Senior Director, Information Security

Description

Position Summary: The Senior Director, Information Security is responsible for leading, directing, and managing all aspects of the organization's information security program. This role ensures the confidentiality, integrity, and availability of information assets and aligns security initiatives with the strategic goals of the organization. The Senior Director collaborates with senior leadership, IT teams, business units, and external partners to mitigate risks and implement effective cybersecurity practices.

As a Senior Director, Information Security you will:

• Develop, implement, and maintain a comprehensive information security strategy aligned with organizational objectives.
• Lead and manage the information security team, fostering professional growth and driving high-performance standards.
• Oversee vulnerability assessments, penetration testing, and incident response activities.
• Lead cybersecurity incident containment and resolution, if applicable.
• Partner with Risk, Compliance and Governance Director to monitor compliance with regulatory and industry-specific requirements (e.g., HIPAA, HITRUST, SOC2, CIS, NIST).
• Manage security-related budgets, vendor relationships, and contracts with external cybersecurity providers.
• Collaborate closely with IT infrastructure, application development, and operations teams to integrate security measures into the IT lifecycle.
• Drive security awareness with the Risk & Governance group and training programs to educate employees and stakeholders on cybersecurity best practices.
• Regularly report security status, risks, and mitigation strategies to the CTO.

Requirements

 We are excited about you if you have these things: 

• Bachelor’s degree in information technology, Computer Science, Cybersecurity, or related fields; or comparable IT experience (10+ years).
• Minimum of 10 years of progressive experience in information security, with at least 5 years in a senior leadership role.
• Extensive experience in cybersecurity frameworks, tools, and technologies (e.g., NIST, CIS, etc.).
• Proven experience in incident management, threat intelligence, risk assessment, and vulnerability management.
• Strong understanding of network security, cloud security, identity and access management (IAM), and data protection      methodologies.
• Excellent communication, leadership, and strategic thinking skills with demonstrated ability to influence and partner across      the organization.

Preferred Skills:

• Minimum certifications required Sec+, CySA+, ISC2 CC.
• CISSP must be in progress. 
• Experience with cybersecurity operations in Azure environments.

#Director

#Li-Hybrid