CDC Delivery Head

Role: Head of Cyber Defense Center (CDC) Band 9(7 Years+)

Role Overview

The CDC Head is a senior leadership role accountable for the end-to-end governance, delivery, and transformation of Cyber Defense Center operations. The role leads a multi-tier organization of ~100 security professionals (L1L4) across SOC, SecOps, Incident Response, Threat Hunting, Security Engineering, AppSec, DevSecOps, Vulnerability Management, and AI-driven Automation.

The CDC Head serves as the single point of accountability for service delivery excellence, SLA adherence, operational resilience, and strategic alignment with client cybersecurity objectivesdriving the evolution toward a self-driving, AI-augmented SOC .

Key Responsibilities

1. Strategic Leadership & Governance

• Define and execute the CDC vision, operating model, and multi-year transformation roadmap , including adoption of GenAI and agentic AI for autonomous SOC capabilities
• Lead governance forums with client stakeholders, ensuring alignment with business risk, compliance, and regulatory frameworks
• Own and govern CDC SLA/KPI frameworks , including MTTD, MTTR, containment rate, false-positive reduction, and automation coverage

2. Service Delivery & Operations Oversight

• Oversee 24x7 CDC operations across SOC, Incident Response, Threat Hunting, Engineering, and Automation towers
• Ensure seamless coordination between L1L3 analysts, incident managers, and platform SMEs
• Manage major incidents, escalations, RCA reviews, and continuous service improvement initiatives

3. People & Capability Management

• Lead and scale a team of 100+ security professionals , including:
• L1 SOC Analysts
• L2 Security Engineers (SOC, IR, Endpoint, Network, DLP, IAM)
• L3 SMEs (Threat Hunting, IR, Engineering, AppSec, Data Protection)
• Automation Engineers, Detection Content Developers, and GenAI Engineers
• Drive talent development, cross-skilling, leadership pipeline, and succession planning

4. Technology & Platform Ownership

• Oversee integration and optimization of Microsoft Sentinel, Defender XDR, Azure Logic Apps, Security Copilot, and AI agents within CDC workflows
• Ensure platform health, telemetry coverage, detection efficacy, and response automation across SIEM, SOAR, EDR, DLP, and VM ecosystems

5. Reporting & Stakeholder Engagement

• Report to the Account Delivery Partner / Executive Leadership
• Interface with:
• IT Operations and Infrastructure Service Delivery Leaders
• Enterprise Incident Managers
• Client CISOs, Risk Officers, and Security Leadership
• Lead Monthly and Quarterly Business Reviews (MBRs/QBRs) , presenting:
• Threat landscape insights
• SLA and operational performance
• Automation maturity and transformation progress

Interested candidate can apply : / also share this opportunity with your friends and colleagues who are looking for the new roles.