Head of Security – Information & Operational Technology

We’re looking for a strategic and hands-on Head of Security to lead our cybersecurity efforts across both Information Technology (IT) and Operational Technology (OT) environments. In this critical leadership role, you’ll shape and drive a comprehensive security program that protects our digital assets, intellectual property, and industrial systems.

You’ll collaborate closely with IT, Operations, and Legal teams to ensure security practices are proactive, compliant, and aligned with business goals.

What You’ll Do

• Design and execute an enterprise-wide security strategy aligned with business priorities.
• Develop and enforce security policies, controls, and standards that meet industry and regulatory requirements.
• Advise the CIO and senior leadership on cybersecurity risks, regulatory compliance, and program performance.
• Lead risk and compliance initiatives aligned with frameworks like ISO 27001 and NIST, and regulations such as GDPR, HIPAA, and CCPA.
• Oversee the security of Operational Technology (OT) and Industrial Control Systems (ICS) in manufacturing environments.
• Manage physical security access systems, including surveillance, badge controls, and digital access protocols.
• Conduct regular security risk assessments and vulnerability scans to identify and address threats.
• Direct incident response efforts—from detection through investigation, containment, and recovery.
• Perform root cause analyses on incidents and implement long-term corrective actions.
• Evaluate and manage third-party vendor security and ensure compliance in contracts and SLAs.
• Partner with Legal and Compliance to meet evolving regulatory obligations.
• Lead security awareness training programs across the organization.
• Stay ahead of emerging threats, technologies, and regulatory developments.
• Regularly report security posture, risk metrics, and incident status to executive leadership and the board.
  
  

What You’ll Bring

• Bachelor’s degree in Computer Science, Cybersecurity, or related field (Master’s and certifications like CISSP or CISM are a plus).
• 10 years of experience in information security, including at least 5 years in leadership.
• Demonstrated experience securing OT and ICS environments in industrial or manufacturing settings.
• Deep understanding of security frameworks (e.g., NIST, ISO 27001) and data privacy regulations.
• Strong background in risk management, incident response, and threat mitigation.
• Proven ability to lead cross-functional teams, communicate with senior stakeholders, and drive change.
  
  

Compensation: From $175,000 to $200,000 per year