Cyber Operations Advisor | Remote, USA
This position will be fully remote and can be hired anywhere in the continental U.S.
The Cyber Operations Advisor (COA) is a senior technical leader and strategic partner responsible for driving measurable security outcomes, operational maturity, and client value through data-driven insights. The COA combines deep cyber operations expertise with advisory capabilities to lead complex technical engagements across multiple clients. This role focuses on metrics-driven performance, proactive risk management, and continuous improvement—defining, analyzing, and optimizing KPIs, SLAs, and service metrics to demonstrate value.
Acting as a trusted advisor, the COA translates business requirements into actionable security strategies and collaborates with internal engineering and threat teams to implement corrective actions and systemic enhancements that elevate client satisfaction and operational efficiency.
The Cyber Operations Advisor believes and lives the Cyber Operations guiding principles:
Deliver quality security outcomes
Drive efficient and timely operations
Actualize continual improvement and innovation
Protect the customer
How you'll make an impact:
Independently lead multiple technical engagements simultaneously, ensuring timely delivery of measurable security outcomes and operational improvements across client environments
Convert client business requirements into actionable technical strategies and capabilities that align with security objectives and deliver measurable value
Collaborate with internal teams and clients to design strategic roadmaps and execute plans that advance operational maturity and security posture
Drive service maturity by analyzing KPIs, SLAs, and performance trends to deliver actionable insights and continuous value improvements
Evaluate and align security solutions and recommendations with client requirements, risk profiles, and strategic objectives to ensure optimal fit and effectiveness
Assist in the documentation of business requirements, use cases, and ROI analyses to support informed decision-making and demonstrate value
Act as a technical advisor during pre-sales and post-sales engagements, ensuring solution alignment and client confidence
Provide technical expertise for proposals, contracts, and service descriptions to ensure accuracy and alignment with client needs
Recognize and recommend cross-sell and up-sell opportunities across AFC services
Lead or support security initiatives from planning through execution
Apply hands-on expertise to operationalize threat intelligence across EDR, SIEM, SOAR, and related domains, improving detection and response capabilities
Analyze patterns and anomalies to identify potential advanced threats and recommend proactive mitigation strategies
Conduct architectural reviews and provide recommendations to strengthen security, posture and operational efficiency
Assess and recommend custom detection logic, automation, or tool enhancements to address evolving threats and operational needs
Assist with platform configurations, detection logic, automation improvements
Build and develop relationships with internal and external stakeholders
Identify and assess project risks, developing mitigation strategies to ensure successful delivery and minimize impact
Validate project scope and deliverables to ensure alignment with client expectations and contractual obligations
Represent Optiv in client meetings, delivering clear technical guidance and executive-level communication
Collaborate with team members to identify issues, develop strategies, and drive continuous improvement
Provide support for projects spanning multiple functional groups by identifying collaborative opportunities, enhancing existing deliverables, and strengthening Optiv’s value to our clients
Ensure projects are delivered on time, within budget, and to quality standards, meeting or exceeding client expectations
What we're hiring for:
Bachelor’s degree (or equivalent experience) and a minimum of 8 years in cybersecurity operations, with proven advisory and leadership responsibilities
Demonstrated success in leading client-facing engagements and managing strategic security programs in professional services or consulting settings
Advanced analytical skills with the ability to interpret complex data and translate insights into actionable security strategies
In-depth knowledge of SOC operations, threat analysis methodologies, risk assessment practices, and incident response frameworks
Google SecOps (SIEM/SOAR) expertise in driving maturity of the platform for detection engineering, incident response & automation efforts. Ideal candidate has worked with several SIEM/SOAR technologies and can advise on implementation best practices.
CrowdStrike: 2-3 years hands-on experience helping manage CS platform and implementation. Ability to identify gaps in coverage, create & manage detection and prevention policies, and create appropriate reporting to highlight platform health.
Help refine and strengthen our vulnerability management practices.
Advise on identity management strategies to ensure secure and efficient access controls. Explore opportunities to expand and optimize automation in patch management processes.
Swimlane experience identifying automation opportunities and advising on platform integration efforts to streamline security operations.
Hands on experience and in depth understanding of platform management processes including, but not limited to: EDR, Vuln Management, SIEM, SOAR, Identity, Network, and Perimeter tooling
Comprehensive understanding of NIST CSF, MITRE ATT&CK, and key regulatory frameworks such as PCI, SOC 2, and ISO 27001
Senior-level security certifications preferred, such as CISSP, CISM, or GCIH (or equivalent)
Exceptional communication skills, including the ability to craft and deliver executive-level reports and compelling security narratives
Proven ability to establish trust and maintain strong relationships with senior client stakeholders and cross-functional internal teams
Expertise in cloud security across AWS, Azure, and GCP, with working knowledge of virtualization and containerization technologies
Working knowledge of project management methodologies (Agile, Scrum, PMI) and experience driving security initiatives
Familiarity with common Large Language Models and their impact on Security Operations
Preferred experience in security architecture, risk mitigation, disaster recovery planning, compliance testing, data loss prevention, and network security strategies, with familiarity in ITIL, COBIT, ISO standards, PCI, and SOX
Skilled in addressing client inquiries and resolving issues with professionalism and clarity
Proficient in creating presentations and technical content that adhere to organizational standards and effectively communicate complex concepts
#LI-TW1
#LI-Remote
What you can expect from Optiv
A company committed to our inclusive value through our Employee Resource Groups
Work/life balance
Professional training resources
Creative problem-solving and the ability to tackle unique, complex projects
Volunteer Opportunities. “Optiv Chips In” encourages employees to volunteer and engage with their teams and communities.
The ability and technology necessary to productively work remotely/from home (where applicable)
EEO Statement
Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.
Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv’s selection and recruitment activities. For additional details on how Optiv uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice. If you sign up to receive notifications of job postings, you may unsubscribe at any time.