Director, IT Infrastructure and Security

About The Position

Requirements

• Proven track record of developing and implementing enterprise IT strategies and security frameworks
• Strong understanding of security frameworks such as NIST, ISO 27001, CIS Controls, and Zero Trust Architecture
• Experience with Azure and Microsoft 365 cloud platforms security protocols and hybrid infrastructure management
• Expertise in managing security tools including SIEM, EDR, firewalls, IDS/IPS, and vulnerability management platforms
• Excellent leadership, communication, and stakeholder management skills
• Strong analytical and problem-solving abilities with a strategic mindset
• Familiarity with emerging technologies such as AI/ML security, blockchain, and IoT security
• Bachelor's degree required in Computer Science, Information Technology, Cybersecurity, or related field
• 5+ experience in IT management, with at least 3 years in cybersecurity
• 2-4 years of people management

Nice To Haves

• Master's degree preferred

Responsibilities

• Technology Strategy Develop and execute IT infrastructure and cybersecurity strategies aligned with the organization's mission and CTO-defined best practices
• Lead digital transformation and technology modernization initiatives across the enterprise
• Provide strategic guidance to the CTO on technology investments, architecture decisions, and risk management
• Establish and maintain IT governance frameworks, policies, standards, and procedures
• Vet, approve, and manage AI-enabled productivity tools with a focus on security, privacy, and responsible use
• Foster a culture of continuous improvement, innovation, and professional development within the IT function
• Infrastructure Operations and Security Supervise and mentor two direct reports and provide day-to-day leadership and performance guidance
• Oversee the daily operations, implementation, and maintenance of IT infrastructure, including networks, servers, cloud platforms, and end-user systems
• Serve as the technical escalation point for complex infrastructure and security issues
• Ensure high availability, disaster recovery, and business continuity planning for critical systems
• Establish service level agreements (SLAs) and monitor IT performance metrics to ensure reliable service delivery
• Manage vendor relationships and negotiate contracts for technology services, hardware, and software
• Secure the organizations IT infrastructure using policies and tools to protect against threats internally and in the cloud, manage firewalls, and monitor network traffic.
• Set up and oversee audio and video systems to support meetings, events, and organizational communications
• Cybersecurity Design, implement, and maintain organization-wide security protocols, including threat detection, incident response, and vulnerability management
• Coordinate security incident response activities and escalate significant risks to the CTO as appropriate
• Conduct regular security assessments, penetration testing, and risk analyses in collaboration with third-party vendors
• Ensure compliance with applicable regulatory and security frameworks (e.g., GDPR, PCI-DSS, SOC 2)
• Develop and deliver cybersecurity awareness and training programs for employees across the organization