FREE ACCESS
5,000–10,000 jobs/day

See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.

Director of IT Security
DirectiveDirector of IT Security leading the cybersecurity strategy for a remote workforce at Directive Consulting. Responsible for risk management, incident response, and compliance initiatives.
Tech Stack
Tools & technologiesCloudCyber Security
About the role
Key responsibilities & impact- Develop and execute the company's information security strategy and scalable security roadmap
- Establish and maintain enterprise security policies, standards and governance frameworks
- Present cybersecurity risks, recommendations and security metrics to executive leadership
- Partner with department leaders to ensure security is integrated into business operations and decision-making
- Conduct ongoing enterprise-wide cybersecurity risk assessments across infrastructure, endpoints, applications and business processes
- Build and maintain the organization's cybersecurity risk register and remediation roadmap
- Lead vulnerability management efforts and prioritize remediation based on business risk
- Perform third-party vendor security assessments and ongoing vendor risk management
- Own the organization's incident response program, including playbooks, tabletop exercises and post-incident reviews
- Oversee endpoint security, identity and access management, privileged access controls, MFA and device security
- Lead security compliance initiatives including SOC 2 Type II and future security certifications
- Build and/or manage company-wide security awareness and phishing training programs
- Educate employees on evolving cybersecurity threats, social engineering, AI usage and data protection best practices
Requirements
What you’ll need- 7+ years of experience in cybersecurity, information security or risk management
- 3+ years leading enterprise security programs or security teams
- Demonstrated experience performing cybersecurity risk assessments and threat modeling
- Strong knowledge of cloud-first and SaaS-based environments including Google Workspace, Salesforce, NetSuite, Okta and modern identity platforms
- Experience implementing and maintaining security frameworks such as SOC 2, ISO 27001 or the NIST Cybersecurity Framework
- Deep understanding of endpoint security, identity management, vulnerability management, incident response and security operations
- Experience working within fully remote organizations supporting distributed workforces
- Strong executive communication skills with the ability to translate technical risk into business impact
- CISSP, CISM, CRISC, or equivalent cybersecurity certification is strongly preferred
Benefits
Comp & perks- Medical, dental, vision plans, disability, and life insurance coverage for you and your family
- 100% employer-paid plan for you and a 50% employer contribution for your dependents
- Access to certified therapists through Spring Health, membership to Headspace
- Physical therapy through Omada, fertility support through Carrott, thousands of Aaptiv virtual workouts, complimentary One Medical membership for primary and virtual care
- Unlimited PTO (2-week minimum), Paid Company Holidays, Your Birthday Off, End of Year Recharge (Closed December 24 - January 1), Paid Parental Leave
- Traditional and Roth 401(k) with a 3% company match
- Annual bonus based on tenure, which scales in total amount over time
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Cybersecurity Risk AssessmentVulnerability ManagementEndpoint SecurityIdentity ManagementThreat ModelingSecurity OperationsSecurity ComplianceData Protection Best PracticesSecurity Metrics PresentationSecurity Policy Development
Soft Skills
Executive CommunicationCollaborationTraining and Education
Certifications
CISSPCISMCRISC