Director of Enterprise Cybersecurity

SloanFranklin Park, IL
Hybrid
Match Resume

About The Position

The Director of Enterprise Cybersecurity is responsible for the strategy, governance, and risk management of Sloan's cybersecurity program. This role sets the multi-year security roadmap, defines control frameworks, and establishes the governance structures that guide how cybersecurity risk is identified, measured, and treated across the enterprise. Reporting to the Chief Information Officer, the Director serves as the primary representative of the cybersecurity program to executive leadership and the broader organization. This role translates technical risk into business terms, delivers regular reporting on program maturity and risk posture, and informs executive decision-making on security investments, incidents, and strategic direction. The Director leads a team consisting of the Manager of Enterprise Cybersecurity, a Security Analyst, and oversight of Sloan's Managed Security Service Provider (MSSP). The Manager owns day-to-day operations while the Director retains accountability for strategy, governance, compliance posture, and budget. The role is responsible for protecting Sloan's IT and OT environments across a global manufacturing footprint. This includes balancing risk reduction with operational uptime, evaluating emerging threats, and building the security program required to support Sloan's growth and technology modernization agenda.

Requirements

  • Bachelor's Degree in Information Technology, Computer Science, Cybersecurity, Engineering, or a related field, or equivalent professional experience.
  • 3+ Years Experience presenting cybersecurity risk, strategy, and program status to executive leadership.
  • 3+ Years Proven experience leading enterprise risk management, compliance, and governance programs in a corporate environment.
  • 5+ Years Demonstrated progression of cybersecurity leadership experience with clear ownership of enterprise-scale security programs. Competency and track record weighted over years in role.
  • 8+ Years Overall IT experience
  • Familiarity with control and regulatory frameworks including NIST CSF, CIS, PCI-DSS, and global data privacy requirements.
  • Hands-on experience owning security budgets, negotiating with technology vendors, and managing MSSP or outsourced security operations.
  • Working knowledge of security across cloud, endpoint, network, identity, and data domains, with the ability to lead technical teams without being the hands-on engineer.

Nice To Haves

  • CISSP
  • CISM
  • CRISC
  • CISA
  • Experience leading cybersecurity through acquisitions, divestitures, or major digital transformation programs.
  • Experience securing manufacturing environments including OT and ICS systems.
  • Prior experience in a manufacturing or industrial enterprise with both corporate IT and plant-level OT responsibilities.
  • Track record building security programs that align to business value and enable, rather than block, technology adoption including cloud, AI, and modern work tooling.

