Director of Cybersecurity

What You'll Do:  

As the Director of Cybersecurity you will oversee an organization's overall cybersecurity strategy, including the design, implementation, and management of security measures to protect critical data and infrastructure, by leading a team of security professionals, identifying emerging threats, and ensuring compliance with industry regulations, while reporting to senior leadership on the organization's security posture; effectively communicating risks and mitigation strategies.   

Key Responsibilities: 

• Strategic Planning: 

Develop and execute a comprehensive cybersecurity strategy aligned with business objectives, considering evolving threats and industry best practices.  

• Team Management: 

Lead and mentor a team of cybersecurity analysts, engineers, and incident responders, assigning tasks and overseeing performance.  

• Risk Assessment: 

Conduct regular risk assessments to identify vulnerabilities and prioritize security controls, determining acceptable levels of risk for the organization.  

• Incident Response: 

Establish and manage incident response plans, coordinating investigations and remediation efforts during security breaches.  

• Compliance Management: 

Ensure adherence to relevant cybersecurity regulations and industry standards, including data privacy laws.  

• Security Architecture Design: 

Oversee the design and implementation of security controls across the IT infrastructure, including network security, endpoint protection, and access management.  

• Vulnerability Management: 

Monitor for vulnerabilities and implement timely patches and updates to mitigate risks.  

• Security Awareness Training: 

Develop and deliver security awareness programs to educate employees about cybersecurity best practices.  

• Budgeting and Procurement: 

Manage cybersecurity budget, including procurement of security tools and services.  

• Stakeholder Communication: 

Communicate cybersecurity risks and mitigation strategies to senior leadership, development, legal, and product teams, providing regular updates on the organization's security posture. 

Who You Are: 

• Bachelor’s degree or an equivalent combination of education and experience 

• 5+ years of experience in cybersecurity, risk management and cloud platforms., or related fields 

• Relevant cybersecurity certifications (e.g., CISSP, CISA, CISM), required 

• Strong experience in cloud environments (AWS, Azure, GCP) 

• Deep understanding of cybersecurity principles, threats, and mitigation techniques 

• Strong security engineering background 

• Proven experience managing cybersecurity teams and projects  

• Expertise in security frameworks like NIST, ISO 27001, and CIS  

• Expertise in PCI-DSS compliance and regulations  

• Strong technical knowledge of network security, application security, and data protection technologies  

• Excellent communication and presentation skills to effectively convey complex technical information to non-technical stakeholders 

• Leadership skills to motivate and develop a cybersecurity team  

• Experience with incident response methodologies 

• Experience in SaaS, FinTech or technology industry, preferred 

Physical Considerations: 

• Ability to work in a general office environment 

• Ability to handle extended periods of computer-based work, including telephone 

• Ability to work flexible and long hours, as needed, including outside regular business hours and days 

Travel Considerations: 

• Domestic and/or international travel required, estimated up to 10%.