Director, Cybersecurity & Risk

ERMCO-ECI-posted 3 months ago
Full-time • Senior
501-1,000 employees
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

The Director, Cybersecurity & Risk leads the organization’s cybersecurity and risk management programs, ensuring alignment with business priorities and regulatory requirements. This role manages internal and vendor cybersecurity teams, drives enterprise-wide governance and risk frameworks, and supports the development of a resilient security posture across IT and operational (OT) environments. The Director collaborates with senior leadership to integrate security into business processes, oversee risk mitigation strategies, and guide technology investments that enhance detection, prevention, and response capabilities. This role is critical to safeguarding ERMCO’s operational continuity, protecting intellectual property, and enabling secure growth across digital and physical domains.

  • Lead the implementation and continuous improvement of enterprise cybersecurity and risk programs.
  • Develop and enforce security policies, standards, and governance processes to manage organizational risk.
  • Oversee Governance, Risk, and Compliance (GRC) programs, including audits, assessments, and exception management.
  • Ensure compliance with relevant frameworks (NIST, ISO 27001, SOX, GDPR) and industry standards.
  • Conduct enterprise-wide risk assessments and threat analysis, prioritizing risks and defining mitigation strategies.
  • Build and maintain threat intelligence capabilities to anticipate emerging threats.
  • Develop incident response and crisis management plans for high-severity events.
  • Define metrics and reporting processes to keep the CIO and senior leadership informed of risk posture.
  • Guide evaluation and deployment of cybersecurity technologies (SIEM, EDR, XDR, CSPM, SOAR, DLP, IAM).
  • Support development of security architecture, including Zero Trust principles and cloud security strategies.
  • Optimize tools, processes, and teams to meet evolving threats and business requirements.
  • Ensure security architecture supports both IT and OT environments, including SCADA and industrial control systems.
  • Manage cybersecurity teams, both internal and vendor-based, ensuring delivery on program objectives.
  • Advise business units and leadership on security risks and recommendations.
  • Lead awareness and training programs to cultivate a security-conscious culture.
  • Collaborate with external partners, regulatory bodies, and industry groups to stay ahead of cybersecurity trends.
  • Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field.
  • 10–12+ years in cybersecurity or IT security, with 5+ years in leadership roles.
  • Experience managing cross-functional cybersecurity teams and vendor relationships.
  • Deep knowledge of cybersecurity frameworks, risk management, and emerging threat landscapes.
  • Strong experience with advanced security architectures, such as Zero Trust or SABSA.
  • Relevant certifications preferred (CISSP, CISM, or equivalent).
  • Excellent communication skills, with ability to translate cyber risks into business implications for executive leadership.
  • Experience in manufacturing or industrial environments a plus, including OT security and supply chain risk.
  • Master’s degree in Cybersecurity, Information Systems, or Business Administration.
  • Experience leading cybersecurity programs in mid-to-large enterprises ($500M+), preferably in manufacturing or industrial sectors.
  • Demonstrated success in building security programs that scale across multiple sites, geographies, and business units.
  • Familiarity with IT/OT convergence strategies and securing industrial control systems.
  • Experience engaging with executive leadership and boards on enterprise risk and cybersecurity strategy.
Track Jobs with Teal

Job Search Resources

Resume Builder
Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service