Responsibilities

  • Develop and maintain the multi-year enterprise cybersecurity strategy and roadmap aligned to business objectives, threat landscape, and Sloan's technology direction. Translate strategy into funded, sequenced programs with measurable outcomes.
  • Establish and maintain a formal cybersecurity KPI and metrics program. Report program performance, risk posture, and maturity to the CIO and the Enterprise Risk Management Committee on a regular cadence.
  • Own the enterprise cybersecurity risk management program. Define risk appetite with executive leadership, maintain the enterprise risk register, and drive risk treatment decisions. Report risk posture and program maturity to the CIO and executive leadership on a regular cadence.
  • Represent cybersecurity on the Sloan Enterprise Risk Management (ERM) Committee. Establish and lead other internal IT cybersecurity committees at the Director's discretion.
  • Lead compliance programs for applicable frameworks and regulations including NIST CSF, CIS Controls, PCI-DSS, and data privacy requirements across global jurisdictions. Own audit readiness, evidence management, and regulator or customer response.
  • Own the cybersecurity budget including capital and operating plans. Lead vendor selection, contract negotiation, and performance management for security technology partners and the MSSP. Optimize spend against risk reduction and control coverage. Maintain governance and oversight of the MSSP relationship.
  • Extend the security program to cover manufacturing operational technology (OT) and industrial control systems (ICS) at Sloan production sites. Partner with engineering and operations to apply appropriate controls for converged IT and OT environments without disrupting production.
  • Establish and govern the enterprise incident response and cyber resilience program. Lead executive response during material incidents, conduct tabletop exercises, and provide security input and consulting on enterprise business continuity and disaster recovery planning owned by other IT functions.
  • Set architectural standards for identity, network segmentation, cloud, endpoint, email, and data protection. Govern security configuration baselines, patching cadence, and exception management. Review major IT and business technology initiatives for security alignment.
  • Own the enterprise data protection program including data loss prevention, classification, encryption, and retention controls. Set standards
  • Serve as an active stakeholder in enterprise AI and machine learning governance from a security perspective. Offer guidance and consult on acceptable use policies for AI tools, and lead security review of enterprise AI initiatives.
  • Own the cybersecurity testing program including penetration testing and red team engagements. Use results to drive remediation priorities and program improvement.
  • Govern the cybersecurity vulnerability management program including standards, prioritization, and oversight while the Manager owns execution and remediation activities. Serve as a stakeholder in enterprise asset inventory and visibility, with ownership held by other IT functions.
  • Define and oversee the enterprise threat intelligence program including feed selection, source management, and integration with detection and response capabilities.
  • Drive process improvement through automation and security orchestration scoped to the cybersecurity tower. Identify opportunities to reduce manual effort and improve consistency across security operations.
  • Own the third party cybersecurity risk program covering SaaS, IaaS, managed service, and supplier relationships. Establish assessment standards, review SOC reports, and embed security requirements into procurement and contracting.
  • Lead, coach, and develop the cybersecurity team. Define roles, performance expectations, and career paths. Build a culture of accountability, follow through, and continuous improvement. Partner with HR on talent planning.
  • Own the enterprise security awareness and training program. Drive behavior change across the workforce, tailor communications to role-based risk, and measure program effectiveness. Serve as the cybersecurity ambassador to the enterprise from an educational program perspective.
  • Other duties and responsibilities as required.

Benefits

  • Medical (including prescription coverage), Dental, and Vision Insurance, effective the first of the month following your hire date.
  • Health Savings Account (HSA) with company contributions for most medical plan options.
  • Basic Life, Basic Accidental Death and Dismemberment, Short-term Disability, Long-term Disability, and Accident Insurance.
  • Optional Life, Critical Illness, Hospital Indemnity, Legal, Pet Insurance, and Identity Theft Protection.
  • Commuter Benefits
  • Dependent Care FSA
  • Employee Assistance Plan and Wellness Programs
  • 401(k) Retirement Savings Plan with a company match and immediate vesting.
  • Paid Holidays, Volunteer Time Off, Paid Time Off, Sick Leave, Military Leave, Parental Leave, Bereavement Leave, and other paid or unpaid state/local leaves where required.
  • Hybrid Work Program
  • Employee Referral Program
  • Tuition Reimbursement Program

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Director

Job Search Resources

Similar Director of Enterprise Cybersecurity job opportunities

Director of Cybersecurity & Compliance
Recruitment Team
Recruitment Team • New York, NY8d • $170,000 - $190,000
Director of IT & Cybersecurity
Crunchbase
Crunchbase • Trenton, NS5d • $206,000 - $242,000 • Remote
Enterprise Cybersecurity Analyst
Booz Allen Hamilton
Booz Allen Hamilton • McLean, VA5d • Remote
Director Enterprise Identity Services and Cybersecurity
Riverside Hospital
Riverside Hospital • Newport News, VA4d • Onsite
Director Enterprise Identity Services and Cybersecurity
Riverside Health System
Riverside Health System • Newport News, VA5d • Onsite
Director of Enterprise Solutions
DuraServ Corp
DuraServ Corp • Coppell, TX5d • Onsite

Tools

Templates & Examples

Resources

Comparisons

Company

Over 4 Million Users
Free AI tools and resources to help you land your next job, faster
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service