Director, Information Security

Win at Wilsonart

At Wilsonart, we don’t just make surfaces—we build careers. When you join our team, you become part of something bigger: a company driven by innovation, grounded in values, and powered by people who care.

You’ll be surrounded by teammates who take pride in their work and look out for one another. You’ll have the chance to learn, grow and make a real impact. And you’ll be part of a company that believes winning means helping you succeed at work and in life.

Here, you’ll win with:

Support that keeps you well

• Medical, dental, and life insurance

• Company-paid short- and long-term disability

• FSAs and dependent care options

• Vision and legal benefits

• Gym discounts and wellness clinics

• Tuition reimbursement—for you and your dependents

Opportunities to grow

• Clear paths to promotion and internal mobility

• Training, coaching, and mentorship

• Development programs to support your goals

Time for what matters

• Paid vacation and holidays in your first year

• A culture that respects work-life balance

We’re looking for people who are ready to learn, ready to lead and ready to make a difference. If that sounds like you, you can win at Wilsonart.

Job Description

The Director, Information Security is a strategic and operational leader responsible for establishing and maintaining a robust enterprise-wide information security program. Reporting to the Chief Information Officer (CIO), they will safeguard Wilsonart’s digital assets, systems, and data by driving a comprehensive cybersecurity strategy, ensuring compliance with industry standards, and managing evolving risk across a global technology footprint. This role requires a proactive leader with proven success in building enterprise-grade security architectures and fostering a culture of security awareness.

Key Responsibilities

• Oversee all aspects of cybersecurity governance, architecture, operations, and incident response across cloud, on-premises, and hybrid environments.

• Lead the development, implementation, and enforcement of enterprise-wide security policies, standards, and procedures.

• Ensure regulatory compliance with data privacy and cybersecurity laws (e.g., GDPR, CCPA) and industry frameworks (e.g., NIST, ISO 27001).

• Direct vulnerability management, threat intelligence, and security operations center (SOC) performance to proactively identify and mitigate risks.

• Collaborate with IT, Legal, HR, and business stakeholders to drive enterprise risk management and ensure alignment on security initiatives.

• Lead the response to security incidents, including investigation, remediation, communication, and post-incident reviews.

• Provide regular reporting to the CIO and Executive Leadership Team on security posture, risks, and mitigation efforts.

• Champion security awareness and training programs to strengthen employee vigilance and minimize risk exposure.

Leadership Capabilities

• Risk Strategist: Balances business growth with proactive risk identification and mitigation strategies.

• Cybersecurity Authority: Deep expertise in security technologies, cyber threats, and regulatory frameworks.

• Collaborative Leader: Works seamlessly with business, legal, and IT leaders to align security with enterprise priorities.

• Change Agent: Effectively leads cultural and technical change to elevate security maturity across the organization.

• Communicator: Articulates complex cybersecurity issues and solutions in clear, actionable terms for technical and executive audiences.

• Resilient & Agile: Maintains composure and decisiveness in high-pressure scenarios, including breach response.

Preferred Experience

• 10 years of experience in information security, plus progressive leadership in CS roles.

• Proven track record of designing and implementing enterprise-wide cybersecurity programs.

• Expertise in threat intelligence, vulnerability management, incident response, and security architecture.

• Experience with global regulatory compliance and audits, including third-party risk management.

• Background in securing cloud-native platforms, OT/IoT systems, and enterprise applications.

• Professional certifications such as CISSP, CISM, CISA, or equivalent.

• Strong executive presence and ability to influence across functions and levels of the organization.