Cyber Security Defense (Head of Department)
Posted at: 07/07/2026
Irvine, CA
Hybrid - IT - Security - Direct Placement - Job ID: 26-157942
Cyber Security Defense (Head of Department) – Direct-Hire/FTE – Irvine, CA
Title: Cyber Security Defense (Head of Department)
Location: Irvine, CA
Terms: Direct-Hire/FTE
Compensation: $190,000 – 230,000 Annual Base Salary
Work Requirements: US Citizen, GC Holders or Authorized to Work in the U.S.
Role Overview:
The Cyber Security Defense Head of Department (HOD) will lead and mature our organization's end-to-end defensive security capabilities. This senior leadership role oversees the Security Operations Center (SOC), Blue Team, Red Team, Penetration Testing, Incident Response, Threat & Vulnerability Management (TVM), Application Security, and Adversary Simulation functions. The ideal candidate is both a visionary leader and a seasoned technical expert capable of building high-performing teams, implementing modern security practices, and driving continuous improvement across all cyber defense operations functions. The key responsibilities of this role are as described below:
Strategic Leadership & Governance
- Develop and execute the Cyber Defense strategy aligned with organizational goals, customer requirements and the evolving threat landscapes.
- Establish frameworks, processes, and KPIs for SOC, Incident Response, TVM, AppSec, Red/Blue Teaming, and Adversary Simulation.
- Serve as a senior advisor to the CISO and executive leadership on cyber risks, readiness, and emerging threats.
Security Operations & Blue Team Oversight
- Oversee 24×7 SOC operations, ensuring effective monitoring, detection, and response to security events, across levels 1-3.
- Drive continuous enhancement of detection engineering, threat hunting, and security analytics.
- Implement best-in-class security tooling, automation, and operational processes.
Adversarial Security: Red Team & Penetration Testing
- Lead internal Red Team and offensive security capabilities, including penetration testing.
- Define testing methodologies, operational rules of engagement, and reporting standards.
- Translate offensive findings into actionable improvements for defensive teams and architecture.
Incident Response & Crisis Management
- Oversee the Incident Response program, ensuring rapid and effective handling of security incidents.
- Lead tabletop exercises, simulation drills, and readiness assessments.
- Facilitate and lead high/critical incident responses, when the Incident Response Manager is unavailable. Coordinate with legal, communications, and executive stakeholders during major incidents.
Threat & Vulnerability Management (TVM)
- Own the enterprise-wide vulnerability management strategy, including prioritization, remediation, and reporting.
- Drive continuous scanning, assessment, and metrics to reduce risk across infrastructure, applications, and cloud environments.
- Collaborate with engineering and operations teams to ensure timely and effective remediation.
- Facilitate and the zero-day vulnerability response process, when the Incident Response Manager is unavailable.
Application Security (AppSec)
- Lead the organization's AppSec program, including secure SDLC practices, code reviews, SAST/DAST tools, and developer enablement.
- Partner with software engineering to embed security into product and platform design.
Adversary Simulation & Cyber Readiness
- Develop and run adversary simulation programs that mimic real-world threat actors.
- Use intelligence-led scenarios to evaluate detection capabilities, response effectiveness, and organizational resilience.
Basic Qualifications:
- Experience & Leadership: 15–20 years of progressive experience across the various cyber defense disciplines (SOC, Incident Response, Red/Blue teams, or similar defensive/offensive functions.) Proven experience leading cyber defense teams. Demonstrated ability to hire, mentor, and lead high-performing technical teams.
- Education: Bachelor's degree in Cybersecurity, Information Technology, Computer Science or a related discipline.
- Technical Expertise: Strong knowledge of threat detection, incident response, adversary tactics (MITRE ATT&CK), vulnerability management, and secure software development. Excellent incident management, communication, and executive reporting skills.
- Language Skills: Proficient in English for effective communication and coordination.
- Availability: In the absence of IR team members, utilize a flexible work schedule to facilitate the security incident response process for high/critical incidents.
Preferred Qualifications:
- Education and Certifications: Masters degree in Cybersecurity, Information Technology, Computer Science or a related discipline is preferred. Industry-recognized credentials such as CISSP, CISM, OSCP/OSCE, GIAC (GSEC, GCIA, GCIH, GPEN, GXPN) are highly desirable.
- Framework Experience: Familiarity with, and prior participation with FIRST (Forum of Incident Response and Security Teams) is preferred.
- Language Skills: Bi-lingual in English and Korean language proficiency is preferred to support global coordination and communication.
Team Culture:
The team fosters a high-performance, collaborative environment centered around proactive cybersecurity defense and excellent customer service. Members are expected to lead with accountability, communicate effectively across functions, and adapt to dynamic challenges. The culture values technical excellence, continuous improvement, and global coordination, ensuring readiness and resilience in the face of evolving threats.
- Collaborative Leadership: Team members lead cross-functional service delivery efforts, coordinating with internal stakeholders, MSSPs, and external partners to drive delivery of services and maintain transparency.
- Continuous Improvement & Accountability: The team regularly adjusts the Information Security strategy and roadmap in alignment with customer needs, changing threat landscape and industry trends.
About INSPYR Solutions
Technology is our focus and quality is our commitment. As a national expert in delivering flexible technology and talent solutions, we strategically align industry and technical expertise with our clients' business objectives and cultural needs. Our solutions are tailored to each client and include a wide variety of professional services, project, and talent solutions. By always striving for excellence and focusing on the human aspect of our business, we work seamlessly with our talent and clients to match the right solutions to the right opportunities. Learn more about us at inspyrsolutions.com.
INSPYR Solutions provides Equal Employment Opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, INSPYR Solutions complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities.
Information collected and processed through your application with INSPYR Solutions (including any job applications you choose to submit) is subject to INSPYR Solutions’ Privacy Policy and INSPYR Solutions’ AI and Automated Employment Decision Tool Policy: https://www.inspyrsolutions.com/policies/. By submitting an application, you are consenting to being contacted by INSPYR Solutions through phone, email, or text.
26-157942
MORE OPPORTUNITIES
APPLY NOW
TAKE THE NEXT STEP.