Direct cyber operations across: * Security Operations Center (SOC) * Threat Intelligence * Detection Engineering * Security Engineering * SOAR / automation platforms * Drive operational maturity ...
Direct cyber operations across: * Security Operations Center (SOC) * Threat Intelligence * Detection Engineering * Security Engineering * SOAR / automation platforms * Drive operational maturity ...
Director, Cyber Defense Principal Engineer
Cambridge, MA · On-site
$199K - $270K/yr
The Director, Cyber Defense will play a critical role in designing and advancing our next-generation cyber defense capabilities, shaping how we detect, investigate, and respond to threats at scale.
Director, Cyber Defense Principal Engineer
Cambridge, MA · On-site
$199K - $270K/yr
The Director, Cyber Defense will play a critical role in designing and advancing our next-generation cyber defense capabilities, shaping how we detect, investigate, and respond to threats at scale.
Director, Cyber Defense Principal Engineer
Cambridge, MA · On-site +1
$199K - $270K/yr
The Director, Cyber Defense will play a critical role in designing and advancing our next-generation cyber defense capabilities, shaping how we detect, investigate, and respond to threats at scale.
Director, Cyber Defense Principal Engineer
Cambridge, MA · On-site +1
$199K - $270K/yr
The Director, Cyber Defense will play a critical role in designing and advancing our next-generation cyber defense capabilities, shaping how we detect, investigate, and respond to threats at scale.
Cyber Analyst
Manassas Park, VA · Hybrid
Provide direct support to client through multi-source analysis of cyber threats, identify trends and patterns within complex networks, employ analytical methods to isolate and resolve complex problem ...
Cyber Analyst
Manassas Park, VA · Hybrid
Provide direct support to client through multi-source analysis of cyber threats, identify trends and patterns within complex networks, employ analytical methods to isolate and resolve complex problem ...
Direct cyber operations across: * Security Operations Center (SOC) * Threat Intelligence * Detection Engineering * Security Engineering * SOAR / automation platforms * Drive operational maturity ...
Direct cyber operations across: * Security Operations Center (SOC) * Threat Intelligence * Detection Engineering * Security Engineering * SOAR / automation platforms * Drive operational maturity ...
Director of Cyber Analysis
Arlington, VA · On-site
$105K - $200K/yr
Experience: 10+ years direct cybersecurity work, 7+ years of experience evaluating the cyber compliance of a system against current RMF and DoW Cybersecurity policies * Education: Bachelor's Degree ...
Director of Cyber Analysis
Arlington, VA · On-site
$105K - $200K/yr
Experience: 10+ years direct cybersecurity work, 7+ years of experience evaluating the cyber compliance of a system against current RMF and DoW Cybersecurity policies * Education: Bachelor's Degree ...
Director of Cyber Analysis
Arlington, VA · On-site
$105K - $200K/yr
Experience: 10+ years direct cybersecurity work, 7+ years of experience evaluating the cyber compliance of a system against current RMF and DoW Cybersecurity policies * Education: Bachelor's Degree ...
Director of Cyber Analysis
Arlington, VA · On-site
$105K - $200K/yr
Experience: 10+ years direct cybersecurity work, 7+ years of experience evaluating the cyber compliance of a system against current RMF and DoW Cybersecurity policies * Education: Bachelor's Degree ...
Project Coordinator - Department of Cyber and Computer Sciences and Citadel DoD Cyber Institute
$55K/yr
He/she will work with Head of Department/PI of DoW CSA Grant, Director of Citadel DoD Cyber Institute and other units on campus for successful operations of the externally funded projects. Essential ...
Project Coordinator - Department of Cyber and Computer Sciences and Citadel DoD Cyber Institute
$55K/yr
He/she will work with Head of Department/PI of DoW CSA Grant, Director of Citadel DoD Cyber Institute and other units on campus for successful operations of the externally funded projects. Essential ...
Director, DFIR (Remote)
Wilmington, DE · Remote
$185K - $200K/yr
About Surefire Cyber Surefire Cyber is redefining the incident response model by delivering a ... Director- Digital Forensics and Incident Response Location: Remote, USA Role: Full time / Exempt ...
