Director of Cybersecurity

About The Position

Requirements

• Minimum 10 years of progressive experience in cybersecurity, information security, or IT security required.
• Minimum 5 years of leadership or supervisory experience required.
• Experience leading enterprise cybersecurity programs, incident response, and risk management initiatives required.
• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field required.

Nice To Haves

• Master’s degree in Information Security, Business Administration, or related discipline preferred.
• Experience in retail, multi-site operations, or highly distributed environments preferred.
• Experience presenting to executive leadership and board-level stakeholders preferred.
• Certified Information Systems Security Professional (CISSP) preferred
• Certified Information Security Manager (CISM) preferred
• Certified Information Systems Auditor (CISA) preferred
• Certified in Risk and Information Systems Control (CRISC) preferred
• GIAC certifications or equivalent preferred
• Cloud security certifications (CCSP, AWS Security, Azure Security) preferred

Responsibilities

• Lead the development and implementation of the organizations cybersecurity strategy, establishing cybersecurity governance, risk, and compliance (GRC) frameworks and policies.
• Proactively assess evolving cybersecurity and technology landscapes to stay ahead of emerging threats.
• Facilitate the execution of growth and technology strategies by ensuring that technology adoption is resilient and secure.
• Conduct internal assessments of compliance with cybersecurity policies and advise executive management on cybersecurity risk.
• Act as the primary liaison for external audits and coordinates logistics, access, and response with third-party auditors.
• Develop cybersecurity capabilities and talent in relation to emerging threats, laws and regulations, and organizational goals.
• Build relationships with senior business decision makers and engage to collaboratively define the risk appetite for the organization.
• Lead cybersecurity incident response (IR), including engagements with third-party entities and law enforcement.
• Responsible for the effective use of cybersecurity assets and manages the cybersecurity budget.
• Foster a security-aware culture collaborating with senior leaders to establish cybersecurity champions across the organization.

Benefits

• quarterly employee bonuses based on company performance
• competitive salaries
• PTO and parental leave
• 401k match and employee stock ownership
• limitless professional development and growth opportunities
• tuition reimbursement
• full medical, vision and dental coverage
• snack discounts