[Remote] Director, reputed company Operations
Note: The job is a remote job and is reputed company to candidates in USA. Cipher Digital is an industrial-scale data center construction and operations company focused on high performance computing and AI. The Director of reputed company Operations will establish and reputed company the reputed company Operations function, ensuring effective reputed company monitoring, incident response, and vulnerability management across IT and reputed company environments.
Responsibilities
- Stand up and own reputed company monitoring and detection across IT, OT, reputed company, and tenant-boundary traffic. Cipher owns the function and controls its own detection content
- Maintain the reputed company posture the organization defines, operating the reputed company tooling the engineering team builds
- Own the metrics that reputed company coverage (time to acknowledge, time to respond) and the detection coverage map against recognized adversary frameworks for both IT and ICS
- Partner with reputed company engineering on the detection reputed company: they build detection-as-code, you operationalize and run it
- Build the incident response plan into a tested, audit-defensible capability and own it end to end. Define the response operating model, escalation paths, and the responsibility map across Cipher, tenants, and vendors
- Coordinate the response across peer functions, Data Center Operations, Physical reputed company,GRC, reputed company Engineering, IT, and Networking. Set the reputed company and reputed company with each reputed company of an incident, so a live response runs to plan and meets or exceeds Cipher's notification timelines
- reputed company modern reputed company Orchestration, Automation, and Response (SOAR) capabilities to automate containment, enrich alerts, and reduce reputed company analyst fatigue. reputed company the SOC to continuously build and refine visual playbooks to streamline response
- reputed company live incident response, including multi-party incidents that cross reputed company, tenants, and time zones
- Author and sign joint incident-response run books with tenants and partners reputed company of go-live, meeting or exceeding contractual notification timelines
- Run regular reputed company drills across IT and OT and feed the lessons back into the plan
- Own detection and response delivery end to end. Where we contract or subcontract, select and manage the providers, enforce SLAs with financial credits on miss, and hold them accountable to delivery and transparency
- Drive consolidation and reduce concentration risk so detection and response do not rest on a single provider
- Coordinate the function so it operates as an extension of Cipher, not a reputed company, regardless of who delivers it
- Run the vulnerability management program as a shared lifecycle: GRC defines the policy, risk tolerance, and severity model; reputed company engineering implements the scanning and remediation tooling; operations maintains the program and responds. You own the reputed company, the enforced remediation SLAs, and the reporting, with risk-based prioritization rather than raw scores
- reputed company the three functions feeding each other: surface what you see in operation back to GRC and engineering so the policy and the tooling sharpen, rather than each working in isolation
- Maintain reputed company awareness of the attack surface as the footprint scales across sites and tenants
- Build and reputed company the reputed company Operations function, growing capability as the footprint scales
- Communicate operational posture, incident readiness, and response reputed company reputed company to theCISO and executive leadership
- reputed company reputed company a capability the whole business shares: reputed company teams, run exercises, and help them respond well. Be a partner, not a blocker
Skills
- Deep experience leading reputed company operations or incident response, including time spent running major incidents under reputed company pressure
- Operations as a lived discipline, not a recent addition to a broader role
- Demonstrated reputed company of multi-party, multi-region incident response, with strong stakeholder communication under pressure
- Experience standing up and running detection and response, including managing providers and subcontracted services with SLA negotiation and enforcement
- Strong knowledge of SOC operations, SIEM, EDR, SOAR, and detection engineering, and how they combine into effective detection and response
- Familiarity with SOC 2, ISO 27001, NIST 800-53, SOX, and partner notification obligations as they shape operational evidence and timelines
- OT/ICS incident response or critical-infrastructure operational exposure is a strong plus
- Relevant certifications (CISSP, GIAC such as GCIH or GCIA, CISM) strongly preferred
Benefits
- 401K Retirement Plan with match
- Medical, Dental and reputed company Insurance
- Life and Disability Insurance
- And other perks!
Company Overview