CrawlJobs Logo

Director, Information Security

bowman.com Logo

Bowman

Location Icon

Location:
United States , Reston

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

The Director of Information Security leads the enterprise security function to protect information assets and manage risk across the organization. This position is responsible for strategic oversight and leadership across all major security domains, including endpoint security, vulnerability management, infrastructure security, cloud security, logging and detection, data protection, application security, GRC, and incident response. The Director will align security initiatives with business objectives, develop a robust security architecture, ensure regulatory compliance, and foster a culture of cybersecurity awareness. The role includes managing hands-on security professionals and scaling the team to meet evolving organizational needs.

Job Responsibility:

  • Report to the CIO/CISO and contribute to executive-level decision making on security matters
  • Provide strategic leadership over the information security function, including technical operations, GRC, and incident response
  • Supervise a growing team of security professionals, with responsibility for hiring, performance management, training, and development
  • Build and execute a multi-year information security roadmap aligned with business goals and evolving threat landscapes
  • Collaborate with IT, Legal, HR, Marketing, Compliance, Product, and business units to implement practical, risk-based security controls and policies across the enterprise
  • Serve as a subject matter expert on cybersecurity, advising stakeholders across the enterprise
  • Communicate risk posture, security metrics and program maturity to executive leadership and governance bodies
  • Lead the design, implementation, and continuous improvement of secure enterprise architectures, ensuring protection of data, applications, and infrastructure
  • Oversee technical security operations, including endpoint security (EDR/XDR & MDM), vulnerability management, logging and detection (SIEM, SOAR, threat intelligence, UEBA, CSPM/ASM), data protection (DLP, classification, encryption, backup and governance), application and DevSecOps (SAST/DAST, SBOM, secrets, API and container security), and cloud/infrastructure security (CWPP, IaC scanning, and hybrid/cloud hardening)
  • Develop and implement comprehensive GRC programs addressing risk management, compliance standards(e.g., NIST 800-171, CMMC, ISO, CIS), customer requirements, audit readiness, policy management, and vendor risk
  • Direct incident response, conduct root cause analysis, and implement corrective actions
  • Oversee business continuity and resilience initiatives such as DR automation, tabletop exercises, and cross-team crisis readiness
  • Establish and maintain security metrics, KPIs, and reporting processes
  • Develop and maintain the information security budget, ensuring strategic allocation of resources
  • Stay informed of emerging threats, technologies, and regulatory changes to continuously improve security posture
  • Support internal and external security audits and regulatory inquiries
  • Oversee development and delivery of training and awareness programs to promote a security-conscious workforce

Requirements:

  • Minimum of fifteen (15) years of progressive IT experience, including at least six (6) years in information security roles
  • Bachelor’s degree in computer science, cybersecurity, or related field required
  • advanced degree preferred
  • One or more advanced security certifications required (e.g., CISSP, CISM, CISA, CCSP)
  • Proven experience building and leading security teams
  • Strong knowledge of enterprise security architecture, security operations, GRC frameworks, and risk management
  • Experience with Microsoft O365, Azure AD, virtual networks, firewalls, and modern security toolsets
  • Familiarity with frameworks such as NIST CSF, ISO 27001, CIS Controls, CMMC
What we offer:
  • Medical, dental, vision, life, and disability insurance
  • 401(k) retirement savings plan with company match
  • Paid time off, sick leave, and paid holidays
  • Tuition reimbursement and professional development support
  • Discretionary bonuses and other performance-based incentives
  • Employee Assistance Program (EAP), wellness initiatives, and employee discounts

Additional Information:

Job Posted:
January 16, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
Bowman - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Director, Information Security

