Professional security certification such as CISSP, CISM, GIAC (e.g., GCIH/GCIA/GCFA), or equivalent
Strong knowledge of security operations frameworks and practices (e.g., NIST CSF, NIST 800-61, MITRE ATT&CK) and experience translating them into operational processes
Experience designing and maturing SOC capabilities, including detection engineering, threat hunting, automation (SOAR), and case management practices
Proven ability to establish metrics, service levels, and governance to improve operational performance and reduce risk in a complex, fast-paced environment
Strong technical understanding of modern security controls and platforms (e.g., SIEM, EDR, SOAR, network security, cloud security logging) sufficient to guide strategy and investment decisions
Demonstrated experience influencing senior leaders, leading through ambiguity, and partnering across technology, risk, and business teams to drive security outcomes
Experience managing budgets and vendors, building multi-year roadmaps, and delivering measurable outcomes through program and portfolio management
Proficient in Microsoft Office Suite of programs and comfortable communicating operational risk and performance through written narratives and data-driven presentations
Values a diverse and inclusive work environment
We will review applications for this role on an ongoing basis and encourage all interested candidates to apply at their earliest convenience.
Compensation Range
$171,000.00 - $297,900.00
The base pay range displayed on the job posting reflects the minimum and maximum base pay for this specific location. Your individual base pay within
Benefits
Flexible schedule
Additional Information
C.H Robinson is seeking a Director of Security Operations who will lead the teams and capabilities responsible for monitoring, detecting, responding to, and recovering from cybersecurity threats across the enterprise. This role sets the security operations strategy and operating model, ensures 24x7 operational readiness, and drives measurable improvements across incident response, threat detection engineering, security monitoring, vulnerability response coordination, and security automation. The Director partners with technology and business leaders to reduce risk, strengthen resilience, and ensure consistent execution through governance, metrics, and continuous improvement.
DUTIES AND RESPONSIBILITIES
The duties and responsibilities of this position consist of, but are not limited to, the following:
Establish and execute the enterprise security operations strategy, including the security monitoring and incident response operating model, service objectives, escalation paths, and continuous improvement roadmap
Direct day-to-day Security Operations Center (SOC) functions, ensuring effective triage, investigation, containment, eradication, and recovery for security events and incidents
Lead and mature the incident response program, including playbooks, tabletop exercises, post-incident reviews, and reporting to executive leadership; coordinate with Legal, Privacy, HR, Communications, and business stakeholders as needed
Own security detection strategy and coverage, partnering with engineering teams to enhance logging, SIEM content, alert fidelity, use-case development, and threat hunting capabilities
Define and manage key performance indicators (KPIs) and service level objectives (SLOs) for security operations (e.g., MTTD/MTTR, containment time, alert quality), and provide dashboards and executive-ready reporting
Oversee security tooling and operational capabilities (e.g., SIEM, SOAR, EDR, case management), including vendor management, budget planning, lifecycle management, and operational resiliency
Provide leadership for operational vulnerability response by partnering with IT and application teams to prioritize remediation, track risk acceptance, and validate closure of critical findings
Build and maintain strong partnerships across the enterprise to embed security operations requirements into platforms and processes; serve as an escalation point for high-impact events and customer/security assurance needs
Develop, mentor, and retain a high-performing security operations organization, including hiring strategy, succession planning, performance management, and an inclusive culture of accountability and learning
Required Qualifications:
7+ years of progressive experience in cybersecurity, including security operations, incident response, and security monitoring
5+ years of people leadership experience, including managing senior employees and leading cross-functional, geographically distributed teams
Demonstrated ability to lead executive-level communications during major incidents, including clear decision framing, risk articulation, and stakeholder coordination
Bachelor's degree from an accredited college or university
Ability to support a flexible work schedule and availability during major incidents, or as needed; ability to travel up to 10% (domestically and internationally)
Chrobinson · Eden Prairie, MN United States Of America