Sr Director, Cybersecurity

About The Position

Requirements

• Bachelor’s or Master’s degree in Cybersecurity, Information Security, Computer Science, or a related field.
• 10+ years of experience in cybersecurity leadership roles, with expertise in cloud security, risk management, and compliance.
• Deep knowledge of cloud security (Azure), including relevant certifications (Azure Security Engineer).
• Strong understanding of security frameworks and compliance (NIST, CIS, ISO 27001, HIPAA, HITRUST CSF).
• Experience managing colocation (COLO) data centers and hybrid cloud security.
• Proven track record in Incident Response, Disaster Recovery, and Business Continuity Planning.
• Strong leadership, communication, and collaboration skills, with experience working cross-functionally at all levels.

Responsibilities

• Develop and implement a comprehensive cybersecurity strategy that aligns with business objectives and regulatory requirements (HIPAA, HITRUST CSF, ISO 27001, NIST).
• Lead and mentor the IT Security Architect and security team members, ensuring best practices are followed across cloud and on-premises environments.
• Maintain HITRUST certification annually and ensure continued alignment with evolving CSF versions and healthcare regulations.
• Monitor and track progress using GRC tools and audit dashboards.
• Serve as the cybersecurity champion, fostering a culture of security awareness and continuous improvement throughout the organization.
• Collaborate with senior leadership and stakeholders to align security initiatives with business goals.
• Oversee cybersecurity architecture for Azure cloud and COLO data centers, ensuring integration and compliance with security policies.
• Implement and manage security controls, including identity and access management (IAM), encryption, network security, and continuous monitoring.
• Ensure zero-trust security principles are embedded in all cloud and on-premises environments.
• Develop and execute a risk management framework, conducting regular security audits, risk assessments, and vulnerability testing.
• Ensure compliance with industry regulations (HIPAA, HITRUST CSF, ISO 27001, NIST, CIS Controls) and oversee security governance initiatives.
• Establish and maintain third-party security risk management, ensuring compliance from vendors, including COLO providers.
• Lead Incident Response (IR) efforts, ensuring rapid detection, response, and recovery from cyber threats.
• Develop and maintain a Disaster Recovery (DR) and Business Continuity Plan, ensuring regular testing and updates to address evolving threats.
• Serve as the key decision-maker during security incidents, coordinating with internal teams and external partners to mitigate risks.
• Work closely with IT Engineers and Security Architects to design and implement secure infrastructure, applications, and systems.
• Oversee security monitoring and threat intelligence programs to proactively identify and mitigate risks.
• Manage security tools and technologies, including SIEM, firewalls, endpoint protection, and cloud security solutions.
• Develop and lead cybersecurity awareness training to educate employees on security best practices and emerging threats.
• Stay ahead of evolving cybersecurity threats, technologies, and industry trends, ensuring the organization’s security posture remains resilient.

Benefits

• Medical
• Dental
• Vision
• Paid time off
• Paid holidays
• 401K with company matching
• Voluntary life insurance
• Short term disability
• Long term disability
• Employee assistance program
• Health savings account
• Flexible spending accounts
• Additional voluntary benefits available