Director Cybersecurity
6 days ago
Director – Cybersecurity
Location: Charlotte, NC
Major Duties & Responsibilities
The Director, Cybersecurity leads Company’s cybersecurity program in order to protect the organization's critical IT and OT systems and assets using the CIS Controls and NERC CIP cybersecurity frameworks and practices. As the subject matter expert in information security and cybersecurity, the Director supervises a team of security personnel and has the overall accountability of establishing, monitoring, managing, and maintaining the technologies and processes used to secure company information and operating technology systems, networks and data.
•Develop, implement, manage, and maintain the organization's cybersecurity strategy and roadmap and associated plans, policies, procedures, practices, requirements, and controls.
•Establish, monitor, manage, and maintain the technologies and processes used to secure company information and operating technology systems, networks and data.
•Lead threat prevention and resiliency strategies for Company. Stay up to date on recent threats (e.g., OWASP Top 10), evaluate potential security threats and protect the organization’s infrastructure from those threats to minimize downtime and expenditures.
•Direct Company’s cybersecurity team in protecting the organization’s IT and OT infrastructure from threats, responding to security requests, investigating, and responding to alerts and incident tickets, developing and maintaining security documentation, managing network and endpoint security, vulnerability management, identity and access management, SIEM and log management, cloud security operations, and overall security monitoring and reporting.
•Oversee the development of the organization’s incident response plan and direct cyber incident response and crisis management for Company, ensuring swift and effective response to security events and incidents.
•Conduct regular risk assessments and vulnerability tests, including penetration tests, to identify potential security threats and develop strategies to reduce risk in security operations.
•Ensure new systems align with the organization’s overall security policies and data protection strategies.
•Prepare and manage the cybersecurity budget for the organization.
•Provide technical leadership and oversight to security design, securityarchitecture activities, and initiatives.
•Be accountable for organizational compliance with security relatedgovernmental laws, rules, and regulation, including NERC standardrequirements. Ensure that all cybersecurity measures adhere to stateand federal laws and regulations.
• Implement organizational strategies to meet or exceed the CIS Control framework.
• Develop security reporting mechanisms and associated security KPIs that keep the organization aware of its security risk profile.
• Serve as a liaison between business and security teams, facilitating communication and ensuring security requirements are identified and integrated efficiently into business processes and projects.
• Manage endpoint and network security environments and associated security tools to meet organizational cybersecurity objectives.
• Manage partners, stakeholders, vendors and third-party service/solution providers of relevant cybersecurity services.
• Develop and implement security awareness programs to educate employees about security best practices and promote a culture of security within the organization.
• Provide technical cybersecurity support to the NERC CIP program staff to facilitate identification of efficient solutions to meet compliance obligations.
• Stay current with the latest industry trends, threats, and technologies to ensure that the organization's cybersecurity measures are current and effective.
Education/Experience Required
• Bachelor's degree in a related field such as Computer Science, IT or cybersecurity. Master’s degree in Information Systems or a related cybersecurity field preferred.
• At least 10 years of industry experience in Information Security and cybersecurity, with a minimum of 5 years in a leadership role over cybersecurity teams and experience working in the power generation industry.
• Security certifications greatly preferred (e.g., CISSP, CISM, CISA)
• Mastery level experience with security tools, technologies, hardware, software, and processes in the network, server and endpoint, applications and cloud infrastructure domains. This includes in-depth working knowledge of:
‒ Network security
‒ Endpoint security
‒ Application security and hands on experience mitigating application vulnerabilities and threats, such as SQL injection and cross-site scripting.
‒ Intrusion detection and prevention systems
‒ Encryption
‒ Antivirus software
‒ Incident response and management processes
‒ Penetration testing
‒ Vulnerability testing and management using Nessus or similar products.
‒ Security risk assessments
‒ Active Directory
‒ Data Loss Prevention
‒ Identity and access management approaches (e.g., Azure Active Directory, OKTA MFA, SSO)
‒ Office 365 security concepts, policies, settings, and practices
‒ Email security through Mimecast.
• Experience understanding and implementing regulatory requirements and industry standards related to IT and OT security, such as NERC CIP, the NIST cybersecurity and CIS Controls frameworks, SOC1/2, PCI, HIPAA, CCPA/GDPR or related security frameworks.
• Demonstrated ability to identify and mitigate security risks.
