Senior Director, Cybersecurity & Risk Management
United States
Full Time
4 hours ago
$190,000 - $220,000 USD
H1B Sponsor
Key skills
Cyber SecurityAIMachine LearningMLLeadershipRisk ManagementCommunicationCritical ThinkingSales
About this role
Role Overview
- Define and lead the overall enterprise information security and risk management program — covering both internal IT security and customer-facing product security across the combined portfolio.
- Maintain compliance with relevant laws, regulations, and standards across all entities, including SOC 2. Conduct compliance gap analyses for Bektek and StafferLink and drive remediation to align with Smartlinx standards.
- Leverage AI and automation to improve threat detection, vulnerability management, incident response, and compliance monitoring.
- Monitor threats, manage vulnerabilities, and lead day-to-day security operations across all Smartlinx, Bektek, and StafferLink environments.
- Own and operate the incident response process, ensuring internal and external experts are ready for rapid response to security events.
- Build, hire, and lead a unified cybersecurity security team and establish strong working partnerships with product engineering.
- Establish governance frameworks and security policies for AI and machine learning use across the organization, including AI-powered product features, internal AI tools, and third-party AI services.
- Drive security awareness through training and communications across the organization, including onboarding Bektek and StafferLink teams on Smartlinx security standards.
- Support sales teams in responding to customer security inquiries across all product lines.
- Lead the security integration of Bektek and StafferLink: assess inherited systems, remediate gaps, harmonize policies and controls, and rationalize overlapping tools and vendor relationships.
- Develop and execute a phased security integration roadmap aligned with business integration timelines.
- Report on the security program's status, integration progress, and risk posture to Executive leadership.
Requirements
- 10+ years of information security and risk management leadership experience.
- Experience leading security integration during and after M&A activity.
- Demonstrated ability to build enterprise-wide security programs, monitor for threats, implement preventive measures, and communicate security requirements to audiences ranging from the Executive leadership to software engineers.
- Ability to assess threats from both a business and technical perspective and develop practical, cost-effective security solutions.
- Experience developing AI governance frameworks and security policies for AI/ML systems.
- Familiarity with AI-driven security tools and automation.
- SOC 2 compliance expertise and experience obtaining SOC 2 certification is required.
- Strong written and verbal communication skills. Able to translate complex security concepts into clear, digestible language.
- Composure and effectiveness in high-pressure situations.
- Critical thinking and strong problem-solving skills.
- Bachelor's degree in Information Systems, Software Engineering, or similar, preferred.
Tech Stack
- Cyber Security
Benefits
- fully remote environment
- Medical
- Dental
- Vision
- FSA & HSA
- Life Insurance
- Pet Insurance
- 401(k)