Director, Cybersecurity

About The Position

Requirements

• Bachelor’s degree
• CISSP, CISM, CISA, or equivalent advanced security certification
• 12+ years of progressive experience in information security
• 5+ years of leadership experience managing teams and vendors
• Knowledge of emerging technologies, including Artificial Intelligence
• Deep understanding of cybersecurity frameworks (NIST, CIS Controls) and risk management methodologies
• Experience with SOC operations, IAM platforms, cloud security, and endpoint protection technologies
• Strong understanding of identity governance, privileged access management, and authentication technologies
• Experience developing security governance frameworks for AI/ML systems and third-party AI tools
• Proven ability to build high-performing teams and foster a culture of accountability, transparency, and continuous improvement
• Excellent communication skills with the ability to translate technical risks into business context
• Demonstrated problem-solving ability with strong communication, interpersonal, and organizational skills, and a high level of initiative.
• Remaining in a normal seated or standing position for extended periods of time; reaching and grasping by extending hand(s) or arm(s); dexterity to manipulate objects with fingers, for example using a keyboard; communication skills using the spoken word; ability to see and hear within normal parameters; ability to move about workspace.
• The position requires mobility, including the ability to move materials weighing up to several pounds (such as a laptop computer or tablet).

Responsibilities

• Develop, implement, and continuously evolve a comprehensive cybersecurity strategy aligned with organizational priorities and risk appetite.
• Serve as senior advisor to executive leadership on cybersecurity risk, posture, and emerging threats.
• In coordination with the EverydayAI team, lead development of governance frameworks and security practices for emerging technologies, including artificial intelligence and machine learning systems.
• Lead and develop cybersecurity and IAM teams across two locations, setting priorities, guiding technical direction, and fostering professional growth.
• Oversee enterprise security operations, including monitoring, vulnerability management, threat intelligence, and incident response.
• Direct and optimize relationships with external SOC and managed security partners to ensure effective 24/7 coverage.
• Partner with Risk and Compliance, the Office of General Counsel and other stakeholders to develop and enforce security policies, standards, and procedures; lead internal assessments and coordinate external audits.
• Establish and communicate security metrics to senior leadership that reflect performance, maturity, and risk reduction.
• Embed security principles into infrastructure, applications, and business systems design, including secure architecture, network segmentation, and identity and access management best practices.
• Provide strategic guidance and leadership for a team responsible for internal security/access assessments, coordinating external audits, and supporting regulatory and compliance initiatives across financial systems and other technology areas.
• Lead enterprise incident response and recovery efforts, and develop and test disaster recovery and business continuity plans from a security perspective.
• Oversee cybersecurity budgeting, including operational expenses, service agreements, equipment, and special projects.

Benefits

• comprehensive healthcare
• generous retirement contributions
• paid leave
• additional programs that support well-being and professional development