Director of Information Security & Compliance

About The Position

Requirements

• Education – Bachelor’s degree in Information Technology, Computer Science, or a related field (or equivalent experience)
• IT Security & Compliance – 8+ years experience with solid understanding of security frameworks, risk management, and industry regulatory compliance/compliance controls
• Leadership Experience – At least 5 years hands-on management/leadership of cross-functional teams and external service providers required; leadership experience in regulated environments such as hospitality, gaming, or large enterprises is highly preferred
• Certifications – CISSP or similar security certification preferred
• Other Requirements – Proficiency with Microsoft products, strong financial and business acumen, and excellent written and verbal communication skills

Nice To Haves

• leadership experience in regulated environments such as hospitality, gaming, or large enterprises is highly preferred
• CISSP or similar security certification preferred

Responsibilities

• Lead the development, execution, and ongoing management of the organization’s information security and compliance programs
• Define the long-term vision, strategy, and operating model for security, privacy, and compliance services
• Ensure enterprise systems and platforms are protected against threats, vulnerabilities, and misuse
• Oversee vulnerability management, remediation efforts, and security control effectiveness
• Ensure compliance with applicable regulatory, industry, and privacy standards (including payment, data protection, and consumer privacy frameworks)
• Promote a security- and privacy-aware culture through policies, training, and ongoing education
• Drive security architecture and engineering strategies aligned with business and technology objectives
• Establish and maintain risk assessment, incident response, and breach reporting processes
• Lead investigations into potential security incidents and escalate significant findings to executive leadership
• Act as the primary point of contact for security, privacy, and compliance matters with internal stakeholders and external authorities as required
• Partner with IT and business leaders to ensure new systems and enhancements meet security and compliance requirements
• Manage vendor relationships and third-party security service providers
• Stay current on evolving security threats, regulatory changes, and industry best practices
• Build, lead, and develop a high-performing security and compliance team
• Ensure service delivery standards and team development goals are met

Benefits

• Competitive compensation package, comprehensive benefits, and long-term career growth within a stable organization.
• This role is bonus eligible up to 12%, and relocation assistance is available for candidates living more than 100 miles from the worksite.