Director, Data Security

The Director, Cybersecurity and Data Protection role will be responsible for the design and oversight of cybersecurity capabilities primarily designed to protect Company data. This role will work with appropriate data, engineering, privacy, and governance counterparts to ensure cybersecurity capabilities for protecting the Company’s data are appropriately designed, engineered, and monitored to meet the Company’s needs.

This role requires technical competence and ability to work with stakeholders across various domains. Additionally, the role requires familiarity with recent threats and adversarial techniques, as well as the ability to quickly understand complex environments. Thought leadership for designing data protections in an AI-driven world will be critical to this role’s success. Business and interpersonal skills are essential to assess effectiveness of solutions and design tomorrow’s capabilities. This role contributes to the company IT security strategy and roadmap and candidates must be excellent communicators at both the staff and executive levels.

Responsibilities
 

• Identifying, analyzing, and designing implementation for cybersecurity tools that are primarily responsible for data protection
• Ensuring cybersecurity capabilities for data protection are meeting industry, regulatory, and internal requirements and benchmarks
• Identifying opportunities for improvement for current tools and processes involving data protection, and where required, leading implementation and process changes
• Assisting in developing or tuning risk frameworks for the data protection domain
• Assisting in cybersecurity investigations and response work when data protection tools, processes, and capabilities are required
• Participating in data protection efforts led by other teams, including engineering, privacy, legal, including ensuring cybersecurity requirements are appropriately considered
• Participating as a subject matter expert for data protection in responsible use of AI

Basic Qualifications

• Bachelor’s degree in Cybersecurity, Computer Science, IT Management or related field.
• 5+ years of cybersecurity, architecture, or related experience.
• CISSP and/or CISM certification.
• Superior knowledge of data protection tools, including Microsoft’s tools
• Superior knowledge of protecting data across various repositories, including business systems, data lakes, end-user collaboration, and third-party systems
• Experience in AI, including risks to data and experience securing data when used by AI
• Experience with securing data across SaaS and IaaS cloud platforms (e.g., Azure, AWS, Google Cloud Platform)
• Excellence in communicating business risk from cybersecurity issues.
• Experience driving measurable improvement in cybersecurity capabilities, such as monitoring and response capabilities at scale, or data protection platforms.
• Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.

Preferred Qualifications

• Master’s degree in related field 
• SANS certifications is a plus
• Experience working with frameworks such as NIST
• Highly effective communicator with ability to influence business units
• Analytical and problem-solving mindset
• Highly organized and efficient
• Works calmly under pressure and with tight deadlines
• Is highly trustworthy; leads by example

Skills:

IT Problem Solving; IT Security Auditing; Cybersecurity Controls; Information Security Risk Management; Data Security; Data Security Management; Data Protection