Vice President of Information Security & Infrastructure

About The Position

Requirements

• Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, Engineering, or related field.
• 15+ years of progressive IT and cybersecurity leadership experience.
• 7+ years in senior leadership roles managing enterprise infrastructure and cybersecurity organizations.
• Experience within the Architecture, Engineering, and Construction (AEC), Environmental Consulting, Engineering Services, or Federal Contracting industries.
• Demonstrated experience leading enterprise cybersecurity programs in complex distributed environments.
• Hands-on experience migrating organizations to cloud and hybrid-cloud environments.
• Demonstrated experience implementing and operationalizing CUI enclave environments.
• Experience supporting or leading CMMC Level 1 initiatives.
• Strong experience with: NIST frameworks, Zero Trust architecture, identity and access management, incident response, vulnerability management, and enterprise infrastructure operations.
• Experience managing enterprise infrastructure teams including: networking, cloud, servers, end-user computing, and IT operations.
• Strong executive communication and Board presentation capabilities.

Nice To Haves

• Experience supporting or preparing organizations for CMMC Level 2 certification.
• Experience with Microsoft GCC or GCC High environments.
• Experience building secure enclave or segmented federal compliance environments.
• Experience supporting geographically distributed organizations and field operations.
• Prior experience integrating cybersecurity into mergers and acquisitions activities.
• Master’s degree preferred.
• CISSP
• CCSP
• CISM
• CMMC Registered Practitioner
• ITIL
• Azure or AWS cloud certifications

Responsibilities

• Lead and mature the enterprise cybersecurity program across all corporate, cloud, and operational environments.
• Develop and execute the organization’s cybersecurity strategy aligned with business objectives, client requirements, and regulatory obligations.
• Serve as the executive leader responsible for cyber risk management, security governance, and enterprise security operations.
• Provide executive and Board-level reporting on cybersecurity posture, risk exposure, incidents, and strategic initiatives.
• Establish and maintain enterprise security policies, standards, procedures, and governance frameworks.
• Lead enterprise incident response, cyber crisis management, and ransomware preparedness programs.
• Oversee security operations including: threat detection, monitoring, vulnerability management, endpoint security, identity security, and third-party risk management.
• Partner with legal, compliance, privacy, and HR teams on cyber governance and investigations.
• Lead enterprise IT compliance initiatives including: CMMC, NIST 800-171, CUI governance, and related federal security requirements.
• Build and operationalize Controlled Unclassified Information (CUI) enclave environments.
• Define enclave segmentation, governance, access controls, and operational standards.
• Lead organizational readiness for CMMC Level 1 compliance initiatives; experience supporting or preparing for CMMC Level 2 strongly preferred.
• Develop and manage: System Security Plans (SSPs), Plans of Action & Milestones (POA&M), audit evidence, and compliance governance processes.
• Partner with federal clients, auditors, and external assessors as needed.
• Ensure proper handling, classification, protection, and retention of CUI and sensitive client information.
• Provide executive leadership over enterprise infrastructure operations including: networking, servers, cloud platforms, storage, identity services, and enterprise connectivity.
• Lead modernization initiatives including migration from on-premises infrastructure to cloud-first and hybrid-cloud architectures.
• Define and execute enterprise cloud strategies across platforms such as: Microsoft Azure, AWS, Microsoft 365, and SaaS ecosystems.
• Drive Zero Trust and identity-centric security architecture strategies.
• Oversee infrastructure resiliency, disaster recovery, backup, and business continuity programs.
• Ensure scalable and secure infrastructure operations supporting distributed offices, remote workforce, and field operations.
• Oversee enterprise operational leadership for: IT Infrastructure, IT Support / Service Desk, End User Computing, IT Procurement, IT Asset Management.
• Leading and mentoring IT Directors and operational technology leaders.
• Establishing operational KPIs and service management standards.
• Improving IT service delivery and user experience across the enterprise.
• Managing enterprise hardware/software lifecycle governance.
• Driving vendor management, contract management, and strategic procurement optimization.
• Establishing mature IT asset lifecycle and governance practices.
• Partner with executive leadership to align technology and cybersecurity strategies with business objectives.
• Support mergers, acquisitions, integrations, and enterprise growth initiatives.
• Build and lead high-performing infrastructure and cybersecurity teams.
• Develop multi-year strategic technology and security roadmaps.
• Manage departmental budgets, technology investments, and operational planning.
• Foster a culture of security awareness, accountability, innovation, and operational excellence.
• Serve as a trusted advisor to leadership, clients, and strategic partners.

Benefits

• 100% employee stock ownership plan (retirement)
• Career Landscape initiative
• Professional conference attendance
• Internal and external professional development and training programs
• Education reimbursement
• Bonuses for publications meeting certain criteria
• Medical
• Dental
• Vision
• Employee assistance
• Wellness
• Life and disability plans
• SWCA 401(k) Profit Sharing Plan and Trust
• Competitive benefits package
• Forward-thinking workplace flexibility
• Outstanding corporate culture
• Award-winning career development