Director of Cybersecurity

Summary

The Director’s responsibilities include developing and implementing comprehensive cybersecurity and support strategies, overseeing risk assessments, managing incident response protocols, ensuring compliance with industry regulations. Simultaneously, the Director is responsible for driving excellence in global IT support, optimizing processes, and coordinating with regional teams to ensure a consistent and efficient support experience. The Director will lead a team of cybersecurity analysts and global IT support associates ensuring they are aligned with corporate goals and managing their career development and commitment.

The position will collaborate with IT and business units to ensure a world-class IT support experience while strengthening our security posture to stay ahead of emerging threats, contributing to the overall protection of our digital assets. Additionally, the role will play a key role in creating and maintaining security policies, managing a security awareness program, organizing and delivering support training activities and leading IT communication with the Business.  The Director will stay abreast of the latest trends and technologies in both IT support and security areas, ensuring outstanding and secure services to Hyperion MT.

Essential Duties and Responsibilities

• Strategy Development: Formulating and executing a robust cybersecurity and IT support strategy aligned with business goals and industry best practices. (ISO 27001, NIST, CIS, COBIT, ITIL)
• Risk Management: Identifying, assessing with the business collaboration to prioritize potential cybersecurity risks to the organization's information systems and data.
• Compliance: Ensuring compliance with relevant regulations, standards, and frameworks, and staying informed about changes in the legal landscape related to cybersecurity.
• Incident Response: Leading the development and implementation of an incident management tool (ITSM) and security plan (IRP) to effectively address and mitigate support and security incidents.
• Team Leadership: Managing and mentoring a team of cybersecurity & global IT support professionals, providing guidance, training, and fostering a culture of security awareness and customer-focused approach.
• Collaboration: Collaborating with IT teams, business units, and other stakeholders to integrate security measures into business processes and IT systems while ensuring support requests and improvements are fulfilled.
• Security Architecture: Overseeing the design and implementation of secure architecture for networks, systems, and applications.
• Training: Implementing ongoing cybersecurity awareness programs to educate employees about security threats and best practices. Develop and lead a training support service to get and deliver IT training requests.
• Technology Evaluation: Evaluating and selecting cybersecurity and support technologies, tools, and solutions that align with the company's needs and budget.
• Budgeting and Resource Management: Managing the cybersecurity and support budget effectively and allocating resources to address the most critical needs.
• Monitoring and Reporting: Implementing continuous monitoring systems and generating regular reports on the state of cybersecurity, incident trends, and mitigation measures.
• Vendor Management: Working with external vendors and partners to ensure the security of third-party services and products.
• Policy Development: Developing, updating, and enforcing cybersecurity and support policies and procedures across the organization.
• Training and Development: Staying current with industry trends, emerging threats, and technologies, and facilitating ongoing professional development for the cybersecurity team. 
• ITSM Governance: Lead daily support operations and processes including IT management of all ITSM processes: governance, support & change management systems within Hyperion following industry best practices (ITIL, COBIT)
• Global Support & Security Excellence: Drive initiatives to enhance global customer support & security, overseeing the establishment of key performance indicators (KPIs) and metrics for measuring and improving service effectiveness.

Qualifications

• Experience with security tools and technologies such as firewalls, intrusion detection/prevention systems, endpoint protection, and vulnerability scanners.
• Experience with support troubleshooting, problem solving, critical incident management & creation of documentation.
• Ability to work flexible working hours and on-call as required.
• Strong communication and interpersonal skills, with the ability to communicate complex technical concepts to non-technical stakeholders.
• No travel required – ability to work remotely up to 50%
• Occasional travel to the US might be required.

This integrated set of responsibilities reflects the comprehensive role of a Director of Cybersecurity and Global Support, emphasizing the need for strategic leadership, protecting our organization's information assets, and ensuring that the organization is compliant with industry regulations, standards and global IT support excellence.
 

Education and/or Work Experience

• Bachelor’s degree or equivalent work experience
• 7+ years of experience in information security, including experience in risk management, vulnerability management, incident response, and security operations.
• 7+years of experience in support management services and governance.

Technical Skills/Physical Requirements

• Extremely customer oriented and empathetic, capable of teaching and clarifying technical aspects to non-tech users.
• Professional certifications such as CISSP, CISM, CISA, CompTIA Security+, ITIL, COBIT are preferred.
• Knowledge of industry-standard support and security frameworks such as ISO 27001, NIST, CIS, ITIL, COBIT