More jobs:
Director, Cybersecurity - Cyber Defense Operations
Job in
Sacramento, Sacramento County, California, 94204, USA
Listed on 2026-07-01
Listing for:
Sutter Health
Full Time
position Listed on 2026-07-01
Job specializations:
-
IT/Tech
Cybersecurity, Information Security, Security Manager
Job Description & How to Apply Below
Organization:
SHSO-Sutter Health System Office-Valley
Position Overview:
The Director of Cyber Defense Operations leads Sutter Health's enterprise cybersecurity defense capabilities, responsible for protecting critical clinical, operational, and digital assets against evolving cyber threats. This role provides strategic and operational leadership across core defensive functions including Security Operations Center (SOC), Incident Response (IR), Threat Intelligence, Detection Engineering, Security Automation, and Adversary Simulation.
The Director is accountable for delivering 24/7 threat detection, rapid incident containment, and coordinated response across the organization, while continuously improving defensive capabilities through automation, intelligence-driven operations, and measurable risk reduction. This leader drives alignment across cybersecurity, IT, clinical engineering, legal, and business teams to ensure resilience against cyber events that could impact patient care and operations.
This role also owns the maturity and performance of the cyber defense program, establishing roadmaps, operational metrics, and executive reporting that demonstrate control effectiveness, detection coverage, and overall security posture improvement. The Director partners closely with Security Engineering, Data Protection, and GRC leaders to ensure a fully integrated, threat-informed defense strategy aligned to enterprise risk priorities.
Job Description:
EDUCATION:
Equivalent experience will be accepted in lieu of the required degree or diploma.
* Bachelor's:
Business, Cybersecurity, Computer Science, Information Technology/Security, Risk Management, or related field or equivalent education/experience
CERTIFICATION & LICENSURE
* CISSP-Certified Information Systems Security Professional within 1 Year of hire
TYPICAL
EXPERIENCE:
* 12 years recent relevant experience.
PREFERRED EXPERIENCE:
* Leadership experience overseeing Cyber Defense Operations functions including SOC, Incident Response, Threat Intelligence, Detection Engineering, and Incident Response in a large enterprise environment.
* Hands-on experience with SIEM, SOAR, EDR/XDR, threat hunting, automation, and security monitoring technologies.
* Proven ability to build and inspire high-performing cybersecurity teams through mentorship, Capture the Flag (CTF) events, attack demonstrations, tabletop exercises, and continuous technical development.
* Strong communication and executive presence with experience delivering cybersecurity metrics, threat intelligence reporting, operational dashboards, and risk updates to technical and business stakeholders.
* Experience defending healthcare environments and protecting critical systems, PHI, and clinical operations against modern cybersecurity threats including ransomware and advanced adversary activity.
SKILLS AND KNOWLEDGE:
* Solid expertise in formal/structured information security risk assessment methodology, including understanding the implementation challenges and advantages across all levels of hardware platforms and software applications.
* In-depth knowledge of information security technologies, infrastructures, methodologies, frameworks, techniques, security incident and event monitoring (SIEM) solutions (e.g., Splunk Enterprise Security, IBM QRadar, HP Arc Sight, etc.), compliance reporting, and the development and implementation of these concepts to manage risk within a clinical environment.
* Extensive knowledge and understanding of current and emerging digital security trends, risks, threats, countermeasures, vulnerabilities, and mitigations ranging across the technologies required for securing applications, data centers, networks, and third-party access to data, applications, and resources.
* Broad working knowledge of health care operations and their related data/software/hardware requirements including, but not limited to, hospitals, clinics, medical offices, and their information technology needs.
* Detailed knowledge of state and federal information security, cyber security, compliance and privacy-related regulatory requirements, including a…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×