• Strong leadership and management skills, with the ability to mentor, motivate, and inspire a team.
• Excellent problem-solving and analytical skills
• Strong communication and interpersonal skills, with the ability to effectively communicate complex security concepts to both technical and non-technical stakeholders.
• Ability to work independently or as part of a team to manage multiple priorities and see tasks through to completion without significant guidance.
• Highly desirable skills include experience with:
‒ Power generation design, operations and maintenance as it relates to cybersecurity policies and practices.
‒ Support for power generation control systems
‒ KACE patching platforms
‒ Malwarebytes EDR/MDR platforms
‒ SumoLogic SIEM
‒ NERC CIP program support
‒ Ethical hacking
‒ Disaster recovery training and experience
‒ Scripting and source code programming languages that the cybersecurity team will be using.
-
Cybersecurity Director
3 days ago
Charlotte, North Carolina, United States KnowHireMatch Full timeCybersecurity Director Job DescriptionJob Summary:We are seeking a highly skilled Cybersecurity Director to lead our cybersecurity program and protect our organization's critical IT and OT systems and assets. The successful candidate will have a strong background in information security and cybersecurity, with experience in leading teams and developing...
-
Cybersecurity Director
2 days ago
Charlotte, North Carolina, United States Technology Recruiting Solutions Full timeCybersecurity Director Job DescriptionAt Technology Recruiting Solutions, we are seeking a highly skilled and experienced Cybersecurity Director to lead our organization's cybersecurity program. The successful candidate will be responsible for developing and implementing a comprehensive cybersecurity strategy to protect our critical IT and OT systems and...
-
Director - Cybersecurity
4 days ago
Charlotte, United States Gables Search Group Full timeDirector - CybersecurityLocation: Charlotte, NCMajor Duties & ResponsibilitiesThe Director, Cybersecurity leads Company's cybersecurity program in order to protect the organization's critical IT and OT systems and assets using the CIS Controls and NERC CIP cybersecurity frameworks and practices. As the subject matter expert in information security and...
-
Director Cybersecurity
6 days ago
Charlotte, United States KnowHireMatch Full timeDirector – CybersecurityLocation: Charlotte, NCMajor Duties & ResponsibilitiesThe Director, Cybersecurity leads Company’s cybersecurity program in order to protect the organization's critical IT and OT systems and assets using the CIS Controls and NERC CIP cybersecurity frameworks and practices. As the subject matter expert in information security and...
-
Director Cybersecurity
6 days ago
Charlotte, United States KnowHireMatch Full timeDirector – CybersecurityLocation: Charlotte, NCMajor Duties & ResponsibilitiesThe Director, Cybersecurity leads Company’s cybersecurity program in order to protect the organization's critical IT and OT systems and assets using the CIS Controls and NERC CIP cybersecurity frameworks and practices. As the subject matter expert in information security and...
-
Cybersecurity Director
3 days ago
Charlotte, North Carolina, United States KnowHireMatch Full timeDirector – CybersecurityAt KnowHireMatch, we are seeking a highly skilled and experienced Cybersecurity Director to lead our cybersecurity program and protect our organization's critical IT and OT systems and assets.Key Responsibilities:• Develop, implement, manage, and maintain our organization's cybersecurity strategy and roadmap, including associated...
-
Senior Director of Cybersecurity
4 weeks ago
Charlotte, North Carolina, United States Cencora Full timeJob SummaryCencora is seeking a highly skilled Senior Director to lead our Cyber Transformation Office. This role is responsible for building strong partnerships with business units, other corporate support functions, and the user community to protect the corporate brand, data, and assets. The ideal candidate will have a strong background in information...
-
Senior Director of Cybersecurity
4 weeks ago
Charlotte, North Carolina, United States Cencora Full timeJob SummaryCencora is seeking a highly skilled Senior Director to lead our Cyber Transformation Office. This role is responsible for building strong partnerships with business units, other corporate support functions, and the user community to protect the corporate brand, data, and assets. The successful candidate will design, implement, operate, and...
-
Senior Director of Cybersecurity
3 weeks ago
Charlotte, North Carolina, United States Cencora Full timeJob SummaryCencora is seeking a highly skilled Senior Director to lead our Cyber Transformation Office. This role is responsible for building strong partnerships with business units, other corporate support functions, and the user community to protect the corporate brand, data, and assets. The ideal candidate will have a strong background in information...
