements.  We are passionate about our products and our clients; what we deliver and the impact we have on the world is truly something you can be proud to represent.  Join us and make a difference.
 
WHAT CAN RELIAS OFFER YOU?
  • Fantastic health and wellness benefits package, including an outstanding 401k match, a flexible PTO program, and a generous and inclusive parental leave policy. Additionally, Relias pays for the employee portion of the monthly healthcare premium!
  • Flexible work environment with onsite and work from home options – you choose when you want to come into the office!
  • Active Employee Resource Groups open to all employees!
  • Comprehensive onboarding program – a great introduction to our company, customers and culture!
  • Growth and career advancement opportunities!
    • Multiple development program options – leadership development, professional development curriculums, and Nanodegree options in both technology and data science
    • Professional development gained from conference attendance and participation in organizations like NC Tech
    • Onsite 321 Coffee Shop providing free coffee and pastries to employees

Job Description

The Director of (Cyber) Security Operations is a cyber leadership role responsible for establishing, directing, and continuously maturing the organization’s security operations capabilities to detect, prevent, respond to, and recover from cybersecurity threats and incidents. This role provides strategic and operational leadership across security monitoring, incident detection and response, threat intelligence, vulnerability operations, logging and telemetry management, and security operations tooling. The Director partners closely with infrastructure, cloud, application, architecture, legal, privacy, compliance, and business stakeholders to ensure operational security capabilities are aligned with enterprise risk priorities, regulatory obligations, and business resiliency requirements. The role is accountable for building and leading a high-performing operations team, defining operational procedures and escalation protocols, driving continuous improvement through automation and metrics, and ensuring the organization can rapidly identify and address cyber events in a manner that protects systems, data, customers, and business operations.
 
WHAT YOU’LL BE DOING:
•    Lead the strategic direction, operating model, and maturity roadmap for the security operations function, including monitoring, detection, response, and operational resilience activities.
•    Oversee security operations center (SOC) capabilities, whether internal, outsourced, or hybrid, and ensure monitoring coverage for critical enterprise, cloud, endpoint, identity, network, and application environments.
•    Direct the end-to-end incident response lifecycle, including triage, investigation, containment, eradication, recovery, escalation, and post-incident lessons learned.
•    Establish and maintain operational processes, standard operating procedures, escalation criteria, and playbooks for security events, incidents, and crisis situations.
•    Lead and improve vulnerability operations in partnership with infrastructure, engineering, and application teams, including prioritization, remediation oversight, exception handling, and reporting.
•    Manage and optimize core detection and response technologies such as SIEM, SOAR, EDR/XDR, case management, threat intelligence, email security, and related operational tooling.
•    Drive detection engineering, use-case development, alert tuning, and automation initiatives to improve fidelity, reduce noise, and accelerate response times.
•    Coordinate with legal, privacy, compliance, human resources, communications, and executive leadership during significant cybersecurity incidents and investigations.
•    Support digital forensics, threat hunting, and root cause analysis efforts as needed for material incidents or suspicious activity.
•    Partner with security architecture, engineering, and IT operations teams to improve control effectiveness, close operational gaps, and strengthen preventive and detective capabilities.
•    Lead service reviews and performance oversight for managed security service providers, technology vendors, and other external partners supporting operational security functions.
•    Coach, develop, and performance-manage analysts, engineers, and operational leaders while fostering a resilient, accountable, and continuously improving team culture.

Qualifications

YOU’VE GOT WHAT IT TAKES IF YOU HAVE/ARE:
•    10+ years of progressive experience in cybersecurity, information security, or related technology roles.
•    5+ years of leadership experience in security operations, incident response, threat detection, or a comparable cyber operations function.
•    Bachelor’s degree in Cybersecurity, Information Security, Computer Science, Information Technology, Engineering, or a related field; or equivalent combination of education and relevant professional experience.
•    Demonstrated experience leading security monitoring and incident response programs in a mid-sized or large enterprise environment.
•    Experience managing or overseeing SOC operations, including internal teams, managed security service providers, or hybrid operational models.
•    Experience leading significant cybersecurity incidents, investigations, and post-incident remediation efforts.
•    Experience with vulnerability operations, remediation governance, and security operations tooling strategy and optimization.
•    Experience developing operational metrics, executive dashboards, and performance reporting for leadership audiences.
•    Experience managing technical teams, vendors, and cross-functional stakeholders in support of enterprise security objectives.
 
EXPERIENCE/EDUCATION PREFERRED:
•    Master’s degree in Cybersecurity, Information Assurance, Computer Science, Business Administration, or a related discipline.
•    Professional certifications such as CISSP, CISM, GIAC, GCIA, GCIH, or other relevant security operations, incident response, or leadership credentials.
•    Experience in SaaS, cloud-native, highly regulated, or customer-facing technology environments.
•    Experience aligning operational practices to recognized frameworks or standards such as NIST CSF, NIST SP 800-61, ISO 27001, CIS Controls, SOC 2, PCI DSS, HIPAA, or other applicable requirements.
•    Experience building or maturing detection engineering, threat hunting, digital forensics, or crisis management capabilities.
•    Experience supporting customer-facing security reviews, external audits, or regulatory examinations involving operational controls.

Additional Information

IN OFFICE REQUIREMENT:
Relias values collaboration and wants to ensure that our team members have opportuniites to work with their managers regularly for professional development opportunities.  This role requires that you live in the state of North Carolina, within a commutable distance to our office.  You would be expected to work in our Morrisville, NC Headquarters approximately 40 days/quarter.

Relias is an Equal Opportunity Employer and a Drug-Free workplace. Relias welcomes and encourages applications from people with disabilities and is happy to make reasonable accommodations in all aspects of the selection process.  If you are an individual with a disability and require reasonable accommodation to complete any part of the job application process, please visit our career page for instructions.
 
All your information will be kept confidential according to EEO guidelines.

Disclosure requirements pertaining to the collection of your personal data:

Responsible for processing the information provided in your application is the company specified in the job advertisement, with its registered office as indicated. The company processes your data for the purpose of establishing an employment relationship on the basis of Art. 6 (1) b GDPR / Section 26 (1) sentence 1 BDSG.
The retention period for your data is determined by the statutory time limits applicable in the respective country, beginning upon completion of the recruitment process. You can find these here.
You can contact the company’s Data Protection Officer at the above-mentioned postal address.
Further information on data protection and your rights can be found here.

Recruiting-Platform powered by SmartRecruiters.