Salary: $170,000 - 240,000 20% Bonus

Primary Responsibilities:

• Develop and sustain high-performing teams through direct and indirect leadership.
• Drive and execute security projects proactively, demonstrating a self-driven approach to project execution.
• Lead the client's Information Security Team in the enhancement of incident response processes, strategic planning, and driving a culture of cybersecurity across the business.
• Support risk management initiatives by working closely with stakeholders across business functions to assess needs and apply risk management treatments accordingly.
• Act as a technical authority to provide security architecture guidance to teams across the business.
• Support and mature client’s Security Operations program by selecting the optimal combination of technologies required to improve monitoring, prevention, detection, mitigation, and automation capabilities.
• Establish and mature Governance Risk & Compliance (GRC) and Identity & Access Management (IAM) capabilities and processes.
• Manage and support regulatory compliance programs by guiding compliance initiatives, advising stakeholders, and staying abreast of emerging trends and changes to regulations.
• Lead team in responding promptly to security incidents and provide thorough post-event analysis.
• Mature risk and vulnerability management programs by driving security and risk assessments, vulnerability analysis, and prioritizing remediation efforts.
• Strengthen OT security program by leading the design and implementation efforts for client’s OT security strategy.
• Provide technical leadership and oversight to organizational technology and security projects.
• Drive agile approach in managing security team workload, projects, and upgrades.
• Manage and mentor the Information Security team focusing on vertical and horizontal development.
• Stay knowledgeable on topics in cybersecurity by researching emerging trends, technologies, threats, and vulnerabilities.

Must Haves:

• 10 years of experience in information security supporting risk management initiatives across security pillars including operations, GRC, IAM, awareness, and architecture.
• 5 years of management experience leading information security programs including security operations and engineering & architecture
• 2 years of experience supporting data privacy programs globally
• Experience leading organizations through the ISO 27001 or SOC certification process
• Experience securing OT environments
• Experience building and maturing IAM programs
• Experience formally presenting to executive leadership
• Extreme ownership of assigned responsibilities and accountable for driving the security program’s success
• Possess a learning mindset; proactive staying current with new technologies, risks, and trends
• Extensive experience leading teams in support of securing client and server operating systems (Windows/Linux)
• Deep experience securing and monitoring multi-cloud environments; AWS / Entra
• Expert working knowledge of current IT risks coupled with experience implementing effective and appropriate risk management treatments
• Excellent written and communication skills; experience with public speaking / reporting a plus
• Experience working in a security operations environment performing security monitoring and incident response activities
• Advanced understanding of core IT protocols and security architecture fundamentals
• Ability to interact with people at all levels of the business, with excellent written and verbal communication skills

Plusses:

• Master's degree in computer science, Information Security, or related field (MBA preferred)
• Experience securing merger and acquisition (M&A) integrations and divestitures
• Industry certifications (CISSP, CISM, GCIH, GMON, GPEN, OSCP, AWS)
• Experience securing cloud infrastructure (AWS/Azure)
• Agile or scrum experience
• Exposure to industry cybersecurity frameworks (ATT&CK, NIST CSF, Cyber Kill Chain, etc.)
• Experience supporting regulatory compliance requirements such as GDPR, DF

Job Description:

• Insight Global is currently seeking a Director of Information Security to join the Information Security Team for one of our large Industrial Technology clients. The ideal candidate will be an information security expert with extensive technical experience building and optimizing information security programs. In this role, the Director of Information Security will lead a team in building and maturing security processes, capabilities, and tooling across a global, highly matrixed environment. Reporting directly to the CISO, the successful candidate will collaborate closely with other IT teams throughout the organization to champion the adoption of the client's security standards and architecture principles. Additionally, the role requires advancing information security governance processes, implementing new security solutions, and fostering continuous improvement initiatives to fortify the client's information security program.