The Director, Infrastructure and Security will be a pivotal leader responsible for the overall strategy, design, implementation, and operations of our company's IT infrastructure and cybersecurity programs. This role requires a highly experienced and technically proficient individual with strong leadership skills to build, mentor, and manage a high-performing team. The successful candidate will ensure the reliability, scalability, and security of all IT systems, supporting the company's strategic objectives and protecting its assets from evolving cyber threats.
Key Responsibilities:
Infrastructure:
- Develop and execute a comprehensive infrastructure strategy aligned with business goals, including cloud, on-premises, and hybrid environments.
- Oversee the design, implementation, and maintenance of all networks, servers, storage, and data center operations.
- Ensure high availability, performance, and disaster recovery capabilities for critical IT systems.
- Manage infrastructure projects from planning and design through implementation and optimization.
- Evaluate and recommend new technologies and solutions to improve efficiency, performance, and cost-effectiveness.
- Develop and maintain robust monitoring, alerting, and reporting systems for infrastructure health.
- Manage vendor relationships and service level agreements (SLAs) for infrastructure-related services.
- Oversee IT asset management for hardware and software.
Security:
- Establish and lead the company's cybersecurity strategy, policies, and procedures.
- Develop, implement, and maintain a comprehensive information security program to protect company data, systems, and intellectual property.
- Lead incident response planning, execution, and post-mortem analysis.
- Ensure compliance with relevant security regulations, standards, and frameworks (e.g., ISO 27001, NIST, SOC 2).
- Implement and manage security technologies such as SIEM, EDR, firewalls, intrusion detection/prevention systems, and identity and access management (IAM) solutions.
- Develop and deliver security awareness training for all employees.
- Stay current with emerging security threats, vulnerabilities, and industry best practices.
Leadership & Management:
- Lead, mentor, and develop a team of infrastructure and security professionals.
- Foster a culture of continuous improvement, innovation, and security awareness within the IT department and across the organization.
- Manage the Infrastructure and Security budget, ensuring optimal resource allocation.
- Collaborate effectively with other departments (e.g., Construction, Accounting, HR, Safety) to ensure IT infrastructure and security support business needs.
- Communicate complex technical concepts to non-technical stakeholders clearly and concisely.
- Develop and report on key performance indicators (KPIs) for infrastructure and security.
Qualifications:
- Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field; Master's degree preferred.
- 10+ years of progressive experience in IT infrastructure and security roles, with at least 5 years in a leadership/management position.
- Proven experience in designing, implementing, and managing complex IT infrastructure, including cloud platforms (e.g., AWS, Azure, GCP), virtualization, networking, and storage.
- Deep understanding of cybersecurity principles, frameworks (e.g., NIST, ISO 27001), and best practices.
- Hands-on experience with various security technologies (e.g., firewalls, IDS/IPS, SIEM, EDR, IAM).
- Strong knowledge of networking protocols and security (TCP/IP, DNS, VPNs, routing, firewalls).
- Experience with disaster recovery planning and business continuity.
- Excellent leadership, communication, and interpersonal skills.
- Ability to manage multiple projects simultaneously and prioritize effectively in a fast-paced environment.
- Relevant certifications highly desirable (e.g., CISSP, CISM, CCSP, PMP).