Director of Information Security

Jeeves is looking for a visionary and hands-on Director of Information Security ...
Location
Location
Mexico , Mexico City
Salary
Salary:
Not provided
tryjeeves.com Logo
Jeeves
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or a related field
  • Master's degree preferred
  • 10+ years of progressive experience in information security
  • At least 5 years in a leadership or management role, preferably within a B2B SaaS or FinTech environment
  • Proven experience operating in a global organization with a strong understanding of diverse regulatory landscapes across North America, EMEA, and Latin America (Mexico, Colombia, Brazil)
  • Strong understanding of financial industry security regulations and compliance frameworks (e.g., PCI DSS, SOC 2, ISO 27001, NIST Cybersecurity Framework, GDPR, LGPD)
  • Deep technical expertise across a broad range of security domains, including network security, cloud security (AWS, Azure, GCP), application security, data security, identity and access management, and incident response
  • Experience with various security tools and technologies (SIEM, EDR, WAF, DLP, vulnerability scanners, etc.)
  • Excellent communication, interpersonal, and presentation skills, with the ability to articulate complex security concepts to technical and non-technical audiences, including executive leadership
  • Strong analytical and problem-solving skills, with a proactive and pragmatic approach to security
Job Responsibility
Job Responsibility
  • Develop, implement, and maintain a robust global information security strategy aligned with business objectives, regulatory requirements, and industry best practices
  • Lead the evolution of our security roadmap, identifying emerging threats, vulnerabilities, and opportunities for improvement
  • Provide expert guidance and leadership on all aspects of information security to executive management and key stakeholders
  • Oversee the design, implementation, and continuous improvement of security policies, standards, procedures, and guidelines across the organization
  • Manage and mature our security awareness and training programs for all employees
  • Develop and manage the information security budget and resource allocation
  • Establish and maintain an enterprise-wide information security risk management framework, conducting regular risk assessments and managing mitigation plans
  • Ensure compliance with relevant international, regional, and local data privacy and security regulations
  • Lead and coordinate external security audits and assessments
  • Oversee security operations, including vulnerability management, penetration testing, security monitoring, and incident detection and response
  • Fulltime
Read More
Arrow Right

Director of Information Security

We are seeking a Director of Information Security to own our information securit...
Location
Location
United States , Washington, D.C., or New York City, NY
Salary
Salary:
165000.00 - 295000.00 USD / Year
arcadia.com Logo
Arcadia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of prior experience in information security and/or risk management, preferably at a SaaS company
  • 3+ years of management experience
  • Experience working in a fast-paced, startup environment
  • Experience implementing SOC II, GDPR and CCPA compliance
  • Skill with collaboration, mentoring, learning from other engineers, and treating colleagues with empathy and respect
  • Excellent verbal, written and interpersonal communication skills, including the ability to effectively communicate security and risk-related concepts to individuals with technical and non-technical backgrounds
  • Deep knowledge and application of software development and quality assurance methodologies to application and infrastructure delivery
  • Proven track record of designing, launching, and driving successful adoption of company-wide security initiatives and programs
  • Passion for our mission, sustainability, and helping drive a clean-energy future
Job Responsibility
Job Responsibility
  • Define and drive Arcadia’s information security roadmap, strategy, tactics, and execution
  • Lead and mentor a team of security engineers to implement a comprehensive security program
  • Architect programs and processes that evaluate and enhance Arcadia's information security policies through monitoring, remediation, reporting, and auditing
  • Partner with Arcadia’s engineering teams during scoping and execution of all roadmap deliverables to ensure that security concerns are treated as first-class product requirements
  • Respond appropriately and effectively to security-related incidents and report back to key internal and external stakeholders
  • Participate in externally requested security audits from partners
  • Lead efforts to periodically review and update information security and privacy policy best practices across the company
  • Work with a leading policy team on developing regulatory structures around utility data access and security
  • Oversee and coordinate security efforts across the company alongside Engineering, IT, HR, Product, Legal, and more
  • Stay up to date with IT/Security industry trends and evaluate new solutions & techniques
What we offer
What we offer
  • "Remote first" culture - work anywhere in the US as long as you have a reliable internet connection
  • Flexible PTO - no accrued hours and no limit on the number of vacation days exempt employees can take each year
  • 17 annual company-wide holidays, including a week-long "summer break"
  • 10 days sick leave
  • Up to 4 weeks bereavement leave
  • 2 volunteer days off
  • 2 professional development days off
  • 12 weeks paid parental leave for all parents
  • 80-95% employer cost coverage for medical, dental, and vision benefits for employees and dependents
  • A supportive engineering culture that values diversity, empathy, teamwork, trust, and efficiency
  • Fulltime
Read More
Arrow Right

