Cyber Operations Advisor | Remote, USA

This position will be fully remote and can be hired anywhere in the continental U.S.

The Cyber Operations Advisor (COA) is a senior technical leader and strategic partner responsible for driving measurable security outcomes, operational maturity, and client value through data-driven insights. The COA combines deep cyber operations expertise with advisory capabilities to lead complex technical engagements across multiple clients. This role focuses on metrics-driven performance, proactive risk management, and continuous improvement—defining, analyzing, and optimizing KPIs, SLAs, and service metrics to demonstrate value. Acting as a trusted advisor, the COA translates business requirements into actionable security strategies and collaborates with internal engineering and threat teams to implement corrective actions and systemic enhancements that elevate client satisfaction and operational efficiency.
The Cyber Operations Advisor believes and lives the Cyber Operations guiding principles:

• Deliver quality security outcomes

• Drive efficient and timely operations

• Actualize continual improvement and innovation

• Protect the customer

 How you'll make an impact:

• Independently lead multiple technical engagements simultaneously, ensuring timely delivery of measurable security outcomes and operational improvements across client environments

• Convert client business requirements into actionable technical strategies and capabilities that align with security objectives and deliver measurable value

• Collaborate with internal teams and clients to design strategic roadmaps and execute plans that advance operational maturity and security posture

• Drive service maturity by analyzing KPIs, SLAs, and performance trends to deliver actionable insights and continuous value improvements

• Evaluate and align security solutions and recommendations with client requirements, risk profiles, and strategic objectives to ensure optimal fit and effectiveness

• Assist in the documentation of business requirements, use cases, and ROI analyses to support informed decision-making and demonstrate value

• Act as a technical advisor during pre-sales and post-sales engagements, ensuring solution alignment and client confidence

• Provide technical expertise for proposals, contracts, and service descriptions to ensure accuracy and alignment with client needs

• Recognize and recommend cross-sell and up-sell opportunities across AFC services

• Lead or support security initiatives from planning through execution

• Apply hands-on expertise to operationalize threat intelligence across EDR, SIEM, SOAR, and related domains, improving detection and response capabilities

• Analyze patterns and anomalies to identify potential advanced threats and recommend proactive mitigation strategies

• Conduct architectural reviews and provide recommendations to strengthen security, posture and operational efficiency

• Assess and recommend custom detection logic, automation, or tool enhancements to address evolving threats and operational needs

• Assist with platform configurations, detection logic, automation improvements

• Build and develop relationships with internal and external stakeholders

• Identify and assess project risks, developing mitigation strategies to ensure successful delivery and minimize impact

• Validate project scope and deliverables to ensure alignment with client expectations and contractual obligations

• Represent Optiv in client meetings, delivering clear technical guidance and executive-level communication

• Collaborate with team members to identify issues, develop strategies, and drive continuous improvement

• Provide support for projects spanning multiple functional groups by identifying collaborative opportunities, enhancing existing deliverables, and strengthening Optiv’s value to our clients

• Ensure projects are delivered on time, within budget, and to quality standards, meeting or exceeding client expectations

What we're hiring for:

• Bachelor’s degree (or equivalent experience) and a minimum of 8 years in cybersecurity operations, with proven advisory and leadership responsibilities

• Demonstrated success in leading client-facing engagements and managing strategic security programs in professional services or consulting settings

• Advanced analytical skills with the ability to interpret complex data and translate insights into actionable security strategies

• In-depth knowledge of SOC operations, threat analysis methodologies, risk assessment practices, and incident response frameworks

• Extensive experience in Identity and Access Management, particularly with CyberArk, preferred.

• Ability to advise on identity management strategies to ensure secure and efficient access controls. Explore opportunities to expand and optimize automation in patch management processes.

• Google SecOps (SIEM/SOAR) expertise in driving maturity of the platform for detection engineering, incident response & automation efforts. Ideal candidate has worked with several SIEM/SOAR technologies and can advise on implementation best practices.

• CrowdStrike: 2-3 years hands-on experience helping manage CS platform and implementation. Ability to identify gaps in coverage, create & manage detection and prevention policies, and create appropriate reporting to highlight platform health.

• Help refine and strengthen our vulnerability management practices.

• Swimlane experience identifying automation opportunities and advising on platform integration efforts to streamline security operations.

• Hands on experience and in depth understanding of platform management processes including, but not limited to: EDR, Vuln Management, SIEM, SOAR, Identity, Network, and Perimeter tooling

• Comprehensive understanding of NIST CSF, MITRE ATT&CK, and key regulatory frameworks such as PCI, SOC 2, and ISO 27001

• Senior-level security certifications preferred, such as CISSP, CISM, or GCIH (or equivalent)

• Exceptional communication skills, including the ability to craft and deliver executive-level reports and compelling security narratives

• Proven ability to establish trust and maintain strong relationships with senior client stakeholders and cross-functional internal teams

• Expertise in cloud security across AWS, Azure, and GCP, with working knowledge of virtualization and containerization technologies

• Working knowledge of project management methodologies (Agile, Scrum, PMI) and experience driving security initiatives

• Familiarity with common Large Language Models and their impact on Security Operations

• Preferred experience in security architecture, risk mitigation, disaster recovery planning, compliance testing, data loss prevention, and network security strategies, with familiarity in ITIL, COBIT, ISO standards, PCI, and SOX

• Skilled in addressing client inquiries and resolving issues with professionalism and clarity

• Proficient in creating presentations and technical content that adhere to organizational standards and effectively communicate complex concepts

#LI-TW1

#LI-Remote

What you can expect from Optiv

• A company committed to our inclusive value through our Employee Resource Groups

• Work/life balance

• Professional training resources

• Creative problem-solving and the ability to tackle unique, complex projects

• Volunteer Opportunities. “Optiv Chips In” encourages employees to volunteer and engage with their teams and communities.

• The ability and technology necessary to productively work remotely/from home (where applicable)

EEO Statement

Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.

Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv’s selection and recruitment activities.  For additional details on how Optiv uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice. If you sign up to receive notifications of job postings, you may unsubscribe at any time.