DIRECTOR, INFORMATION SECURITY OPERATIONS - HYBRID

About The Position

Requirements

• University degree in Computer Science or equivalent.
• Certified Information Systems Security Professional (CISSP)
• Minimum of 10 years of related experience in enterprise IT environments, with at least 5 years in a leadership role.
• Strong technical knowledge in network and endpoint security.
• Knowledge in application security and hardening.
• Expert knowledge in cyber incident response technologies and understanding of adversarial techniques, tactics, and procedures (TTPs).
• Proficient in security event monitoring, threat intelligence, security operations center (SOC), and incident response technologies.
• Strong leadership capabilities to motivate, build, develop and lead effective teams to achieve results.
• Verbal and written communication with a spectrum of senior management, executives, users, other technical teams, external customers, to enable and influence business outcomes.
• Strong problem-solving abilities and ability to work effectively under pressure.
• An accomplished facilitator with excellent interpersonal and communications skills that support working effectively in multi-disciplinary and multiple location team environments.
• Experience in partnering with technology, product and program management teams.
• Highly developed planning, organizing and negotiating skills; can manage multiple tasks, meet tight deadlines and respond to changing priorities.
• Proficiency in English is required for this position. As part of this role, you will be required to communicate with colleagues or customers who use English as their primary language. By requiring English proficiency for this position, we aim to ensure that our employees can excel in their roles, collaborate, and communicate effectively, and contribute to the success of our organization.

Nice To Haves

• University degree in Cybersecurity, Computer Science or equivalent.
• Certified Information Security Manager (CISM)
• Certificate of Cloud Security Knowledge (CCSKv4)

Responsibilities

• Provide strategic leadership, oversight, and operations of security technologies, controls, and platforms to protect enterprise assets and data.
• Lead cyber incident response activities, including containment, recovery, and management of incidents throughout their lifecycle, covering both internal and third-party risks.
• Ensure regular vulnerability scans, penetration testing and red team exercises, and build/manage a threat intelligence program to proactively identify and respond to emerging threats.
• Champion secure software development lifecycle (SSDLC) practices, monitor remediation activities for go-live readiness.
• Collaborate with CISO and peers to set strategic directions and roadmaps in alignment with business strategy and risk appetite.
• Present security posture, threat landscape and metrics to senior audiences.
• Own security operations budget and vendor strategy ensuring cost optimization and technology alignment with enterprise.
• Ensure control operating effectiveness to support regulatory and compliance requirements (SOC2, ISO27001, NIST-CSF).
• Influence enterprise security architecture roadmap.
• Responsible for multi-cloud security, and advanced threat detections capabilities for applications.
• Train, develop, and coach staff; promote cross-training and knowledge sharing; drive best practices and continuous improvement of delivery processes and user experience.
• Build high-performing team with succession planning for senior roles.
• Subject matter expert consultation, initiative coordination, audit and compliance, board and committee reporting contribution and strategic support.