Director of Information Security

HomeServe USA•Norwalk, CT

About The Position

The Director of Information Security is responsible for overseeing HomeServe’s cybersecurity strategy, ensuring the protection of critical business assets, customer data, and IT infrastructure. This leadership role focuses on security operations, incident response, and security architecture. The ideal candidate will work closely with the VP Information Security and cross-functional teams to enhance security posture while supporting business objectives. This role will also direct and/or influence the development and implementation of policies, procedures, and controls to ensure that the organization's security and audit compliance remain in line with applicable laws, industry standards, etc. In this role, you will work directly with non-IT compliance professionals such as finance, marketing, legal, audit and corporate compliance to ensure organizational alignment.

Requirements

Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or related field experience.
Minimum 10 years of experience in information security, with at least 3-5 years in a leadership role.
Strong knowledge of security frameworks (NIST, ISO 27001, CIS Controls).
Experience with security technologies such as SIEM, EDR, firewalls, IAM, and cloud security solutions.
Hands-on experience with incident response, penetration testing, and forensic investigations.
Proven ability to manage and mentor security teams.
Strong communication skills to engage with executive leadership and technical teams.
Ability to influence business leaders and drive a security-conscious culture.
Strategic thinker with a problem-solving mindset.

Nice To Haves

CISSP, CISM, CCSP, or equivalent security certifications.

Responsibilities

Develop, implement, and maintain the enterprise-wide security strategy, aligned with business goals.
Oversee the design and execution of security policies, frameworks, and best practices to protect HomeServe’s data and IT environment.
Collaborate with IT, legal, and other business units to embed security into company operations and technology initiatives.
Act as a security advisor to business units within the organization, providing risk-based recommendations and strategic insights.
Lead the Security Operations Center (SOC) and manage threat detection, response, and remediation activities.
Develop and refine incident response plans, ensuring timely investigation and resolution of cybersecurity incidents.
Implement and/or enhance security monitoring, vulnerability management, endpoint protection solutions, and other security controls to proactively mitigate threats.
Oversee security investigations and forensic analysis, ensuring proper documentation and reporting.
Develop and drive security awareness programs to educate employees on cybersecurity best practices and phishing prevention.
Foster a security-first culture through regular training sessions and simulated cyber-attack exercises.
Evaluate and implement emerging security technologies to enhance HomeServe’s cybersecurity capabilities.
Collaborate with IT and DevOps teams to integrate security into cloud environments, CI/CD pipelines, and digital transformation initiatives.
Continuously optimize security architecture to protect against evolving threats.