Key skills
AWSAzureCloudLeadershipCommunicationCloud SecurityWAF
About this role
Role Overview
- Lead global security operations, including SOC oversight, SIEM/SOAR tuning, threat detection, and incident response.
- Serve as incident commander for security events and drive end‑to‑end investigation, containment, and remediation.
- Direct vulnerability management across IT, cloud, and OT environments with SLA‑based remediation.
- Manage endpoint, network, and cloud security technologies (EDR/EPP, DLP, CASB, WAF, segmentation).
- Strengthen plant‑floor and OT security in partnership with manufacturing teams.
- Oversee compliance programs for NIST 800‑53/800‑171, SOX ITGC, PCI DSS, ITAR, and CMMC Level 2.
- Lead readiness assessments, audits, evidence management, and remediation tracking.
- Maintain security policies, standards, and procedures aligned with regulatory and customer requirements.
- Manage third‑party risk assessments and ongoing vendor compliance monitoring.
- Lead security governance and risk assessments; track mitigation and communicate risk posture to leadership.
- Ensure adherence to export control requirements, including ITAR and foreign‑person access controls.
- Manage and mentor a global security operations and compliance team.
- Build multi‑year security roadmaps and budgets aligned to company strategy.
- Collaborate across IT, OT, Engineering, Legal, HR, Finance, and other teams on key initiatives.
- Support security and compliance due diligence for M&A activities.
- Drive global security training and awareness programs, including annual and role‑based training.
Requirements
- Bachelor’s Degree in Information Security, Information Technology, Computer Science, or equivalent experience.
- 10+ years of experience across security operations, incident response, vulnerability management, and GRC.
- Experience in regulated environments including ITAR, SOX, PCI DSS, GDPR, and DoD compliance requirements.
- Strong working knowledge of security frameworks: NIST 800‑53/800‑171, CIS Controls, ISO 27001.
- Experience with cloud security (Azure/AWS), identity security, PAM, segmentation, and DLP.
- Outstanding analytical, communication, and documentation skills.
- Experience managing global security programs across complex hybrid environments.
- Proficiency with SIEM, SOAR, vulnerability management platforms, GRC tools, and identity platforms.
- Certifications such as CISSP, CISM, CCSP, CRISC, CISA, ISO 27001 are preferred.
- Ability to collaborate effectively with technical and non‑technical stakeholders.
- Ability to lead incident response activities and guide teams through high‑pressure situations.
- Ability to travel up to 10% of the time.
Tech Stack
- AWS
- Azure
- Cloud
Benefits
- Health Insurance: Traditional OR High Deductible plan
- Flexible Spending Accounts
- Health Savings Account (including employer contributions)
- Dental and Vision
- Basic and Supplemental Life Insurance
- Short-Term and Long-Term Disability
- Paid caregiver leave
- You will receive PTO + Holiday Pay + Wellness Hours + Volunteer Hours
- 401k with company match and immediate vest
- Employee Stock Purchase Program with a 15% discount
- And More!