Berkley

SVP, Head of Security Technology

Berkley$150K — $200K *
Information Technology
11 - 15 years of experience
Job Overview by Ladders

Qualifications

  • 15+ years of experience in cybersecurity, including 5+ as a senior security architect
  • Progressive experience in technical security leadership roles
  • Proven track record in modernizing security organizations through tool consolidation and automation
  • Expertise in cloud-native security, Zero Trust, IAM, and CTEM practices
  • Experience integrating cybersecurity with AI/ML technologies
  • Strong strategic thinking and decision-making capabilities
  • Experience managing budgets and large-scale security programs

Responsibilities

  • Lead strategic execution across a multidisciplinary security team
  • Define and implement enterprise security architecture strategies and standards
  • Establish automation-first operations across security platforms
  • Oversee Identity and Access Management (IAM) policies and governance
  • Transform and unify security functions through Continuous Threat and Exposure Management (CTEM)
  • Embed security principles into software development lifecycles
  • Deliver measurable outcomes linked to security effectiveness and risk reduction

Benefits

  • Support in achieving measurable risk reduction and operational efficiency
  • Opportunity to shape a global operating model for security technology
  • Exposure to advanced AI and automation strategies in cybersecurity
  • Collaboration with executive leadership and board-level reporting
  • Participation in continuous improvement practices in cutting-edge security domains
Full Job Description
Responsibilities

The SVP, Head of Security Technology, leads the modernization and delivery of the enterprise's core cybersecurity technology capabilities through an AI-enabled, automation-first, engineering-led model. This role reports to the CISO.

This role is accountable for evolving and integrating:

  • Security Architecture

  • Security Engineering

  • Identity and Access Management (IAM)

  • Continuous Threat and Exposure Management (CTEM)

The position transforms legacy, siloed security functions (e.g., vulnerability management, attack surface management, application security) into a scalable, intelligence-driven security ecosystem that:

  • Reduces enterprise risk through engineering and automation

  • Embeds security into enterprise architecture and technology platforms

  • Strengthens identity lifecycle governance and compliance

  • Enables continuous, risk-based exposure management

  • Improves efficiency, control effectiveness, and compliance readiness

  • Drives alignment between cybersecurity capabilities and business risk priorities, ensuring security investments directly support enterprise resilience, customer trust, and growth objectives

Responsibilities

Report to the CISO and lead the strategic execution across a team of security directors, managers, architects, engineers and analysts across multiple security technology disciplines.

Security Architecture

  • Define enterprise security architecture strategy, standards, and roadmaps

  • Embed secure-by-design principles across cloud, applications, data, and AI

  • Establish reusable design patterns and reduce exception-based approvals

  • Integrate security into transformation and modernization efforts

  • Lead Zero Trust security architecture strategy and adoption across identity, network, application, and data layers

  • Establish reference architectures for multi-cloud and hybrid environments, including CNAPP, CIEM, and data protection controls

Security Engineering

  • Lead engineering and lifecycle management of security platforms and controls

  • Establish automation-first operations (API, orchestration, policy-as-code)

  • Standardize tooling and reduce manual processes through automation

  • Improve platform resilience, telemetry, and service performance

  • Transition to a product and platform-based security engineering model with defined service ownership, SLAs, and performance metrics

  • Drive rationalization of security tools and vendors to reduce cost and complexity while improving capability coverage

Identity and Access Management (IAM) - User Administrative Lifecycle Scope

  • Lead and own overarching IAM strategy and lifecycle governance, including:

    • Provisioning (joiners), Access changes (movers), De-provisioning (leavers)

    • Enhance user access reviews and certifications

    • Implement, enhance and automate segregation of duties (SoD) monitoring and governance

    • Design and implement role and entitlement management capabilities

    • Enable access-related compliance and audit readiness in preparation for continuous control monitoring and assessment in alignment with Governance Risk and Control Function

  • Ensure least privilege, timely access removal, and reduction of orphaned accounts

  • Integrate IAM with HR, applications, and enterprise platforms

  • Enhance privileged access management and management of non-human identities in preparation for advanced agentic AI capabilities

  • Advance privileged access, machine identity, and non-human identity security in support of automation, cloud, and AI use cases

