Director, IT Security Operations
Bausch Health Companies Inc.
4 hours ago
Remote friendly (Bridgewater, NJ)
United States
IT
Key Responsibilities
- Lead the 24x7x365 global Security Operations Center (SOC), including operating models, staffing, and service delivery (internal staff and MSPs)
- Set SOC governance, SLAs, metrics, and escalation paths
- Improve monitoring, alerting, and response across endpoints, networks, identity, SaaS, and cloud; ensure consistent execution from triage through post-incident review
- Own SIEM and detection engineering strategy (log onboarding, correlation, tuning) and integration with incident response workflows
- Serve as escalation lead for major security incidents (intrusions, ransomware, malware, data exposure, DDoS, insider risk, third-party events)
- Coordinate incident response with IT, Legal, HR, Privacy, Compliance, Communications, and external partners
- Own and mature the Incident Response Program (policies, playbooks, exercises), including documentation, root-cause analysis, and corrective actions to closure
- Own the enterprise vulnerability management program (governance, risk-based prioritization, remediation tracking, reporting)
- Oversee vulnerability discovery across infrastructure, endpoints, applications, cloud, and third parties; drive timely remediation based on risk and exploitability
- Extend monitoring/IR/vulnerability practices to AI-enabled platforms; partner to ensure AI events (misuse, data leakage, model risks) are detectable and operationally manageable
- Support audit readiness, regulatory compliance, and incident reporting with GRC, Privacy, Compliance, and Internal Audit
- Align operations to NIST, ISO/IEC 27001/27002, ISO/IEC 42001, and CIS Controls
- Deliver executive reporting and mentor security operations leaders
Qualifications & Experience
- 10+ years in IT with 5+ years in security operations, including leading teams and MSPs
- Bachelorβs degree in IT, Computer Science, or Security (required)
- Strong grasp of threat landscape, incident investigation/root-cause analysis, and executive communication
- Working knowledge of NIST, ISO/IEC, and CIS Controls (or similar)
- Experience with cloud, SaaS, and emerging technologies, including AI-enabled platforms
- Certifications (strongly preferred): CISSP, CISM, CEH, CompTIA Security+
Benefits (as stated)
- Medical (includes Prescription Drug), Dental, Vision; Flexible Spending Accounts; 401(k) with matching; 3 weeks paid time off plus paid sick time; stock purchase plan; tuition reimbursement; parental leave; short- and long-term disability; life and accidental death & dismemberment insurance; 12 paid holidays; employee referral bonuses and employee discounts
Hybrid work
- Bridgewater, NJ office (Tuesday, Wednesday, Thursday in office)
- Lead the 24x7x365 global Security Operations Center (SOC), including operating models, staffing, and service delivery (internal staff and MSPs)
- Set SOC governance, SLAs, metrics, and escalation paths
- Improve monitoring, alerting, and response across endpoints, networks, identity, SaaS, and cloud; ensure consistent execution from triage through post-incident review
- Own SIEM and detection engineering strategy (log onboarding, correlation, tuning) and integration with incident response workflows
- Serve as escalation lead for major security incidents (intrusions, ransomware, malware, data exposure, DDoS, insider risk, third-party events)
- Coordinate incident response with IT, Legal, HR, Privacy, Compliance, Communications, and external partners
- Own and mature the Incident Response Program (policies, playbooks, exercises), including documentation, root-cause analysis, and corrective actions to closure
- Own the enterprise vulnerability management program (governance, risk-based prioritization, remediation tracking, reporting)
- Oversee vulnerability discovery across infrastructure, endpoints, applications, cloud, and third parties; drive timely remediation based on risk and exploitability
- Extend monitoring/IR/vulnerability practices to AI-enabled platforms; partner to ensure AI events (misuse, data leakage, model risks) are detectable and operationally manageable
- Support audit readiness, regulatory compliance, and incident reporting with GRC, Privacy, Compliance, and Internal Audit
- Align operations to NIST, ISO/IEC 27001/27002, ISO/IEC 42001, and CIS Controls
- Deliver executive reporting and mentor security operations leaders
Qualifications & Experience
- 10+ years in IT with 5+ years in security operations, including leading teams and MSPs
- Bachelorβs degree in IT, Computer Science, or Security (required)
- Strong grasp of threat landscape, incident investigation/root-cause analysis, and executive communication
- Working knowledge of NIST, ISO/IEC, and CIS Controls (or similar)
- Experience with cloud, SaaS, and emerging technologies, including AI-enabled platforms
- Certifications (strongly preferred): CISSP, CISM, CEH, CompTIA Security+
Benefits (as stated)
- Medical (includes Prescription Drug), Dental, Vision; Flexible Spending Accounts; 401(k) with matching; 3 weeks paid time off plus paid sick time; stock purchase plan; tuition reimbursement; parental leave; short- and long-term disability; life and accidental death & dismemberment insurance; 12 paid holidays; employee referral bonuses and employee discounts
Hybrid work
- Bridgewater, NJ office (Tuesday, Wednesday, Thursday in office)