Director of Security

Jeeves is looking for a visionary and hands-on Director of Information Security ...
Location
Location
Brazil , São Paulo
Salary
Salary:
Not provided
tryjeeves.com Logo
Jeeves
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or a related field
  • Master's degree preferred
  • 10+ years of progressive experience in information security
  • At least 5 years in a leadership or management role, preferably within a B2B SaaS or FinTech environment
  • Proven experience operating in a global organization with a strong understanding of diverse regulatory landscapes across North America, EMEA, and Latin America (Mexico, Colombia, Brazil)
  • Strong understanding of financial industry security regulations and compliance frameworks (e.g., PCI DSS, SOC 2, ISO 27001, NIST Cybersecurity Framework, GDPR, LGPD)
  • Deep technical expertise across a broad range of security domains, including network security, cloud security (AWS, Azure, GCP), application security, data security, identity and access management, and incident response
  • Experience with various security tools and technologies (SIEM, EDR, WAF, DLP, vulnerability scanners, etc.)
  • Excellent communication, interpersonal, and presentation skills, with the ability to articulate complex security concepts to technical and non-technical audiences, including executive leadership
  • Strong analytical and problem-solving skills, with a proactive and pragmatic approach to security
Job Responsibility
Job Responsibility
  • Develop, implement, and maintain a robust global information security strategy aligned with business objectives, regulatory requirements, and industry best practices
  • Lead the evolution of our security roadmap, identifying emerging threats, vulnerabilities, and opportunities for improvement
  • Provide expert guidance and leadership on all aspects of information security to executive management and key stakeholders
  • Oversee the design, implementation, and continuous improvement of security policies, standards, procedures, and guidelines across the organization
  • Manage and mature our security awareness and training programs for all employees, fostering a security-conscious culture
  • Develop and manage the information security budget and resource allocation
  • Establish and maintain an enterprise-wide information security risk management framework, conducting regular risk assessments and managing mitigation plans
  • Ensure compliance with relevant international, regional, and local data privacy and security regulations
  • Lead and coordinate external security audits and assessments, facilitating responses to findings and ensuring timely remediation
  • Oversee security operations, including vulnerability management, penetration testing, security monitoring, and incident detection and response
  • Fulltime
Read More
Arrow Right

Director, Product Security

We are a global team of innovators and pioneers dedicated to shaping the future ...
Location
Location
United States , Portland
Salary
Salary:
224000.00 - 280000.00 USD / Year
newrelic.com Logo
New Relic
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of technical hands-on security experience or security program management
  • Deep Engineering Background: Substantial, hands-on experience in software engineering and development roles prior to, or integrated with, security leadership
  • Demonstrated ability leading multiple managers and teams
  • SaaS Product Delivery Experience: Proven track record of securing rapidly scaling SaaS products delivered on cloud platforms
  • Strong product security program planning, project management, and execution skills
  • DevSecOps Mastery: Extensive, practical experience designing and implementing advanced DevSecOps toolchains and methodologies
  • A background involving open-source security, vulnerability disclosure, SaaS cloud security technologies, product incident response, and a deep understanding of risk and threat assessments
  • Experience identifying and resolving potential security issues involving compliance, mergers and acquisitions, and regulatory issues as related to Software as a Service (SaaS)
  • Demonstrated communication skills with detailed, technical information in a manner comprehensible by individuals at varying degrees of experience and skill level
Job Responsibility
Job Responsibility
  • Work closely with the CISO to provide leadership for product security strategy execution, product security architecture, and the secure engineering ecosystem
  • Help build and deliver on the CISO's vision for the growth of information security programs such as SDLC, audit logging, product security standards, security testing, and bug bounties
  • Own and Execute the Product Security Strategy, defining a clear, actionable roadmap that aligns with business goals and reduces organizational risk
  • Act as the principal security advisor to Engineering and Product leadership, translating high-level product strategy into technical security requirements and engineering practices
  • Drive DevSecOps Adoption by architecting and leading the implementation of our DevSecOps program, integrating security testing, validation, and controls seamlessly into the CI/CD pipeline
  • Leverage deep experience with a broad range of development, build, and deploy systems (e.g., Jenkins, GitLab CI, Kubernetes) to identify and eliminate security friction points
  • Design, implement, and run an effective Product Vulnerability Management lifecycle, from automated scanning and triage to developer remediation and verification
  • Work directly with development teams to improve and scale secure coding practices, focusing on developer experience and automation
  • Feed and grow a global security organization that motivates team members to face challenges and deliver significant work
  • Coach and mentor managers and team members by understanding their career goals and providing opportunities for professional growth
What we offer
What we offer
  • Corporate bonus plan
  • Healthcare
  • Dental
  • Vision
  • Parental leave and planning
  • Mental health benefits
  • 401(k) plan and match
  • Flex time-off
  • 11 paid holidays
  • Volunteer time-off
  • Fulltime
Read More
Arrow Right