  • Implement identity-centric Zero Trust controls and continuous authentication models

Continuous Threat and Exposure Management (CTEM)

  • Transform vulnerability, attack surface, and application security into a unified CTEM function

  • Implement continuous, threat-informed prioritization of exposures

  • Align findings to asset criticality and business risk

  • Improve remediation effectiveness and reduce exploitable attack paths

  • Enhance asset visibility, ownership clarity, and dependency mapping

  • Partner with Security Operations and Security Incident and Response functions to coordinate a unified approach across teams

  • Establish attack path analysis and exploitability-based risk prioritization to reduce material exposure

  • Define measurable outcomes such as reduction in attack surface, time-to-remediation, and control effectiveness

AI and Automation Enablement

  • Deploy AI and analytics to improve prioritization and decision-making

  • Automate repetitive security processes and control validation

  • Enhance reporting, telemetry, and audit evidence generation

  • Partner with Head of Security AI to establish secure AI lifecycle practices, including model governance, data protection, prompt security, and third-party AI risk management

  • Partner with Head of Security Operations to leverage AI to enhance threat detection, anomaly identification, and predictive risk analytics

DevSecOps and Secure Development

  • Embed security into the software development lifecycle (SDLC), CI/CD pipelines, and developer workflows

  • Partner with engineering teams to implement scalable DevSecOps practices and developer-friendly security tooling

Operating Model, Leadership and Other Requirements

  • Establish a global operating model with clear accountability, service ownership, and capability maturity roadmaps

  • Develop business cases tied to measurable risk reduction, operational efficiency, and cost optimization

  • Partner with executive leadership and provide board-level reporting on security posture, risk trends, and investment impact

  • Technology first leader with very strong interpersonal skills with demonstrated ability to build and maintain strong relationships and partnerships vertically and horizontally across a mix of business, technology, legal, HR, risk and audit leaders and practitioners

  • Establish a product- and platform-based security technology operating model

  • Define core requirements that evidence demonstrable risk reduction and can be measured using KPIs/KRIs in conjunction with the metrics and analytics program

  • Drive roadmap, investment prioritization, and tool rationalization

  • Drive budgetary discipline through management of finances, including the build of defendable business cases

  • Lead and develop high-performing, multi-disciplinary teams in a positive and respectful capacity leading to high engagement across all disciplines

  • Organically improve the security posture of the organization by ensuring the incorporation of secure principles into every phase of the design, development, deployment, and operation of systems and solutions

  • Assess current environment and design a target state architecture with all accompanying diagrams and documentation as required by architecture teams

  • Provide top-level support as needed on security and operational related issues

  • Represent information security interests on various project teams and special assignments as directed

  • Active in a continuous improvement of the existing process, methodologies, technologies and practices

  • Provide top-level on-call support as required for this type of role, which is factored into the compensation for this role

Resilience and Risk Integration

  • Partner with Security Operations and Incident Response to improve cyber resilience, recovery readiness, and crisis response integration

  • Ensure alignment with enterprise risk management and regulatory expectations through continuous control monitoring

Qualifications
  • 15+ years9 experience in a cybersecurity role with at least 5 as head of senior most security architect
  • Previousand progressiveexperience in a technicalsecurityleadership position.
  • Demonstrated experience modernizing security organizations (tool consolidation, automation, operating model redesign)
  • Strongexpertisein cloud-native security, Zero Trust, IAM, and CTEM practices
  • Experience integrating cybersecurity with AI/ML technologies and governance frameworks
  • Strong strategic thinking and decision-making capabilities
  • Experience managing budgets, vendors, and large-scale programs
  • Track recordof delivering measurable improvements in risk reduction, efficiency, and security posture
  • Disciplined thinker with structured approach to security architecture and strategic planning
  • Inherent intellectual capability and curiosity to learn complex processes.
  • Proven thought leadership, strategicthinkingand decision-making.
  • Must have strong analytical and problem-solving skills with the capability toidentifysolutions to unusual and complex problems.
  • CISSP certification isstronglypreferred
  • Directsecurity relatedAI, networking,infrastructure,cloud, operating system,development, cloud, databaseexperience isrequired
  • Must be able todemonstrateproficiencyin a wide range of security technologies, embedded security, and network platforms 6in a global institution
  • Ability to balance multiple priorities inhighpressure situations
  • Project,portfolioand resourcemanagement experience isrequired
  • Must be willing to travel (Domestic and International) as required, but not to exceed 30-40%

Education Requirement:

BachelorsDegree in Computer Science, Information Technology, Information Systems, ora relateddiscipline. Equivalent experience and/or alternative qualifications will be considered.