Quick apply
Director, DFIR (Remote)
Wilmington, DE · Remote
$185K - $200K/yr
About Surefire Cyber Surefire Cyber is redefining the incident response model by delivering a ... Director- Digital Forensics and Incident Response Location: Remote, USA Role: Full time / Exempt ...
Direct advanced cyber investigations and forensic examinations across Windows, Linux/Unix, macOS, mobile, and enterprise environments. * Manage forensic workflows, evidence handling procedures, and ...
Direct advanced cyber investigations and forensic examinations across Windows, Linux/Unix, macOS, mobile, and enterprise environments. * Manage forensic workflows, evidence handling procedures, and ...
The Director, Cyber Strategy & Architecture is responsible for providing enterprise-wide cyber security architecture leadership and serving as the authoritative technical subject matter expert across ...
The Director, Cyber Strategy & Architecture is responsible for providing enterprise-wide cyber security architecture leadership and serving as the authoritative technical subject matter expert across ...
... SECDEF directed national defense activities. Ability to conduct long-range, strategic planning efforts with internal and external partners in cyber activities. ?????6. Skills to communicate ...
... SECDEF directed national defense activities. Ability to conduct long-range, strategic planning efforts with internal and external partners in cyber activities. ?????6. Skills to communicate ...
Senior Cyber Lead
Linthicum, MD · On-site
Direct advanced cyber investigations and forensic examinations across Windows, Linux/Unix, macOS, mobile, and enterprise environments. * Manage forensic workflows, evidence handling procedures, and ...
Senior Cyber Lead
Linthicum, MD · On-site
Direct advanced cyber investigations and forensic examinations across Windows, Linux/Unix, macOS, mobile, and enterprise environments. * Manage forensic workflows, evidence handling procedures, and ...
... to Cyber / Information Security. * Proven success operating at Director level or above in complex, regulated environments. * Demonstrated ability to influence senior leaders and drive outcomes ...
... to Cyber / Information Security. * Proven success operating at Director level or above in complex, regulated environments. * Demonstrated ability to influence senior leaders and drive outcomes ...
Direct advanced cyber investigations and forensic examinations across Windows, Linux/Unix, macOS, mobile, and enterprise environments. * Manage forensic workflows, evidence handling procedures, and ...
Direct advanced cyber investigations and forensic examinations across Windows, Linux/Unix, macOS, mobile, and enterprise environments. * Manage forensic workflows, evidence handling procedures, and ...
Cyber Analyst - MID
Fort George G Meade, MD · On-site
$70K - $105K/yr
By integrating advanced cyber expertise with intelligence-driven analysis, the program addresses ... Contractor-provided training and certification upkeep (unless Government-directed) * Ability to ...
Cyber Analyst - MID
Fort George G Meade, MD · On-site
$70K - $105K/yr
By integrating advanced cyber expertise with intelligence-driven analysis, the program addresses ... Contractor-provided training and certification upkeep (unless Government-directed) * Ability to ...
Red Analyst (Cyber) Red Team Analysts (cyber) are responsible for providing direct strategic and tactical analytic support to the DoD Red Team . The Red Analysts (cyber) drive the strategic direction ...
Red Analyst (Cyber) Red Team Analysts (cyber) are responsible for providing direct strategic and tactical analytic support to the DoD Red Team . The Red Analysts (cyber) drive the strategic direction ...
Cyber Analyst - MID
Fort George G Meade, MD · Hybrid
$70K - $105K/yr
By integrating advanced cyber expertise with intelligence-driven analysis, the program addresses ... Contractor-provided training and certification upkeep (unless Government-directed) * Ability to ...
Cyber Analyst - MID
Fort George G Meade, MD · Hybrid
$70K - $105K/yr
By integrating advanced cyber expertise with intelligence-driven analysis, the program addresses ... Contractor-provided training and certification upkeep (unless Government-directed) * Ability to ...
