Advance Auto Parts
Director of Security Operations
Advance Auto Parts, Raleigh, North Carolina, United States, 27601
Advance Auto Parts is seeking a seasoned and strategic Director of Security Operations to lead the operational arm of our Information Security program. This role is responsible for overseeing day‑to‑day execution of security operations, including threat detection, incident response, vulnerability management, and security monitoring across the enterprise. The position is based at our corporate headquarters in Raleigh, North Carolina, with a 4‑day in‑office, 1‑day remote schedule.
Key Responsibilities
Lead and manage the Security Operations Center (SOC), ensuring 24/7 monitoring, threat detection, and incident response capabilities.
Develop and execute operational security processes, playbooks, and escalation procedures.
Direct the incident response program, including investigation, containment, remediation, and post‑incident reviews.
Collaborate with internal teams and external partners to manage and mitigate security threats.
Own the vulnerability management lifecycle, including scanning, prioritization, remediation tracking, and reporting.
Partner with infrastructure and application teams to ensure timely resolution of security findings.
Own the Identity & Access Management (IAM) strategy and roadmap, including identity lifecycle management, access provisioning, and de‑provisioning.
Define and enforce access scopes using RBAC and ABAC models to ensure least privilege and separation of duties.
Oversee IAM platforms (e.g., Okta, Azure AD, SailPoint) and ensure integration with enterprise systems and cloud environments.
Lead periodic access reviews, certification campaigns, and compliance reporting.
Implement and optimize security monitoring tools and SIEM platforms to improve visibility and response times.
Develop metrics and dashboards to measure operational effectiveness and risk posture.
Build and mentor a high‑performing security operations team.
Foster collaboration across IT, compliance, legal, and business units to align security operations with enterprise goals.
Stay current with emerging threats, technologies, and best practices.
Drive innovation and automation in security operations to improve efficiency and scalability.
Qualifications
Bachelor’s or master’s degree in Computer Science, Information Security, or related field.
10+ years of experience in cybersecurity, with 5+ years in a leadership role focused on security operations.
Proven experience managing SOCs, incident response, vulnerability management programs, and IAM programs.
Strong understanding of SIEM, EDR, threat intelligence, forensic tools, IAM platforms, and access governance models.
Skills & Competencies
Excellent communication and leadership skills.
Strong analytical and decision‑making abilities.
Deep technical knowledge of security operations and IAM tools.
Ability to manage high‑pressure situations and complex incidents.
Experience in regulated environments and compliance frameworks.
We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, basis of disability, or any other federal, state, or local protected class.
#J-18808-Ljbffr
Key Responsibilities
Lead and manage the Security Operations Center (SOC), ensuring 24/7 monitoring, threat detection, and incident response capabilities.
Develop and execute operational security processes, playbooks, and escalation procedures.
Direct the incident response program, including investigation, containment, remediation, and post‑incident reviews.
Collaborate with internal teams and external partners to manage and mitigate security threats.
Own the vulnerability management lifecycle, including scanning, prioritization, remediation tracking, and reporting.
Partner with infrastructure and application teams to ensure timely resolution of security findings.
Own the Identity & Access Management (IAM) strategy and roadmap, including identity lifecycle management, access provisioning, and de‑provisioning.
Define and enforce access scopes using RBAC and ABAC models to ensure least privilege and separation of duties.
Oversee IAM platforms (e.g., Okta, Azure AD, SailPoint) and ensure integration with enterprise systems and cloud environments.
Lead periodic access reviews, certification campaigns, and compliance reporting.
Implement and optimize security monitoring tools and SIEM platforms to improve visibility and response times.
Develop metrics and dashboards to measure operational effectiveness and risk posture.
Build and mentor a high‑performing security operations team.
Foster collaboration across IT, compliance, legal, and business units to align security operations with enterprise goals.
Stay current with emerging threats, technologies, and best practices.
Drive innovation and automation in security operations to improve efficiency and scalability.
Qualifications
Bachelor’s or master’s degree in Computer Science, Information Security, or related field.
10+ years of experience in cybersecurity, with 5+ years in a leadership role focused on security operations.
Proven experience managing SOCs, incident response, vulnerability management programs, and IAM programs.
Strong understanding of SIEM, EDR, threat intelligence, forensic tools, IAM platforms, and access governance models.
Skills & Competencies
Excellent communication and leadership skills.
Strong analytical and decision‑making abilities.
Deep technical knowledge of security operations and IAM tools.
Ability to manage high‑pressure situations and complex incidents.
Experience in regulated environments and compliance frameworks.
We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, basis of disability, or any other federal, state, or local protected class.
#J-18808-Ljbffr