Senior Director of Security - Houston, United States - Lawrence Harvey

    Lawrence Harvey
    Lawrence Harvey Houston, United States

    2 weeks ago

    Default job background
    Description

    Lawrence Harvey has partnered with a renewable energy company, currently operating in multiple states and providing clean wind and solar alternatives, to expand their cybersecurity team.

    We are searching for a Cybersecurity Leader with a passion for renewable energy and a background in OT security. This position will oversee the security strategy and overall framework, implement controls to mitigate risks, and collaborate with other stakeholders across the business to ensure secure operations of external OT assets and internal cloud-native infrastructure.

    Responsibilities:

    • Create and oversee a security operations framework, which involves crafting and updating security protocols, monitoring systems, conducting investigations, performing penetration tests, and managing incident responses.
    • Aid in the maintenance and building of Business Continuity Plan and Disaster Recovery Plan for both Information Technology (IT) and Operational Technology (OT) domains.
    • Secure assets hosted in cloud-native platforms, such as: AWS, Azure or GCP
    • Assess the security risk and maturity assessment to craft a security strategy aimed at bolstering security measures and minimizing risks.
    • Adhere to standards and compliance frameworks such as NERC, SIP, SOX, and privacy regulations
    • Lead a team of technical engineers - develop growth roadmaps, coach and mentor, recruit more talent when needed
    • Build and oversee the security awareness program, cyber risk assessments and vulnerability management initiatives

    Technical Skills Desired:

    • 10+ years in a cybersecurity related position
    • Experience building a security roadmap and strategy for an enterprise level company
    • Knowledgeable with securing public cloud platforms: Amazon Web Services, Microsoft Azure, or Google Public Cloud
    • Comprehensive expertise in security solutions and providers, with recent experience in Microsoft security suite and infrastructure technologies
    • Working knowledge of security frameworks for the specific OT industry, such as: NERC, CIP, ISO 27001, NIST CSF
    • Experience in industrial control systems, building security strategy (e.g. SCADA and EMS)
    • Working knowledge of computer networking concepts and protocols, as well as network security methods, including how to configure firewalls, routers, and switches
    • Experience building and leading a team of professionals
    • Strong communication skills, ability to present to C-level executives and the board

    Nice to Have:

    • CISSP, CRISC, CISA
    • Energy, renewable, oil & gas experience

    Our client is unable to transfer an existing visa at this moment.

    No C2C for this position.