Assistant Director, Information Technology

The Assistant Director of Information Technology at The St. Regis Macao will man...
Location
Location
Macao , Macao
Salary
Salary:
Not provided
https://www.marriott.com Logo
Marriott Bonvoy
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS/BA or equivalent work experience
  • 5-7 years’ experience in like position
  • System-related professional certifications preferred
  • Previous management experience and demonstrated matrix management skills
  • Experienced in network hardware, desktop, peripherals, protocols, communications, operating systems and Marriott internal applications (MARSHA, PMS, NGS, SFA, etc.)
Job Responsibility
Job Responsibility
  • Functions as on-site project manager who plans and manages both new systems and system upgrades for property site
  • Performs assessments of needs ensuring compliance with budget, standards
  • Determines priorities, schedules, plans and necessary resources to ensure completion of property projects on schedule and according to specification
  • Prepares project plans and monitors on-site
  • Coordinates multiple-vendor projects
  • Verifies compliance to technology-related vendor contracts
  • Responsible for property compliance with appropriate Marriott International Policy and Information Security Manual
  • Provides timely, accurate, and detailed status reports as requested
  • Evaluates and makes recommendations regarding technology/asset life-cycles
  • Certifies software applications for use at property
What we offer
What we offer
  • Equal opportunity employer
  • Inclusive, people-first culture
  • Fulltime
Read More
Arrow Right

Consulting Director, Cloud Security, Proactive Services

The Consulting Director will help drive Proactive Consulting Services across the...
Location
Location
United States , Santa Clara
Salary
Salary:
183000.00 - 252000.00 USD / Year
paloaltonetworks.it Logo
Palo Alto Networks Italia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience performing cloud security advisement and risk assessments based upon industry-accepted standards
  • 6+ years of professional services and consulting experience and 3+ years of Director (or and equivalent Senior Manager) experience leading consulting delivery teams is highly preferred
  • Experience managing a diverse team of business and technical consultants
  • Cloud Security-related certifications preferred
  • Hands-on experience with a cloud hosting provider (AWS, Azure, GCP, etc.)
  • Deep experience within the cloud native application protection platform (CNAPP) technology or advisory/consulting space
  • Strong fluency in the application of Virtual Machines, SaaS, IaaS, PaaS, FaaS and other public cloud technical infrastructure concepts
  • Possess a deep technical knowledge in Cloud Platforms and the dependencies around such an environment (WAF, SSO, Cloud Threats, API Security, Cloud Security Posture Management)
  • Former experience with cloud migrations (cloud to cloud, or on-prem to cloud)
  • Knowledge of the technical nuances related to SD-WAN and SASE solutions and their application to Cloud Environment access solutions
Job Responsibility
Job Responsibility
  • Serve as a key contributor to the development, maturation, and innovation of Unit 42’s cloud security consulting services
  • Lead and deliver complex cloud security assessments covering architecture, configuration, identity, monitoring, and threat detection across AWS, Azure, GCP, and hybrid/multi-cloud environments
  • Evaluate cloud network architectures, including perimeter protections, VPC/VNet segmentation, API gateways, ingress/egress controls, and cloud-native security services
  • Analyze cloud logging, telemetry, and monitoring coverage
  • identify gaps in detection and alerting
  • and provide actionable recommendations to improve visibility, SIEM/XDR integration, and threat-hunting effectiveness
  • Assess cloud identity and access management (IAM) design, including federation, least privilege models, role delegation, conditional access, privilege escalation paths, and MFA enforcement across cloud providers
  • Utilize cloud-native CLIs, SDKs, and APIs to perform deep technical validation of configurations, controls, and security posture
  • Assess multi-cloud and hybrid-cloud deployments by reviewing interoperability, dependencies, and security impacts between cloud services and on-prem infrastructure
  • Develop strategic cloud security roadmaps that align technical recommendations with a client’s broader business objectives, resource constraints, and long-term security transformation initiatives
What we offer
What we offer
  • FLEXBenefits wellbeing spending account with over 1,000 eligible items selected by employees
  • mental and financial health resources
  • personalized learning opportunities
  • may include restricted stock units and a bonus
Read More
Arrow Right

