Director, Data & Cloud Security

Zayo Group

About The Position

Zayo provides mission-critical bandwidth to the world’s most impactful companies, fueling the innovations that are transforming our society. Zayo’s 141,000-mile network in North America and Europe includes extensive metro connectivity to thousands of buildings and data centers. Zayo’s communications infrastructure solutions include dark fiber, private data networks, wavelengths, Ethernet, and dedicated Internet access. Zayo serves wireless and wireline carriers, media, tech, content, finance, healthcare and other large enterprises. We are seeking a strategic and experienced Director of Data Security & Cloud Security to lead enterprise data protection, cloud security, and API security initiatives. This role is responsible for safeguarding sensitive data, securing cloud platforms, and protecting APIs that enable access to critical systems and services. The ideal candidate combines deep technical expertise with strong leadership skills and partners closely with engineering, data, and infrastructure teams to enable secure, scalable cloud adoption.

Requirements

Bachelor's degree in computer science, cybersecurity, programming, database administration, or a related field.
Possession or progress towards certifications such as CISSP, CISM, ISC2, ISACA, SANS GIAC, CompTIA, ITIL.
Minimum of nine (9) years of experience in security, cloud, or data protection roles, including leadership
Proven experience leading data security and cloud security programs
Strong knowledge of public cloud platforms, data security technologies, API security, IAM, and CSPM
Strong communication and interpersonal skills, with the ability to effectively collaborate with stakeholders at all levels of the organization.

Nice To Haves

Certifications such as CISSP, CCSP, CISM, or GIAC preferred

Responsibilities

Data Security & Privacy Protection Establish enterprise data classification, handling, and protection standards
Design and manage DLP controls across endpoints, cloud services, and SaaS platforms
Oversee encryption strategies for data at rest, in transit, and in use
Lead sensitive data discovery and protection initiatives
Partner with Legal and Privacy teams to support regulatory obligations
Cloud Security Program Leadership Define secure cloud architectures for AWS, Azure, and GCP
Own cloud IAM strategy and enforce least-privilege access
Implement cloud workload protection and CSPM capabilities
Partner with platform teams to secure containerized and cloud-native workloads
API Security Define and own the enterprise API security strategy
Establish API authentication, authorization, and data protection standards
Lead API inventory, classification, and risk assessments
Partner with Cyber Engineering teams on runtime enforcement
Governance, Risk & Operations Define cloud, data, and API security policies and standards
Support audits and compliance efforts (SOC 2, ISO 27001, PCI, etc.)
Lead response to data and API-related security incidents
Provide executive reporting on risk, posture, and program maturity
Leadership & Collaboration Build and lead high-performing data and cloud security teams
Partner with engineering, data, infrastructure, legal, and compliance teams
Communicate security strategy and risk posture to senior leadership