Head of Cyber Security

• Develop, execute, and continually improve the organization’s cybersecurity strategy and operational plans in alignment with business objectives and risk appetite.
• Establish, maintain, and enforce security policies, standards, and procedures.
• Track and report cybersecurity metrics to the CIO and other stakeholders.

• Collaborate with IT, business, data, and operational leaders to ensure security supports business initiatives and digital transformation.
• Advise on M&A security due diligence and post-merger integration, ensuring security processes scale with business growth.
• Advise on security requirements for new projects, technologies, and products.

• Lead regular risk assessments, vulnerability management, and remediation efforts.
• Ensure compliance with relevant regulatory, industry, and internal standards (e.g., NIST, ISO 27001, PCI-DSS, GDPR, HIPAA).
• Support internal and external audit processes as well as vendor risk assessment.

• Oversee day-to-day security operations, including threat detection, monitoring, and response.
• Maintain and mature the incident response plan, lead investigations and coordinate response to security incidents.
• Conduct root cause analysis and drive corrective actions.

• Manage identity and access management (IAM) and privileged access controls.
• Implement and maintain data protection controls, including data classification, encryption, and DLP.

• Develop and deliver security awareness training to employees at all levels.
• Foster a security-conscious culture across the organization.

• Oversee the selection, evaluation, and management of security vendors and tools (e.g., SIEM, EDR, IAM, DLP, SOAR, cloud security platforms).
• Manage vendor relationships, contracts, and performance to ensure optimal support for security operations.
• Engage with external security communities and establish the organization's thought leadership.

• Leveraging Encore Core Fundamentals, lead, coach, and develop a team of security professionals.
• Set clear goals, provide ongoing feedback, and offer professional development opportunities.
• Benchmark and measure program and team maturity to drive a roadmap of continuous security and professional development.

• 
  Education: Bachelor’s degree in Information Security, Computer Science, Information Technology, or related field.
• Experience: 7+ years in cybersecurity roles, with at least 2 years in a supervisory or team lead capacity.
• Certifications: CISSP, CISM, or equivalent strongly preferred.
• Technical Skills: Strong knowledge of enterprise security operations, tools, and best practices.
• Leadership: Demonstrated ability to lead teams, drive projects, and collaborate across business and technical functions.
• Communication: Excellent written and verbal communication skills; able to convey technical issues to non-technical audiences.

• 
  Competitive Salary: Compensation commensurate with your experience, with the opportunity to earn performance-based bonuses tied to your personal effectiveness and contributions to the team.
• Purpose-Driven Work Environment: We believe in working smarter, not harder. You’ll be part of a culture that values results, and we empower our team to focus on impactful work.
• Flexible Dress Code: Upon joining, you’ll receive branded Encore gear and we believe in dressing for the objective, not the occasion. Most days, you can enjoy a casual work environment, but we’ll dress up when the situation calls for it.
• Innovative Culture: We encourage a culture of experimentation and improvement. You’ll have the freedom to express your ideas and be part of a company that is always looking to improve and grow.
• Tools for Success: Access to leading-edge web-based productivity tools.
• Health and Wellness: Comprehensive medical, dental, and vision coverage through Blue Cross to keep you and your family healthy.
• Retirement Planning: Participation in our Fidelity 401(k) plan with a company match, helping you save for your future.
• Life Insurance: Company-paid life insurance policy of $50,000 to give you peace of mind.

Encore Fire Protection is an Equal Opportunity Employer.

Encore Fire Protection is an E-Verify Employer.

As an EEO/AA employer, Encore Fire Protection considers applicants for employment without regard to, and does not discriminate based on gender, sex, sexual orientation, gender identity, national origin, age, race, protected veteran status, disability, or any other legally protected status.

#LI-LP1