Director, Information & Application Security

About The Position

Requirements

• Bachelor’s or master’s degree in computer science, Information Technology, Information Security, Cybersecurity, or a related field.
• Several years of experience in a security officer role in SW/IT security.
• Multiple years of experience in product/SW security
• In-depth knowledge of security protocols, technologies, and standards (e.g., ISO 27001, SOC2, NIST).
• Experience in developing and implementing security programs.
• Certifications such as CISSP, CISM, CISA, or equivalent are advantageous.
• Proficiency in security frameworks, risk management, incident response, and security architecture.
• Excellent analytical and problem-solving skills. Ability to assess risks and develop mitigation strategies.
• Demonstrate assertiveness.
• Strong written and verbal communication skills. Ability to convey complex security concepts to non-technical stakeholders.
• Capacity to adapt to a fast-paced and evolving environment. Commitment to staying updated on the latest security trends and technologies.
• High level of integrity and ethical standards. Commitment to protecting the Construction SW’s information assets.

Nice To Haves

• Technical understanding in areas such as Cloud & AI Security, IAM, Endpoint Security, Data Security, SDLC, DevSecOps, Application Security.
• Strong conceptual skills, high level of self-responsibility, and structured, solution-oriented approach to work.
• Strong communication skills, an audience-appropriate manner of expression, and a convincing presence.
• Good knowledge of the construction industry and regulations is a great advantage.
• Fluent in English.

Responsibilities

• Act as Product Business Information security officer for Fieldwire
• Develop, own and implement Fieldwire product security improvement plan.
• Identify and assess product security risks and threats.
• Collaborate with Fieldwire management to integrate security measures into the SW product and business processes.
• Report to management on security incidents and measures.
• Support the Head of Construction SW Security & GRC in all aspects of cyber security
• Work closely with other Information Security Officers within Hilti, the Group CISO.
• Analyze regulatory and legal developments (e.g., NIST, CRA, NIS2, EU AI data act), translate these into actionable requirements, and oversee their implementation.
• Independently manage business projects related to information and product security, from requirements to implementation.
• Take responsibility for specific security topics such as Cloud & AI Security or technical risk analysis within Fieldwire.
• Contribute to the continuous improvement of the security architecture, the ICS, and the ICT & cyber risk management for Fieldwire.
• Own and maintain Fieldwire SOC2 certification and support Group ISO27001 certification
• Coordinate internal and external audits in the field of information and product security and support the implementation of the resulting measures.