Supports the Technical Director in synchronizing and prioritizing capability requirements and new ... Analyst, Cyber Operations role for DOD or the IC * IAT or IAM level II certification
Supports the Technical Director in synchronizing and prioritizing capability requirements and new ... Analyst, Cyber Operations role for DOD or the IC * IAT or IAM level II certification
Senior Cyber Engineer
Huntsville, AL · On-site
Direct experience supporting Space Force in cybersecurity or training capacity. * 8140 CSSP Auditor certification (CEH, CySA+, CISA, CHFI). * CMMC familiarization and certification. * Recent cyber ...
Senior Cyber Engineer
Huntsville, AL · On-site
Direct experience supporting Space Force in cybersecurity or training capacity. * 8140 CSSP Auditor certification (CEH, CySA+, CISA, CHFI). * CMMC familiarization and certification. * Recent cyber ...
Cyber Director information
What is the difference between Cyber Director vs Cyber Security Manager?
| Aspect | Cyber Director | Cyber Security Manager |
|---|---|---|
| Credentials | Bachelor's or Master's in Cybersecurity, IT, or related fields; often requires industry certifications like CISSP, CISM | Bachelor's in Cybersecurity, IT, or related fields; often requires certifications like CISSP, CISM, or Security+ |
| Work Environment | Strategic leadership, executive meetings, policy development, overseeing multiple teams | Operational management, team oversight, implementing security measures, incident response |
| Employer & Industry Usage | Used in large organizations, government agencies, and corporations with complex security needs | Common in mid to large organizations, focusing on day-to-day security operations |
The main difference between a Cyber Director and a Cyber Security Manager lies in scope and focus. The Cyber Director typically handles strategic planning and high-level policies, while the Cyber Security Manager focuses on operational security and team management. Both roles require similar credentials and certifications, but the Cyber Director operates at a higher, more strategic level within the organization.
What are Cyber Directors?
Can you make $500,000 a year in cyber security?
Can you make $200,000 in cyber security?
How does a Cyber Director typically collaborate with other departments to ensure organization-wide cybersecurity?
What are the key skills and qualifications needed to thrive as a Cyber Director, and why are they important?
Is cybersecurity a dying field?
What does a cyber director do?
Other
Posted 5 days ago
PPL rating
6.8
Based on 46 frontline employees who took The Breakroom Quiz
44th of 52 rated energy and utility
Job description
As one of the largest investor-owned utility companies in the United States, PPL Corporation (NYSE: PPL), is committed to creating long-term, sustainable value for our 3.5 million customers, our shareowners and the communities we serve. Our high-performing regulated utilities - PPL Electric Utilities, Louisville Gas and Electric, Kentucky Utilities and Rhode Island Energy - provide an outstanding experience for our customers, consistently ranking among the best utilities in the nation. PPL's companies are also addressing challenges head-on by investing in new infrastructure and technology that is creating a smarter, more reliable and resilient energy grid. We are committed to doing our part to advance a cleaner energy future and drive innovation that enables us to achieve net-zero carbon emissions by 2050 while maintaining energy reliability and affordability for the customers and communities we serve. PPL is a positive force in the cities and towns where we do business, providing support for programs and organizations that empower the success of future generations by helping to build and maintain strong, diverse communities today.
Overview
NOTE: This is a hybrid role requiring 3 days onsite at one of our local offices: Allentown, PA; Providence, RI or Louisville, KY. #INDPPL #LI-Hybrid
The Senior Director of Cyber Operations leads PPL’s enterprise cyber defense organization, responsible for Security Operations (SOC), Threat Intelligence, Detection Engineering, Security Engineering, and Security Orchestration, Automation, and Response (SOAR). This role oversees the day-to-day protection of a critical infrastructure environment and leads the ongoing transformation to a modern, intelligence-driven and automation-first cyber program. The leader will integrate emerging capabilities such as Agentic SOC architectures, Machine-driven Cyber Platforms (MCP), Attack Surface Management (ASM), and risk-based Vulnerability Management, while aligning operations to industry frameworks including NIST Cybersecurity Framework (CSF), NIST AI Risk Management Framework (AI RMF), and NERC CIP.
