Director Cybersecurity

The Director of Cybersecurity is responsible for developing, implementing, and overseeing the organization's cybersecurity framework to protect digital assets and sensitive information. This position plays a pivotal role in managing security operations, ensuring compliance with regulatory requirements, and mitigating cybersecurity risks.

Cybersecurity Strategy Development:

Design and implement a comprehensive cybersecurity strategy aligned with business objectives.
• Conduct regular risk assessments and establish controls to address vulnerabilities.
• Oversee the prevention of data breaches and the monitoring of and reacting to cyber-related attacks.
• Define and maintain cybersecurity policies, procedures, and standards.

Security Operations Management:

• Lead vulnerability management programs, ensuring proactive identification, mitigation, and response to potential threats across multiple geographies.
• Oversee day-to-day security operations, including threat monitoring and incident response.
• Lead the vendor relationship(s) in the development and continual management of the Security Operations Center (SOC) to detect and respond to threats.
• Implement, monitor, and improve security technologies to enhance organizational defense.
• Ensures 24x7 security monitoring and threat evaluation, based on firewall and traffic log data; reviews findings and recommends responses.

Compliance and Governance:

• Ensure compliance with relevant legal, regulatory, and industry-specific cybersecurity standards.
• Collaborate with auditors and regulatory bodies to facilitate security audits and assessments.
• Deliver cybersecurity training and awareness programs to employees.

Incident Response and Reporting:

• Direct incident response activities, including investigation, containment, eradication, and recovery.
• Maintain incident response plans and ensure readiness through regular testing.
• Provide detailed reports and analysis of cybersecurity posture to senior leadership.

Other duties as assigned.

KNOWLEDGE, SKILLS & ABILITIES:

Cybersecurity Expertise:

• Comprehensive knowledge of cybersecurity frameworks and regulations, focusing on NIST, ISO 27001, CIS Controls, and GDPR.
• Expertise in threat analysis, incident response, vulnerability management, and data protection.
• Proficiency in implementing and maintaining security measures across on-premises and cloud environments (e.g., Microsoft Azure, AWS).

Technical Proficiency:

• Hands-on experience with security technologies, including firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint protection.
• Advanced understanding of encryption, identity and access management (IAM), and security information and event management (SIEM).
• Familiarity with emerging technologies and trends, including zero trust architecture and artificial intelligence in cybersecurity.

Leadership and Management:

• Proven leadership capabilities in building and managing high-performing cybersecurity teams.
• Strong project management skills with the ability to prioritize and execute security initiatives effectively.
• Ability to convey technical concepts to diverse audiences, including executive leadership and non-technical stakeholders.

Other:

• Strong decision-making, planning and problem-solving skills.
• Strong attention to detail and ability to work in a fast-paced, deadline-driven environment.
• Ability to work independently and collaboratively within a team.
• Excellent communication and problem-solving skills.

EDUCATION:

• The position requires a bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• Extensive experience in cybersecurity management (at least 10 years' experience, including some prior management experience and minimum 5 years of experience working with public cloud technology).
• CISSP required and Industry-recognized certifications such as CISM, CEH, CRISC, or equivalent is highly preferred.

• Competitive Salary
• Medical, dental, and supplemental insurance
• 401K Plan
• Paid Holidays
• Paid Time Off

• This position operates in a hybrid environment.
• Flexibility to work outside normal business hours may be required to respond to security incidents or emergencies.
• Environment with limited physical effort, continuous mental effort, and frequent complex requests for assistance.
• This position will require occasional travel for conferences, meetings and on-site field/office visits (10%)

PHYSICAL JOB REQUIREMENTS & DEMANDS:

• Primarily sedentary work.
• Repetitive motions and substantial movements of the wrists, hands, and/or fingers.
• The incumbent is required to have close visual acuity to perform an activity such as: preparing and analyzing data and figures; transcribing; viewing a computer terminal; extensive reading.

Acuren is a trusted, single source provider of technology-enabled asset protection solutions used to evaluate the structural integrity of critical energy, industrial and public infrastructures. Committed to delivering a Higher Level of Reliability, Acuren provides an unrivaled spectrum of capabilities including inspection, traditional and advanced NDE/NDT, failure analysis, rope access, materials engineering, field engineering, reliability engineering, drones, robotics, V-Deck and condition-based monitoring services.

Our work is critical to the integrity and safety of industrial firms, including petroleum refinery, pipeline, power generation, pulp & paper, mining, pharmaceutical, aerospace and automotive industries. Acuren employs over 4,000 dedicated professionals supporting the mechanical integrity and inspection programs of the world's largest industrial segments.

Acuren is a market leader. Our formula for success is straightforward: be capable locally, with certified and well-equipped personnel supported by trained, experienced leaders. Continuing to build on a strong heritage of safety, quality and professionalism, Acuren strives to maintain incident free work environments, pursues advanced technical developments, and supports reliability programs that are valued by clients and employees.