Director, Deputy CISO

We are seeking an experienced and strategic Director/Deputy CISO to lead our organization's information security strategy and operations. This role will be responsible for protecting our digital assets, managing security risks, and fostering a culture of security awareness across the organization. The ideal candidate will be hands-on, blending technical expertise with strong leadership skills to drive our security program forward. This role will report to the Chief Information Security Officer.

This role will play a crucial role in elevating our organization's security posture by reshaping our approach to cybersecurity. Success in this role will result in a more resilient, adaptable, and security-conscious organization better equipped to face present day cyber security challenges.

In this role:

• You will assist the CISO in developing and implementing the overall security strategy.
• You will collaborate with leadership to ensure security initiatives support overall business goals

• Lead long-term planning efforts to ensure the security organization evolves with the threat landscape and business needs

• Identify emerging security trends and technologies, assessing their potential impact on the organization
• You will develop and implement change management strategies to support the adoption of new security initiatives across the organizationwhile leading cultural transformation efforts to cultivate a security-first mindset among all employees.
• Collaborate with business units to integrate security considerations into business processes and decision-making and establish governance models that balance security requirements with business agility
• You will draw on your previous experience to assess and redesign the security organization structure to optimize efficiency and effectiveness.

• You will build, lead, and mentor a high-performing information security team.

• You will build strong relationships with C-suite executives, board members, and key business leadersand communicate security concepts and initiatives effectively to both technical and non-technical audiences.
• You will facilitate cross-functional collaboration to drive security improvements.

• You will oversee the day-to-day operations of the information security teamby developing, implementing, and maintaining security policies, procedures, and standards.

• You will conduct regular risk assessments and implement risk mitigation strategiesby ensuring compliance with relevant industry standards and regulatory requirements.

• You will evaluate and recommend security technologies and solutionswhile overseeing the implementation and maintenance of security controls across the organization's IT infrastructure.

• Collaborate with IT teams to ensure security is integrated into all aspects of the technology stack

What you will need to Succeed:

• Bachelor's degree in Computer Science, Information Security, or related field; Master's degree preferred
• 10+ years of experience in information security / cybersecurity, with at least 5 years in a senior leadership roleis required.
• Proven track record in developing and implementing information security strategies and programsis required.
• Proven track record of building up and creating teams and programs from the ground up
• Proven track record in directlymanaging security operations and incident responseis required.
• Proven track record in building up and upskilling teams within SecOps
• In depth knowledge and experience with information security principles, best practices, and emerging trends
• Strong knowledge of relevant security frameworks (e.g., NIST, ISO 27001) and regulatory requirementsis required.
• Experience in application security leadership is a plus
• Experience with building and maturing a vulnerability management program would be a plus

Why IDEXX?