Additional Company DetailsWe do not accept unsolicited resumes from third party recruiting agencies or firms. Additional RequirementsLocation and Travel:  Primary location Wilmington, DE.  Travel: Domestic and international travel up to 30 640% as required. Sponsorship DetailsSponsorship not Offered for this Role

About Berkley

Berkley is a packaging company that develops innovative solutions to help our customers sell more product and be on the edge. Berkley offers the cost advantages and creative control of an in house/on site agency without the risk and hassle of oversight. Berkley develops turnkey retail environments – including design, manufacturing and installation services.

Berkley Careers

Joining Berkley presents a prime opportunity to be part of a team renowned for its leadership in the industry, fostering innovation and growth. Berkley, a company committed to professional excellence and diversity, offers a range of job opportunities that cater to various skills and career aspirations.

Explore Job Opportunities

Berkley is actively hiring, seeking individuals who are passionate, driven, and ready to contribute to a dynamic team environment. With a variety of positions available, Berkley provides a platform for professionals at every stage of their career, from entry-level to senior leadership roles.

Internship Programs

Kickstart a career with Berkley through comprehensive internship programs designed to provide hands-on experience in a real-world setting. Internships at Berkley are a gateway to full-time employment, offering invaluable industry exposure and networking opportunities.

Professional Growth and Development

Berkley is dedicated to the continuous professional development of its team members. The company supports career advancement through leadership training programs, workshops, and seminars that enhance skills and foster innovation.

Diversity and Inclusion

At Berkley, diversity is celebrated and actively promoted through various initiatives and diversity training programs. The company believes that a diverse workforce is key to driving creativity and innovation.

Benefits and Culture

Employees at Berkley enjoy a range of benefits designed to support their professional and personal lives. The company culture emphasizes teamwork, respect, and integrity, creating an environment where everyone can thrive.

Applying for a Position

To apply for a position at Berkley, candidates are encouraged to submit a resume that highlights relevant experience and skills. The interview process is designed to assess not only professional qualifications but also a candidate's fit with Berkley's culture and values.

Stay Connected with Berkley Careers

For those interested in joining Berkley, staying updated on new job openings and company news is easy. Subscribe to receive tailored job alerts and read the latest insights on career development and industry trends.

Join Berkley

Discover the career opportunities waiting at Berkley. Search for open positions that match your skills and interests. Berkley is looking for curious, creative, and solution-driven team players ready to make an impact.

SEARCH BERKLEY JOBS

Read Careers Blog

Stay informed with career tips, insider perspectives, and industry-leading insights from Berkley professionals. Use this knowledge to enhance your resume, prepare for interviews, and understand the job market landscape.

Job Alert Emails

Personalize your subscription to receive job alerts and insider tips tailored to your preferences from Berkley. Explore the exciting and rewarding career opportunities that await.

READ CAREERS BLOG

Learn more about Berkley
Size
51 employees
Industry

Similar Jobs

More Jobs at Berkley

  • Berkley
    SVP, Head of Security Technology
    $150K — $200K *
    Wilmington, DE 19805 (New Castle County)
    Information Technology
    In-Person
  • Berkley
    Director, Actuarial
    $100K — $130K *
    Lawrenceville, GA 30043 (Gwinnett County)
    Finance & Insurance
    In-Person
  • Berkley
    Sr. Technology Underwriter
    $120K — $150K *
    Naperville, IL 60540 (Dupage County)
    Finance & Insurance
    In-Person
  • Berkley
    Senior Underwriter
    $75K — $95K *
    Scottsdale, AZ 85254 (Maricopa County)
    Finance & Insurance
    In-Person
  • Berkley
    Claims Examiner
    $75K — $95K *
    Jacksonville, FL 32210 (Duval County)
    Finance & Insurance
    In-Person

More Information Technology Jobs

Find similar SVP, Head of Security Technology jobs: