Senior Director, Cyber Security Operations – Deputy CISO
Acton, Massachusetts, United States of America
Full Time
23 hours ago
$204,400 - $306,550 USD
No Visa Sponsorship
Key skills
CloudCyber SecurityRLeadershipRisk ManagementCommunicationCollaborationCloud Security
About this role
Role Overview
- Lead and mature global cybersecurity operations across corporate, product, manufacturing, patient, and clinical environments.
- Serve as Deputy CISO, supporting the CISO in executive, regulatory, audit, customer, and operational engagements.
- Partner with the CISO, CIO, and business leaders to align cybersecurity strategy, investments, and priorities to enterprise risk and business objectives.
- Oversee security monitoring, threat detection, incident response, vulnerability management, threat intelligence, and remediation activities.
- Lead cyber investigations, crisis response, and incident recovery efforts with clear executive communication and recommended actions.
- Manage relationships with managed security service providers and ensure continuous monitoring of enterprise assets, threats, vulnerabilities, and events.
- Partner with Product Security, R&D, Quality, and Regulatory teams to support secure medical device development, threat modeling, risk analysis, testing, and post-market cybersecurity activities.
- Support cybersecurity alignment with applicable frameworks and regulatory expectations, including FDA guidance, NIST CSF, ISO 27001, CIS Controls, and healthcare security standards.
- Lead cybersecurity governance, policies, standards, procedures, and controls that support business growth and operational resilience.
- Drive modernization of security capabilities across cloud, identity, endpoint, network, infrastructure, OT, and manufacturing environments.
- Partner with IT, Legal, Privacy, Compliance, Internal Audit, and business stakeholders to manage cyber risk and remediation.
- Oversee third-party cybersecurity risk related to suppliers, managed service providers, and strategic partners.
- Establish cybersecurity KPIs, KRIs, dashboards, and reporting for executive leadership.
- Manage cybersecurity budgets, forecasts, vendor relationships, and strategic investment planning.
- Lead, mentor, and develop cybersecurity team members while promoting accountability, collaboration, and continuous improvement.
- Identify opportunities to reduce risk, improve efficiency, optimize costs, and increase business value.
Requirements
- Bachelor’s degree in Information Security, Computer Science, Engineering, or related field required; advanced degree preferred.
- 12+ years of progressive cybersecurity, information security, or enterprise technology experience.
- 7+ years of leadership experience managing cybersecurity programs, teams, and strategic initiatives.
- Experience in regulated industries such as healthcare, medical devices, life sciences, or manufacturing preferred.
- Strong knowledge of cybersecurity operations, incident response, vulnerability management, cloud security, identity security, security engineering, and enterprise risk management.
- Experience with frameworks such as NIST CSF, ISO 27001, CIS Controls, and/or HITRUST.
- Strong understanding of healthcare and medical device cybersecurity expectations, including FDA cybersecurity guidance.
- Experience presenting cybersecurity strategy, risk, and program maturity to executive leadership.
- CISSP required; CISM, CRISC, CCSP, GIAC, or similar certifications preferred.
Tech Stack
- Cloud
- Cyber Security
Benefits
- Medical, dental, and vision insurance
- 401(k) with company match
- Paid time off (PTO)
- And additional employee wellness programs