Practice Leader, Cybersecurity Solutions
Ocient · United States · 1 wk ago
RemoteRemoteInformation Technology$300k/yrFull-time
Responsibilities
- Bridge Product/Engineering and Go-to-Market.
- Work daily with Product, Engineering, and Sales — turning market and customer signal into product direction, and product capability into a story Sales can sell with confidence.
- Bring the ecosystem knowledge that grounds every decision.
- Be the person in the room who knows the SIEM/EDR/SOAR/XDR landscape, the telemetry types, the log formats and schemas, and where the integration pitfalls actually are — and make sure the roadmap reflects how the ecosystem really works.
- Design the ingestion architecture, alongside Engineering.
- Work through how telemetry from the platforms and formats our target industries run gets into Ocient cleanly and at scale, without asking customers to rip out what they already have.
- Build the detection and analytics logic, hands-on.
- Get into the SQL and the schemas with the team to build what only Ocient's engine can unlock — real-time detections pushed to downstream tools, and deep tactical, operational, and strategic analytics nobody else can run.
- Make the work reusable.
- Build so what's developed for one engagement generalizes across every industry we're targeting, not just the one in front of you.
- Get in front of customers and partners.
- Lead technical evaluations and proof-of-value pilots directly, as the senior technical voice working alongside Sales.
- Shape the integration and partner strategy.
- Help decide how Ocient plugs into the tools security teams already run, and where partnerships make more sense than building everything ourselves.
- Help build the practice.
- Shape this practice's roadmap and its future hires as we grow the team.
Qualifications
- 10+ years in cybersecurity as an established industry veteran, with deep hands-on technical grounding (network security, SIEM/SOC operations, detection engineering) plus product, architecture, or solutions leadership experience.
- Comprehensive knowledge of the cybersecurity vendor and platform ecosystem — SIEM/SOAR, EDR/XDR platforms, and the log formats, schemas, and standards those platforms use.
- Deep understanding of core security telemetry types (network flow data, DNS, authentication/identity, endpoint, cloud audit, OT/ICS) and how they move through and between systems — including common integration pitfalls.
- Working fluency in SQL and comfort operating at the data layer — able to work directly alongside engineers on schema design, ingestion pipelines, and query performance.
- Proven ability to work as the connective tissue between technical and commercial teams — equally credible in the architecture with Engineering and in front of a customer with Sales.
- Experience across regulated, data-intensive industries such as financial services, telecommunications, energy/critical infrastructure, healthcare, or government/defense.
- Familiarity with the MITRE ATT&CK framework and behavioral/statistical detection methodology.
- Strong communicator, able to move fluidly between deep technical detail and executive-level narrative.
- Experience building a new practice, product line, or solutions function inside a larger organization is a strong plus.
- An Exceptional Candidate Will Have Experience with agentic AI / LLM-based tooling applied to security operations or threat hunting.
- Familiarity with hyperscale or MPP data warehouse platforms.
- Experience as a solutions architect, forward-deployed engineer, or field CTO at a security or data infrastructure company.
- Experience with compliance-driven data retention requirements across regulated industries.