The hands-on Information Security Director is responsible for designing, implementing, and maintaining the company's security infrastructure, ensuring the safety and security of personnel, facilities, and assets. The ideal candidate will have hands-on experience in development, testing, and cloud security, as well as a proven track record in cybersecurity architecture, excellent problem-solving skills, and the ability to collaborate with cross-functional teams.
- Design, develop, and implement comprehensive security architecture and solutions that align with industry best practices and comply with relevant regulations, leveraging hands-on experience in development, testing, and cloud security.
- Collaborate with stakeholders across the organization to identify potential security risks and develop appropriate mitigation strategies, with a focus on SDLC, cloud security, and control management.
- Evaluate and recommend new security technologies, tools, and methodologies to improve the organization's security posture, using hands-on experience in development, testing, and cloud security.
- Develop and maintain security policies, procedures, and standards to ensure consistent and effective security practices.
- Provide hands-on expert guidance on secure architecture, design, and coding practices throughout the SDLC.
- Collaborate with IT and development teams to integrate hands-on security measures and controls into cloud environments.
- Conduct regular security assessments and audits to ensure compliance with established policies and standards.
- Provide timely and accurate reporting on security incidents, trends, and performance metrics to senior management.
- Continuously monitor industry trends, best practices, and emerging threats to ensure the organization's security posture remains current and effective.
- Foster a security-conscious culture within the organization through ongoing communication, training, and awareness initiatives.
- Bachelor’s degree in computer science; Master's degree preferred.
- Minimum of 5 years of experience in cybersecurity architecture or a related field, with hands-on experience in development, testing, and cloud security.
- Thorough understanding of SDLC security, cloud security principles, best practices, and relevant regulations.
- Proven experience in designing, implementing, and maintaining security systems and infrastructure, using hands-on development, testing, and cloud security knowledge.
- Excellent communication, collaboration, and interpersonal skills.
- Strong analytical and problem-solving abilities, with a keen attention to detail.
- Ability to handle confidential information with discretion and integrity.
- Flexibility to adapt to changing priorities and work in a fast-paced, dynamic environment.