-
Senior Cybersecurity Audit Manager
3 weeks ago
Charlotte, North Carolina, United States Truist Inc Full timeJob Title: Senior Audit Manager - CybersecurityThe Truist Senior Audit Manager - Cybersecurity will lead in-depth technical audits of the organization's cybersecurity domains, controls, policies, and governance to assess and enhance the effectiveness of the organization's cybersecurity program and provide actionable recommendations to mitigate risks and...
-
Channel Director, Americas
2 days ago
Charlotte, North Carolina, United States ThreatMark Full timeAbout the RoleThreatMark is a leading provider of digital banking and payments fraud prevention solutions. We are seeking a highly experienced Channel Director to lead our sales and revenue growth efforts in the Americas region.The successful candidate will be responsible for building and scaling partnerships with vendors, ISVs, and consultancies to drive...
-
Director of IT Network Engineering Systems
3 weeks ago
Charlotte, North Carolina, United States Brightspeed Full timeJob Title: Director, IT Network Engineering SystemsWe are seeking a highly skilled and experienced Director, IT Network Engineering Systems to join our team at Brightspeed. As a key member of our IT leadership team, you will be responsible for leading the IT initiatives in the engineering and construction domain.Key Responsibilities:Strategic Leadership:...
-
Director of Risk Management and Medical Network
3 weeks ago
Charlotte, North Carolina, United States RSM US LLP Full timeRisk Management Director for Medical NetworkWe are the leading provider of professional services to the middle market globally, empowering our clients and people to realize their full potential.RSM has an exceptional career opportunity available for a director to join our Risk Consulting Services practice as a part of our Technology Risk Consulting team.Our...
-
Technology Risk Consulting Director
4 weeks ago
Charlotte, North Carolina, United States RSM US LLP Full timeJob Title: Technology Risk Consulting DirectorWe are seeking a highly experienced Technology Risk Consulting Director to join our Risk Consulting Services practice. As a leader in the field of information technology risk management, you will be responsible for providing expert advice to our clients on the design and optimization of controls, as well as...
-
Stratascale Sr. Security Consultant
3 weeks ago
Charlotte, North Carolina, United States SHI International Full timeJob Summary:As a Sr. Security Consultant, you will play a vital role in enhancing the security posture of our clients' Microsoft technology infrastructure. Your primary responsibility will be the management, maintenance, and tuning of Azure Sentinel, Microsoft 365 Defender, and Microsoft Defender for Cloud (Azure Security Center) to ensure optimal...
-
Technology Risk Consulting Director
3 days ago
Charlotte, North Carolina, United States RSM US LLP Full timeJob Title: Technology Risk Consulting DirectorRSM US LLP is seeking a highly skilled Technology Risk Consulting Director to join our Risk Consulting Services practice. As a leader in the field of information technology risk management, you will be responsible for providing expert guidance to clients on the design and optimization of controls, as well as...
-
Technology Risk Consulting Director
4 weeks ago
Charlotte, North Carolina, United States RSM US LLP Full timeJob Title: Technology Risk Consulting DirectorRSM US LLP is seeking a highly skilled Technology Risk Consulting Director to join our Risk Consulting Services practice. As a leader in the field of information technology risk management, you will be responsible for providing expert guidance to clients on the design and optimization of controls, as well as...
-
Technology Risk Consulting Director
3 days ago
Charlotte, North Carolina, United States RSM US LLP Full timeJob Title: Technology Risk Consulting DirectorWe are seeking a highly skilled Technology Risk Consulting Director to join our team at RSM US LLP. As a leader in the field of technology risk management, you will be responsible for providing expert advice to clients on how to effectively manage their IT risks and ensure the security and integrity of their...
-
Technology Risk Consulting Director
2 days ago
Charlotte, North Carolina, United States RSM US LLP Full timeJob Title: Technology Risk Consulting DirectorWe are seeking a highly experienced Technology Risk Consulting Director to join our team at RSM US LLP. As a leader in the field of technology risk management, you will be responsible for providing expert advice to clients on managing risks associated with their technology infrastructure.Key...
-
Charlotte, United States OneMain Financial Full timeThe Data Protection and Governance Associate Director will oversee multiple teams to assist in the definition of OMF’s technical and business requirements for data protection solutions as well as develop business processes and policies related to controlling access to data. The ideal candidate will show demonstrated experience in managing multiple teams...
