Jobs · Information Technology · Maryland

Security Director, CxM

dentsu · Maryland, United States · 1 wk ago
HybridInformation Technology$113k–$183k/yrFull-time

Responsibilities

  • Lead information security for client solutions and Practice Area technology, partnering with key stakeholders to deliver secure products and services to clients, including on-premises and cloud infrastructure components.
  • Embed security controls, patterns, and tooling into product and solution teams across all stages of the secure development lifecycle (SDLC), with a strong focus on shift-left practices.
  • Oversee security assurance for products and solutions, evaluating the implementation and effectiveness of security controls.
  • Identify, assess, and manage security weaknesses, vulnerabilities, and risks from multiple sources (e.g., security testing, threat intelligence, and audits), ensuring appropriate response and management of these issues (e.g., treatment plans, remediation actions, and risk acceptance where applicable).
  • Lead Practice Area delivery of relevant global security and transformation initiatives, ensuring successful execution and alignment with Practice Area priorities and client requirements.
  • Provide Practice Area incident support to Cyber Operations, acting as a security subject matter expert (SME) for the business division and supporting investigations.
  • Support client security requests, including (but not limited to) RFIs, audits, and security questionnaires.

Requirements

  • Relevant security certifications or equivalent experience, e.g., CISSP, CISM (or similar).
  • Experience in product/application security, including common security issues, e.g., OWASP top 10.
  • Experience across various security frameworks (e.g., ISO 27001, NIST CSF, SOC2).
  • Demonstrated expertise in security risk assessment for technical products and solutions, including the ability to support design, development, and implementation of appropriate security controls.
  • Good understanding of modern technologies, architectures, and engineering practices, including cloud-native patterns, APIs, CI/CD, and DevOps ways of working.
  • Broad knowledge across core security domains and principles, such as secure design.
  • Strong SDLC knowledge with practical experience embedding security early (“shift left”) through patterns, controls, tooling, and consultancy.
  • Excellent stakeholder management and interpersonal skills, able to influence and communicate effectively with both technical and non-technical audiences.
  • Excellent written and verbal communication skills, including producing clear security guidance, risk briefs, and assurance outcomes.
  • Experience operating in a matrixed organization, aligning and delivering across multiple teams, priorities, and stakeholders.
  • Comfortable managing uncertainty, ambiguity, and change, making sound decisions and recommendations with incomplete information.

Qualifications

  • Relevant security certifications or equivalent experience, e.g., CISSP, CISM (or similar).
  • Experience in product/application security, including common security issues, e.g., OWASP top 10.
  • Experience across various security frameworks (e.g., ISO 27001, NIST CSF, SOC2).
  • Demonstrated expertise in security risk assessment for technical products and solutions, including the ability to support design, development, and implementation of appropriate security controls.
  • Good understanding of modern technologies, architectures, and engineering practices, including cloud-native patterns, APIs, CI/CD, and DevOps ways of working.
  • Broad knowledge across core security domains and principles, such as secure design.
  • Strong SDLC knowledge with practical experience embedding security early (“shift left”) through patterns, controls, tooling, and consultancy.
  • Excellent stakeholder management and interpersonal skills, able to influence and communicate effectively with both technical and non-technical audiences.
  • Excellent written and verbal communication skills, including producing clear security guidance, risk briefs, and assurance outcomes.
  • Experience operating in a matrixed organization, aligning and delivering across multiple teams, priorities, and stakeholders.
  • Comfortable managing uncertainty, ambiguity, and change, making sound decisions and recommendations with incomplete information.

Skills

  • Security certifications (CISSP, CISM, etc.)
  • Product/Application Security
  • Security Risk Assessment
  • Modern Technologies & Architectures
  • Cloud-Native Patterns
  • CI/CD & DevOps
  • Secure Design Principles
  • Stakeholder Management & Interpersonal Skills
  • Communication Skills (written & verbal)
  • Matrixed Organization Experience
  • Uncertainty & Change Management

Benefits

  • Medical, vision, and dental insurance
  • Life insurance
  • Short-term and long-term disability insurance
  • 401(k)
  • Flexible paid time off
  • At least 15 paid holidays per year
  • Paid sick and safe leave
  • Paid parental leave

Pay

The annual salary range for this position is $113,000 - $182,562. Placement within the salary range is based on a variety of factors, including relevant experience, knowledge, skills, and other factors permitted by law.

Schedule

Many of our employees who live within commuting distance (90 minutes) from one of our Headquarter or Hub Offices (New York, Chicago, Detroit, Los Angeles) are required to work in the office 2-3 days per week including one Team Day. The minimum number of days may vary by office and role. Dentsu may designate other HQ or Hub offices at any time. Those who do not live near an office may be designated as a remote employee, depending on the role and business needs.

Regardless of your work location, we expect you to be flexible to meet the needs of our Company and clients, which may include attendance in an office from time to time.

Location

USA - Remote - Maryland

Brand

Global Technology

Time Type

Full time

Contract Type

Permanent

Similar jobs

Security Program Manager

INTEGRIS HealthOklahoma, United States· 1 wk ago
Project Managementapply on ertr.fa.us2.oraclecloud.com

Security Program Manager

OneleetBeaverton, OR· 8 mo ago
RemoteInformation Technology$75k–$140k/yrapply on jobs.ashbyhq.com

Security Manager

First Electronic BankSalt Lake City, UT· 2 days ago
apply on recruiting.paylocity.com

Security Manager

Great Wolf LodgePerryville, MD· 1 wk ago
Information Technology$60k/yrapply on jobs.greatwolfresorts.com

Security Manager

Mercy Medical Center, Baltimore, MDTimonium, MD· 1 wk ago
Information Technologyapply on mdmercy.jibeapply.com