Are you ready to lead enterprise-scale cybersecurity operations that protect a Fortune 500 company from advanced threats? If you bring deep expertise in threat detection, incident response, data protection and vulnerability management, we want to hear from you! We are seeking a Director of Threat Detection & Response (TDR) to join our Information Security organization in Richmond, VA but are open to a remote work arrangement.

The Director of Threat Detection & Response leads enterprise-wide security monitoring, threat detection, and incident response, with a solid focus on vulnerability management and data protection. Working closely with the CISO, Deputy CISO, IT Risk Management, and technology teams to translate threat intelligence and security telemetry into clear, actionable responses aligned with business risk and regulatory expectations.

What You Will Be Doing:

• Defining and implementing the enterprise Threat Detection & Response (TDR) strategy, aligning threat detection, incident response, data protection, and application security with business objectives, enterprise risk priorities, and regulatory requirements.
• Overseeing 24x7 security monitoring, cyber incident response, and enterprise cyber crisis management, ensuring timely detection, triage, containment, recovery, multi-functional coordination, and clear executive communications across IT, OT, cloud, identity, email, and application environments.
• Leading enterprise data protection and insider threat programs, including deployment and management of Data Loss Prevention (DLP) technologies across endpoints, cloud, email, network channels, and physical environments, while integrating insider threat intelligence into detection and response workflows.
• Providing strategic leadership for application security, embedding secure development practices, vulnerability management, and application‑layer threat detection across the full software lifecycle, including SAST, DAST, SCA, container, and API security.
• Owning and maturing core TDR programs, including CSIRT, security monitoring, threat intelligence, and threat hunting, with accountability for detection coverage, response playbooks, operational maturity, and clear communication of metrics and outcomes to business partners.
• Championing enterprise vulnerability management and secure configuration standards, including scanning, hardening baselines, risk‑based prioritization, remediation planning, and executive‑level risk reporting.
• Establishing and governing enterprise security frameworks and transformations, driving governance models, policies, and standards (e.g., NIST, PCI‑DSS, SOC), implementing Zero Trust principles, and providing oversight for IAM and PAM programs.
• Building and leading high‑performing teams, developing managers and senior technical leaders, owning TDR budget and financial planning, and partnering with risk, architecture, and engineering leaders to translate threat insights into actionable business and risk decisions.

We Want You to Have:

• 12+ years of progressive experience in information security or IT, with significant leadership experience in Threat Detection, Incident Response, Data Protection or Security Operations.
• Demonstrable ability to lead multi-disciplinary teams, influence senior collaborators, and communicate complex security issues clearly to technical and executive audiences.
• Demonstrated experience leading enterprise-scale security operations in complex, regulated environments.
• Strong knowledge of modern threat landscapes, detection engineering, incident response methodologies, and security operations frameworks.
• Experience operating across hybrid enterprise environments including cloud, identity platforms, applications, and OT.
• Bachelor’s degree preferred; (Information Security, Computer Science, Engineering, or related field).
• Relevant certifications preferred (e.g., CISSP, CISM, GIAC Incident Response, or equivalent).