Director of Information Technology

Industrial Defender is seeking a seasoned Director of Information Technology to ...
Location
Location
United States , Foxboro
Salary
Salary:
150000.00 - 175000.00 USD / Year
industrialdefender.com Logo
Industrial Defender
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Technology, Computer Science, or related field
  • 7–10+ years of progressive IT experience, including 3+ years in a leadership role
  • Experience managing data center operations, network infrastructure, and enterprise security
  • Strong knowledge of SOC 2 and related compliance frameworks
  • prior audit management required
  • Proven ability to manage third-party vendors and service providers
  • Strong understanding of cybersecurity best practices and IT risk management
  • Excellent communication, leadership, and interpersonal skills
  • Ability to work on-site in Foxboro, MA
Job Responsibility
Job Responsibility
  • Oversee all aspects of Industrial Defender’s local and colocated data centers, ensuring availability, performance, and security
  • Manage the design, implementation, and maintenance of IT systems including servers, networks, communication systems, storage, hardware, and cloud resources
  • Maintain and optimize endpoint management, identity access management, and enterprise security tooling
  • Ensure business continuity and disaster recovery plans are current, tested, and effective
  • Own and maintain Industrial Defender’s SOC 2 compliance program, including documentation, evidence collection, control implementation, and coordination with external auditors
  • Define, implement, and enforce IT policies, standards, and procedures aligned with organizational and regulatory requirements
  • Protect Industrial Defender’s web presence, office IT environment, and internal systems from unauthorized access, cyber threats, and vulnerabilities
  • Lead ongoing efforts in vulnerability management, incident response, and cybersecurity best practices
  • Manage all third-party technology relationships, including contract negotiation, performance management, and service delivery outcomes
  • Evaluate new vendor solutions and technologies to support business objectives while optimizing cost and operational efficiency
  • Fulltime
Read More
Arrow Right

Assistant Director of Security and Safety

Assists the Director of Loss Prevention in managing the daily functions of the d...
Location
Location
United States , San Antonio
Salary
Salary:
62000.00 - 89000.00 USD / Year
https://www.marriott.com Logo
Marriott Bonvoy
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High school diploma or GED
  • 4 years experience in the security/loss prevention or related professional area
  • OR 2-year degree from an accredited university in Criminal Justice or related major
  • 2 years experience in the security/loss prevention or related professional area
Job Responsibility
Job Responsibility
  • Assists the Director of Loss Prevention in managing the daily functions of the department
  • Maintains logs, certifications, and documents required by law and Standard Operating Procedures
  • Trains staff in established emergency procedures and implements accident and fire prevention procedures
  • Supervises security staff to effectively monitor and protect property assets
  • Handles complaints, settling disputes, and resolving grievances and conflicts
  • Implements action plans to monitor and control risk
  • Reports any procedure violations to the Director of Loss Prevention and appropriate management
  • Strives to improve service performance
  • Celebrates successes and publicly recognizes the contributions of team members
  • Communicates critical information to Loss Prevention officers
What we offer
What we offer
  • Bonus program
  • Comprehensive health care benefits
  • 401(k) plan with up to 5% company match
  • Employee stock purchase plan at 15% discount
  • Accrued paid time off (including sick leave where applicable)
  • Life insurance
  • Group disability insurance
  • Travel discounts
  • Adoption assistance
  • Paid parental leave
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy