Director of IT Security (Remote US)

DirectiveDirective·Remote(Remote - United States)
Software Development
Salesforce

WFA Digital Insight

As remote work expands, cybersecurity threats escalate, making roles like Director of IT Security crucial. With demand for cybersecurity specialists expected to rise by 31% in the next two years, professionals with expertise in Salesforce and cybersecurity governance are in high demand. Directive, a leader in B2B marketing, stands out for its commitment to bold, metric-driven strategies. Before applying, candidates should be aware of the evolving landscape of cyber threats and the importance of integrating security into all aspects of business operations. With the right skills, including experience with SOC 2 compliance and vendor risk management, candidates can thrive in this challenging and rewarding role.

Job Description

About the Role

The Director of IT Security at Directive is a pivotal position, responsible for leading the company's information security strategy across its fully remote workforce. This role entails developing and executing a comprehensive cybersecurity plan, ensuring the protection of Directive's people, client data, business operations, and technology ecosystem from evolving cyber threats. The Director of IT Security will work closely with the leadership team to embed security into every aspect of the business, facilitating continued growth and innovation.

Directive operates through three divisions: Performance, Communications, and Commerce, all of which rely on robust cybersecurity measures to function effectively. The company's reputation for delivering real outcomes and its commitment to metric-driven strategies make it an attractive workplace for individuals who challenge the status quo and strive for excellence.

What You Will Do

  • Develop and execute the company's information security strategy and scalable security roadmap.
  • Establish and maintain enterprise security policies, standards, and governance frameworks.
  • Present cybersecurity risks, recommendations, and security metrics to executive leadership.
  • Partner with department leaders to integrate security into business operations and decision-making.
  • Stay ahead of emerging cybersecurity threats, AI risks, and industry best practices.
  • Conduct ongoing enterprise-wide cybersecurity risk assessments across infrastructure, endpoints, applications, and business processes.
  • Build and maintain the organization's cybersecurity risk register and remediation roadmap.
  • Lead vulnerability management efforts and prioritize remediation based on business risk.
  • Perform third-party vendor security assessments and ongoing vendor risk management.
  • Configure and enforce data governance policies across distributed tools to prevent data silos.
  • Manage device security policies using MDM software to protect company assets.

What We Are Looking For

  • Proven experience in IT security, preferably in a leadership role, with a deep understanding of cybersecurity governance and risk management.
  • Strong knowledge of cybersecurity frameworks, such as NIST, ISO 27001, and SOC 2.
  • Experience with Salesforce and its security features.
  • Ability to develop and execute a comprehensive cybersecurity strategy.
  • Strong analytical and problem-solving skills, with the ability to communicate complex security issues effectively to both technical and non-technical stakeholders.
  • Experience with compliance initiatives, including security certifications and audits.
  • Familiarity with cloud security, network security, and endpoint security technologies.
  • Strong leadership and collaboration skills, with the ability to work closely with cross-functional teams.

Nice to Have

  • Certification in cybersecurity, such as CISSP, CISM, or CEH.
  • Experience with AI and machine learning in cybersecurity.
  • Knowledge of privacy laws and regulations, such as GDPR and CCPA.
  • Experience with security orchestration, automation, and response (SOAR) solutions.

Benefits and Perks

  • Competitive salary and benefits package.
  • Opportunity to work with a leading B2B marketing agency.
  • Collaborative and dynamic work environment.
  • Professional development opportunities, including training and certification programs.
  • Flexible remote work arrangements.
  • Access to the latest cybersecurity tools and technologies.
  • Recognition and reward for outstanding performance and contributions to the company's security posture.

How to Stand Out

  • Ensure your resume and cover letter highlight specific cybersecurity certifications and experience with Salesforce.
  • Prepare examples of how you've developed and executed cybersecurity strategies in previous roles.
  • Familiarize yourself with Directive's divisions and how cybersecurity supports their operations.
  • Be ready to discuss evolving cybersecurity threats and how you stay updated on industry best practices.
  • Consider including a portfolio or samples of your work in cybersecurity governance and risk management.
  • Practice explaining complex cybersecurity concepts in a clear, concise manner for non-technical stakeholders.
  • Research Directive's culture and values to understand how your skills and experience align with the company's mission.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.