Senior Director of Security

Lawrence Harvey has partnered with a renewable energy company, currently operating in multiple states and providing clean wind and solar alternatives, to expand their cybersecurity team.

We are searching for a Cybersecurity Leader with a passion for renewable energy and a background in OT security. This position will oversee the security strategy and overall framework, implement controls to mitigate risks, and collaborate with other stakeholders across the business to ensure secure operations of external OT assets and internal cloud-native infrastructure.

Responsibilities:

Create and oversee a security operations framework, which involves crafting and updating security protocols, monitoring systems, conducting investigations, performing penetration tests, and managing incident responses.

Aid in the maintenance and building of Business Continuity Plan and Disaster Recovery Plan for both Information Technology (IT) and Operational Technology (OT) domains.

Secure assets hosted in cloud-native platforms, such as: AWS, Azure or GCP

Assess the security risk and maturity assessment to craft a security strategy aimed at bolstering security measures and minimizing risks.

Adhere to standards and compliance frameworks such as NERC, SIP, SOX, and privacy regulations

Lead a team of technical engineers - develop growth roadmaps, coach and mentor, recruit more talent when needed

Build and oversee the security awareness program, cyber risk assessments and vulnerability management initiatives

Technical Skills Desired:

10+ years in a cybersecurity related position

Experience building a security roadmap and strategy for an enterprise level company

Knowledgeable with securing public cloud platforms: Amazon Web Services, Microsoft Azure, or Google Public Cloud

Comprehensive expertise in security solutions and providers, with recent experience in Microsoft security suite and infrastructure technologies

Working knowledge of security frameworks for the specific OT industry, such as: NERC, CIP, ISO 27001, NIST CSF

Experience in industrial control systems, building security strategy (e.g. SCADA and EMS)

Working knowledge of computer networking concepts and protocols, as well as network security methods, including how to configure firewalls, routers, and switches

Experience building and leading a team of professionals

Strong communication skills, ability to present to C-level executives and the board

Nice to Have:

CISSP, CRISC, CISA

Energy, renewable, oil & gas experience

Our client is unable to transfer an existing visa at this moment.

No C2C for this position.