Sr. Director IT Cyber Security
Position Responsibilities
Lead cyber security program execution across North America and Latin America, ensuring consistent standards with appropriate regional regulatory alignment.
Collaborate with regional IT and business leaders to align priorities, drive adoption, and ensure effective execution of cyber security initiatives.
Develop and execute the enterprise cyber security strategy aligned with corporate objectives and in partnership with the Vice President of IT and senior leadership.
Lead the design, implementation, and continuous improvement of enterprise-wide security architecture, including identity, endpoint, network, cloud, and application security.
Direct cyber defense operations, including threat detection, incident response, vulnerability management, and security monitoring capabilities.
Establish a unified cyber governance framework encompassing policies, standards, risk assessments, compliance, and regulatory alignment (e.g., SOX, NIST CSF, ISO 27001, CIS Controls).
Drive security integration into digital transformation, cloud migration, AI adoption, and modernization initiatives.
Evaluate emerging threats, technologies, and vendors; recommend solutions based on business risk and ROI.
Lead enterprise identity and access management (IAM) and data privacy and protection strategy, including Zero Trust adoption and privileged access controls.
Partner closely with Infrastructure, Cloud, Data Engineering, Networking, and AI teams to ensure secure-by-design architectures.
Oversee penetration testing, red team exercises, and third-party risk management.
Build and lead a high-performing cyber security organization—including SOC analysts, security engineers, architects, risk analysts, and governance/compliance experts.
Partner with Operational Technology leadership to ensure manufacturing security and resilience is in line with corporate expectations.
Drive enterprise cyber awareness and organizational change programs to elevate security culture.
Establish metrics, dashboards, and reporting mechanisms to measure security posture, program maturity, and risk exposure.
Serve as an executive security advisor to senior leadership, providing expert guidance on cyber risks and business impacts.
Manage external partnerships, MSSPs, consulting firms, and technology vendors.
Knowledge & Skills
Deep expertise in cyber security domains including threat intelligence, incident response, Zero Trust, IAM, cloud security, vulnerability management, and data protection.
Demonstrated knowledge of modern security platforms, architecture, and frameworks (e.g., SIEM, EDR/XDR, SOAR, CASB, SASE, PAM).
Strong understanding of networking, cloud ecosystems (Azure/AWS), secure application development, and identity architectures.
Expertise implementing and governing security frameworks such as NIST CSF, ISO 27001, CIS Controls, and SOX/PCI compliance.
Strong background in cybersecurity risk management, secure design principles, and regulatory obligations.
Proven ability to lead enterprise transformation and drive cultural change across large, complex organizations within risk tolerances.
Excellent leadership skills with the ability to build and scale high-performing cyber teams and influence executive decision-making.
Exceptional communication skills with the ability to translate complex cyber risks for diverse audiences—from technical teams to senior executives.
Experience
12+ years of progressive experience in cyber security, information security, or related technical fields.
8+ years leading high-performing security or transformation teams.
Demonstrated success implementing security programs and capabilities at enterprise scale.
Education/Certification
Bachelor’s degree in Computer Science, Cyber Security, Engineering, or related field; Master’s degree preferred.
Industry certifications strongly preferred (e.g., CISSP, CISM, CCSP, GIAC, SANS certifications, Zero Trust certifications).