Ensign is hiring !
Role Overview
The Cybersecurity Technical Director provides strategic and technical leadership across cybersecurity operations, architecture, and innovation initiatives. This role is responsible for shaping security strategy, driving advanced threat detection and response capabilities, and translating emerging technologies—particularly AI and automation—into practical, risk-balanced outcomes for the business and its Tier-1 clients.
The role bridges deep technical expertise with executive-level advisory, ensuring cybersecurity solutions are scalable, cost-effective, and aligned with business objectives.
Key Responsibilities
Technical Leadership & Strategy
- Define and drive the overall cybersecurity technical strategy across SOC, MDR, DFIR, cloud, and enterprise security domains.
- Provide architectural oversight and technical governance for security platforms, tooling, and integrations.
- Act as a senior technical authority for complex security decisions, escalations, and high-severity incidents.
AI, Automation & Innovation
- Lead and guide AI and automation initiatives currently in-flight across cybersecurity operations.
- Bridge business needs with technical execution by translating AI opportunities into clear priorities, realistic roadmaps, and measurable outcomes.
- Advise Tier-1 clients on the practical and responsible adoption of AI in cybersecurity, balancing innovation with risk, operational feasibility, and cost considerations.
- Ensure AI-driven solutions enhance detection fidelity, response efficiency, and analyst effectiveness without introducing unmanaged risk.
Client Advisory & Stakeholder Engagement
- Serve as a trusted technical advisor to Tier-1 clients, senior leadership, and key stakeholders.
- Present cybersecurity strategies, roadmaps, and risk assessments to executive and non-technical audiences.
- Support pre-sales, solution design, and technical assurance for large or strategic engagements.
Threat Detection & Response Oversight
- Provide oversight and direction for SOC, MDR, and threat-hunting capabilities.
- Ensure detection engineering, threat hunting, and incident response practices are aligned with modern adversary techniques.
- Champion the use of frameworks such as MITRE ATT&CK to guide detection coverage and capability maturity.
Governance, Risk & Continuous Improvement
- Establish technical standards, best practices, and review mechanisms across security teams.
- Identify capability gaps and drive continuous improvement across people, processes, and technology.
- Ensure solutions meet regulatory, compliance, and operational resilience requirements.
Requirements
Experience & Background
- 10+ years of experience in cybersecurity, with senior leadership or director-level responsibilities.
- Proven track record in SOC, MDR, threat hunting, DFIR, or security architecture roles.
- Demonstrated experience leading complex technical programs and advising enterprise or Tier-1 clients.
Technical Expertise
- Strong knowledge of modern security platforms (SIEM, EDR, NDR, SOAR, cloud security).
- Deep understanding of attacker tradecraft, advanced threats, and detection engineering.
- Practical experience applying AI, automation, and data-driven approaches within cybersecurity operations.
- Familiarity with MITRE ATT&CK, cyber kill chains, and security maturity frameworks.
Leadership & Communication
- Ability to bridge technical depth with strategic and commercial considerations.
- Strong stakeholder management skills, with the ability to influence at executive level.
- Clear communicator able to articulate complex concepts, risks, and trade-offs.
Preferred Qualifications
- Relevant certifications (e.g. CISSP, CISM, GIAC, OSCP, cloud security certifications).
- Experience in regulated industries or government environments is an advantage.