Jobs · Information Technology

Director, Security, Risk & Compliance Operations

Edged · United States · 5 days ago
RemoteRemoteInformation TechnologyFull-time

About the role

The Director, Security, Risk & Compliance Operations is a critical role at Edged, a leading provider of sustainable data centers and energy infrastructure. Reporting to the VP of Operations, this position is based in the US and is responsible for overseeing all aspects of physical security, compliance, and business continuity for Edged's North American facilities.

Responsibilities

  • Serve as strategic partner to the Operational function by overseeing all program requirements for physical security, compliance, and business continuity.
  • Oversee the physical security, compliance, and business continuity team supporting Edged North America.
  • Set clear expectations and goals for performance and leadership behavior aligned with Edged values, department objectives, driving respect, accountability, and excellence in the department.
  • Create multi-year roadmap for the security, risk, and compliance operations across data center and corporate environments.
  • Define policies, procedures, standards, and operating procedures that reduce risk, drive consistency, meet customer needs, and ensure sites are audit-ready.
  • Establish KPI scorecards metrics for the department and lead monthly and quarterly business reviews.
  • Oversee risk assessments for the physical security of the sites, closely collaborating with those performing similar functions with cyber security.
  • Drive standard for the basis of design around physical security systems, including site testing.
  • Support cross-functional teams such as sales, IT, and Facility operations teams by responding to requests for information related to physical security.
  • Evaluate and implement technology for access control, CCTV surveillance, audit trails, remote alarm monitoring & response, and directly deploy these technologies with support of the project management and site security team.
  • Build and execute the enterprise physical security strategy for all data center, offices, and critical infrastructure locations.
  • Establish and maintain physical security policies, standards, and operating procedures.
  • Oversee: Access control systems, CCTV and video management, Intrusion detection systems, Visitor management, Security operations and monitoring, Guard force management, Badge administration, Key and asset management.
  • Conduct security risk assessments for new facilities and existing sites.
  • Lead investigations involving physical security incidents, theft, workplace violence, unauthorized access, or security policy violations.
  • Develop executive reporting and security metrics.
  • Manage the organization's compliance programs supporting SOC 2 Type II & ISO/IEC 27001/PCI.
  • Coordinate annual audits, assessments, and evidence collection.
  • Partner with Information Security and Internal Audit to maintain audit readiness throughout the year.
  • Track and ensure all corrective action plans remediation activities.
  • Maintain security policies, procedures, and control documentation.
  • Perform enterprise risk assessments and recommend mitigation strategies.
  • Track compliance KPIs and provide regular reporting to executive leadership.
  • Develop and maintain Business Continuity Plans (BCPs), Crisis Management Plans & Emergency Response Procedures.
  • Coordinate disaster recovery coordination with IT.
  • Plan and facilitate tabletop exercises and operational simulations.
  • Drive continuous improvement based on lessons learned.

Requirements

  • MS/BS degree from a four-year university in business administration, criminal justice, information security, business administration or related fields (Masters preferred).
  • 8-10+ years of progressive experience in corporate security, physical security operations, data center security, critical infrastructure security or related security leadership roles.
  • 7+ years of leadership experience managing leaders, multi-site programs and teams in a 24/7 or critical infrastructure environment.
  • Experience with compliance, risk management or business continuity.
  • Experience in data center, cloud, critical infrastructure, telecommunications, or highly regulated environments.
  • Experience leading large scale contract guard force and services across multiple geographies.
  • Experience with product implementation consulting, training material development, product onboarding, and project and account administration.
  • Experience leading budget strategy, forecasting and capital investment allocation.
  • Experience collaborating with facility management & operational teams.
  • Experience working and presenting to internal and external stakeholders.
  • Excellent interpersonal skills.
  • Excellent time management and team delegation and leadership.
  • Excellent written and verbal communication and presentation skills.

Similar jobs