Director of Cyber Security

We are seeking a Director of Cybersecurity Engineering and Architecture

Job Purpose:

We are seeking a highly skilled and experienced Director of Cybersecurity Engineering and Architecture to lead and oversee our cybersecurity initiatives. This role requires deep expertise in Zero Trust Network Access (ZTNA), Identity and Access Management (IAM) engineering, and the implementation of secure, scalable infrastructures. The ideal candidate will have hands-on experience designing and implementing enterprise-level cybersecurity frameworks, managing vendors, negotiating contracts, and leading Proof of Value (POV) and Proof of Concept (POC) initiatives.

Key Responsibilities:

• Evaluate current and future cybersecurity architecture for infrastructure and applications, assessing new technologies based on industry standards and frameworks.
• Lead and manage a team of cybersecurity engineers and architects, fostering a strong, collaborative, and efficient working environment.
• Provide technical guidance and direction to engineering teams, product managers, and vendors to support business objectives.
• Develop and execute strategies for cybersecurity engineering, architecture, and design, focusing on securing hybrid network infrastructures and data.
• Serve as a subject matter expert in application and infrastructure security.
• Oversee the design, implementation, and optimization of IAM solutions, ensuring secure authentication, authorization, and identity governance.
• Architect, deploy, and maintain ZTNA models for secure access control across systems, applications, and devices.
• Manage vendor relationships and evaluate third-party solutions to align with the company's cybersecurity strategy.
• Lead contract negotiations with cybersecurity vendors, ensuring favorable terms, SLAs, and compliance with security policies.
• Conduct POV initiatives for new cybersecurity tools and technologies, ensuring effectiveness and alignment with organizational needs.
• Work with contractors and third parties to implement cybersecurity technologies.
• Monitor cybersecurity technology usage and bandwidth consumption to ensure compliance with entitlements.
• Collaborate with cybersecurity and IT teams to ensure end-to-end protection and compliance with industry standards (e.g., NIST, PCI, SOX), and enhance proactive threat detection and response.
• Provide leadership in defining and evolving the organization's cybersecurity strategy to align with business objectives and technological advancements.
• Engage with stakeholders across business operations to address security concerns and shape security policies and procedures.
• Design and implement security frameworks that support on-premise and hybrid environments, ensuring robust data protection.
• Continuously assess and enhance security systems and technologies, staying up to date with cybersecurity trends, threats, and best practices.
• Report to senior leadership on cybersecurity architecture effectiveness and provide strategic recommendations to strengthen security posture.

Required Skills & Experience:

• 10 years of experience in cybersecurity engineering and architecture, with at least 5 years in a managerial or director-level role.
• Strong expertise in Identity and Access Management (IAM) engineering, including platforms such as Okta, Microsoft Entra, or others.
• Proven experience in the design, implementation, and operationalization of Zero Trust Network Access (ZTNA) frameworks.
• Extensive experience in vendor management, including evaluation, selection, and relationship management of cybersecurity vendors.
• Demonstrated success in leading contract negotiations, ensuring favorable terms and compliance with security policies.
• Hands-on experience leading Proof of Concept (POC) initiatives for cybersecurity technologies, with the ability to evaluate, test, and recommend new tools.
• Deep knowledge of network security, firewalls, encryption, VPNs, and endpoint security.
• Experience with security controls and protocols, such as Multi-Factor Authentication (MFA), Single Sign-On (SSO), and Privileged Access Management (PAM).
• Strong understanding of risk management, compliance, and governance frameworks related to cybersecurity.
• Ability to think strategically, lead large-scale projects, and provide hands-on leadership in cybersecurity architecture and implementation.
• Excellent communication and interpersonal skills, with the ability to convey technical concepts to non-technical stakeholders and senior leadership.
• Proven experience managing operational (OpEx) and capital (CapEx) budgets.
• Track record of leading cross-functional teams and building a high-performance cybersecurity engineering culture.
• Desirable: Experience with cloud security (AWS, Azure, Google Cloud) and familiarity with application security principles and practices.
• Highly Desirable: Professional certifications such as CISSP, CISM, CISA, or similar.

Education:

• Bachelor's degree in Computer Science, Information Security, or a related field. A Master’s degree is preferred.
• Relevant certifications or professional training in Cybersecurity Architecture, IAM, or ZTNA are a plus.