Director of Cyber Security and Digital Compliance

Job summary

The role involves leading the cybersecurity strategy and compliance efforts within a complex operational environment. The Director will report to the Chief Digital Officer and work closely with the CISO, overseeing multiple teams focused on Governance, Risk, and Compliance (GRC), Security Operations, and Application Security.

Qualifications

• Relevant certifications such as CISSP, CISM, or CISA are highly desirable.
• Proven experience in cybersecurity leadership roles, managing global teams and initiatives in complex settings.
• Deep understanding of cybersecurity principles and frameworks, particularly in hardware and software manufacturing.
• Strategic thinker capable of aligning business requirements with cybersecurity solutions.
• Familiarity with regulatory standards like ISO 27001, NIST, and GDPR.
• Commitment to continuous learning in emerging cybersecurity technologies.

Responsibilities

• Develop and implement a comprehensive cybersecurity strategy aligned with business goals and regulatory requirements.
• Provide leadership to the cybersecurity team, fostering innovation and continuous improvement.
• Establish KPIs to measure the effectiveness of cybersecurity initiatives.
• Oversee the GRC team to manage cybersecurity risks and ensure compliance with regulations.
• Lead the Security Operations team in monitoring and responding to cybersecurity threats.
• Build and manage an Application Security team to implement secure coding practices and integrate security into the software development lifecycle.
• Collaborate with internal and external stakeholders to enhance cybersecurity posture and address compliance needs.

Skills

• Strong leadership and communication skills, with the ability to influence across all organizational levels.
• Ability to manage conflicting priorities and develop creative solutions to minimize escalations.

Education

• A degree in a relevant field is typically expected, though specific educational requirements are not detailed.

Tools

• Familiarity with advanced security monitoring technologies and threat intelligence sources is beneficial.