Responsibilities
Enterprise Cyber Operations Leadership
- Lead and evolve PPL’s 24x7 SOC operations, including monitoring, detection, and incident response
- Direct cyber operations across:
- Security Operations Center (SOC)
- Threat Intelligence
- Detection Engineering
- Security Engineering
- SOAR / automation platforms
- Drive operational maturity aligned to NIST CSF domains (Detect, Respond, Recover)
- Maintain executive-ready visibility into cyber risk, operational performance, and incident posture
Incident Response & Crisis Management
- Lead enterprise cyber incident response and coordination, including high-impact events
- Establish and mature playbooks, escalation models, and executive communication protocols
- Partner with legal, compliance, and business leadership during cyber events
- Ensure readiness through exercises aligned to NERC CIP and resilience requirements
Threat Intelligence & Detection Engineering
- Operationalize intelligence-led defense by integrating threat intelligence into detection use cases
- Lead detection engineering program to improve fidelity, reduce noise, and expand coverage
- Advance proactive threat hunting capabilities across enterprise and critical systems
Security Engineering & Automation
- Own design, implementation, and optimization of cyber tooling and platforms
- Lead transition toward automation-first and Agentic SOC capabilities
- Deploy and scale:
- Advanced SIEM and XDR capabilities
- SOAR platforms and playbook automation
- MCP / AI-enabled cyber decision support systems
- Ensure secure adoption and governance of AI in cyber operations aligned to NIST AI RMF
Attack Surface & Vulnerability Management
- Establish integrated Attack Surface Management (ASM) across enterprise and external footprint
- Lead risk-based vulnerability management program prioritizing remediation based on threat context and business criticality
- Integrate asset, exposure, and threat data to drive measurable risk reduction
Critical Infrastructure & Regulatory Alignment
- Ensure cyber operations align with NERC CIP requirements and broader regulatory obligations
- Partner with compliance teams to support audits, evidence collection, and continuous improvement
- Coordinate with OT/IT teams to protect grid operations and critical systems
Team Leadership & Culture
- Lead a multi-disciplinary team spanning SOC, engineering, and threat intelligence functions
- Develop talent, succession pipelines, and leadership bench strength
- Foster a culture of accountability, innovation, and continuous improvement
- Drive alignment with enterprise cybersecurity strategy and “Guardians of the Grid” mission
Qualifications
Required Education:
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field; Master’s degree preferred but not required
Required Experience:
- 20+ years of experience in cybersecurity or a related field, with demonstrated experience in a senior leadership role.
- Proven experience in managing cybersecurity operations and incident response
- Strong leadership and project management skills
- Excellent communication and collaboration abilities
- In-depth knowledge of cybersecurity frameworks and best practices
- Proficiency in security tools and technologies
- Experience managing large, diverse teams and leading complex projects
- Understanding of Agile principles and methods
- Strong communication and collaboration skills with technical and non-technical stakeholders
- Ability to adapt to new technologies and methodologies
- Ability to align IT transformation initiatives with the overall business strategy
Preferred Qualifications:
- Advanced degree or relevant certifications (e.g., CISSP, CISM, would be a plus)
- Utilities industry experience
Required Education:
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field; Master’s degree preferred but not required
Required Experience:
- 20+ years of experience in cybersecurity or a related field, with demonstrated experience in a senior leadership role.
- Proven experience in managing cybersecurity operations and incident response
- Strong leadership and project management skills
- Excellent communication and collaboration abilities
- In-depth knowledge of cybersecurity frameworks and best practices
- Proficiency in security tools and technologies
- Experience managing large, diverse teams and leading complex projects
- Understanding of Agile principles and methods
- Strong communication and collaboration skills with technical and non-technical stakeholders
- Ability to adapt to new technologies and methodologies
- Ability to align IT transformation initiatives with the overall business strategy
Preferred Qualifications:
- Advanced degree or relevant certifications (e.g., CISSP, CISM, would be a plus)
- Utilities industry experience