Cyber Security Engineer working with product teams to embed security in development lifecycle. Design, implement, and manage security controls across cloud infrastructure and application architectures.
About the role
- Director of Security Strategy & Transformation responsible for enterprise security strategy. Partnering with technology leaders to manage risk and drive business objectives in a US tech company.
Responsibilities
- Drive CISO strategy and partner with senior technology leaders to define and evolve the enterprise security strategy, multi-year roadmap, and investment priorities.
- Establish security OKRs, KPIs, and maturity models that align risk reduction, regulatory readiness, and business enablement.
- Translate emerging risk trends (cyber, insider, privacy, AI, regulatory) into actionable strategic initiatives and decision frameworks.
- Design and lead the security operating cadence, including strategic planning, portfolio governance, and execution oversight across cybersecurity, privacy, and technology risk domains.
- Build and mature enterprise PMO and portfolio management frameworks spanning identity and access management, vulnerability management, cloud security, insider risk, and resilience.
- Drive large-scale, cross-functional security transformation programs from concept through sustained adoption.
- Support CISO with materials and artifacts designed for Board members, executive leadership, producing clear, data-driven materials on security posture, risk exposure, program ROI, and operating maturity.
- Prepare and deliver board-level reporting on cybersecurity strategy, investment outcomes, and regulatory posture.
- Enable informed decision-making through concise narratives that connect security risk to business impact.
- Operationalize regulatory and compliance obligations (e.g., privacy, data protection, financial services oversight) into measurable roadmaps that balance innovation and control.
- Partner with legal, compliance, and risk teams to integrate security strategy into broader enterprise risk management frameworks.
- Ensure consistent visibility into risk, assurance, and response metrics through unified reporting and analytics.
- Guide the strategic adoption of cloud, AI/ML, automation, and observability capabilities to modernize security operations and enterprise technology platforms.
- Evaluate and govern emerging technologies (e.g., AI agents, semantic search) to ensure security, privacy, and data protection by design.
- Promote scalable, user-centric security solutions that reduce friction while strengthening control effectiveness.
- Lead through influence in highly matrixed environments, aligning engineering, operations, product, and business teams.
- Drive organizational change through clear communication, empathy, and structured change management.
- Build communities of practice and centers of excellence that elevate security strategy, execution discipline, and continuous improvement.
Requirements
- Bachelor’s degree in computer science, information technology, or risk and governance or equivalent
- 15+ years of experience in security strategy, enterprise transformation, technology risk, or program leadership, with increasing scope and complexity.
- Proven experience partnering with CISO, CIO, CTO, or equivalent executives in large, global organizations.
- Demonstrated success designing and scaling enterprise security programs (e.g., IAM, insider risk, vulnerability management, privacy, cloud security).
- Strong background in operating model design, portfolio governance, and KPI-driven management.
- Experience producing executive- and board-level communications on security, risk, and transformation outcomes.
- Ability to translate complex technical and regulatory topics into clear, business-oriented narratives.
Benefits
- Medical, Dental, & Vision Plans
- 401(k)
- FSA/HSA
- Commuter Benefits
- Tuition Assistance Plan
- Vacation and Sick Time
- Paid Parental Leave
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Associate Consultant Cyber Security at Wavestone advising clients on security strategies and IT transformations. Engaging in Cyber Security assessments and growing expertise in security topics.
IT Administrator contributing to the digital future at NewTec. Planning, implementing security solutions and collaborating closely with departments.
Content Manager at FactSet developing and operating a cross - asset security master. Supporting teams to ensure accurate identification across various financial instruments with a focus on data governance and quality.
Sr. Software Engineer developing Cyber Security applications for Comcast. Collaborating with stakeholders and overseeing documentation and performance metrics.
Cyber Security Engineer developing and maintaining the Premonition platform for global cybersecurity operations at Comcast. Implementing AI and data engineering solutions for enhanced security workflows.
Junior Infrastructure Security Design Consultant at NTT DATA Romania assisting with security architecture documentation and various cybersecurity tasks. Requires 1 - 3 years of IT security experience and a bachelor's degree.
EHS Facilities & Security Leader overseeing safety and security operations for TAVS at GE Aerospace. Responsible for EHS strategy, leadership, and compliance across multiple sites.
Security Engineering Operations Coordinator assisting VP of Security Engineering at Cross River IT. Supporting technical teams and ensuring smooth operations in a hybrid model.
Security Architect defining security architecture standards for new Enterprise Architecture initiatives at Intelance. Collaborating with various architects and stakeholders to ensure pragmatic security designs.