The Information Security Director will be responsible for ensuring theconfidentiality, integrity, and availability of all information assetswithin the organization. You will lead the development andimplementation of the organization\'s information security strategy,policies, and procedures. In this role, you will also be responsible forensuring compliance with all relevant laws, regulations, and industrystandards. You will be responsible for identifying and mitigatinginformation security risks, managing security incidents, and providingsecurity awareness training to employees. The role requires a high levelof technical expertise in information security, risk management,compliance, and governance. This role will require a visionary leaderwho understands the global information security & risk impacts, and hasa sound understanding of cybersecurity technology tools, methods andprocesses. This role requires a leader who works with businessstakeholders, assesses needs, builds awareness and develops informedstrategy and direction for information security. PositionResponsibilities: Responsibilities include but are not limited to thefollowing: Awareness and Governance: Develop and manage a targetedinformation security awareness training program for all employees,contractors and approved system users, and establish metrics to measurethe effectiveness of this security training program for the differentaudiences. Lead cross-functional Information Security SteeringCommittee, infusing information security governance procedures thatfoster resiliency, raise awareness, govern policy and reviewcybersecurity related activities. Provide clear risk mitigatingdirectives for projects with components in IT, including the mandatoryapplication of controls. Foster a Security Awareness Champions programto spread the word and infuse security awareness behaviors,cybersecurity risks and policies. Perform annual risk assessment andbusiness impact analysis. Assist in performing audits using industrystandard security methods to help strengthen internal security controls,procedures and policies. Investigate security incidents, developremediation plans, and work with appropriate stakeholders to implementresolutions. Security Operations: Manage and provide additional securityevaluations for existing or new vendors, partners, and systems. Leveragesecurity tools and data sets to provide visibility into vendor securityposture and risk. Work with IT and technology stakeholders to evolve newbusiness continuity and disaster recovery plans. Support data protectionand privacy initiatives in compliance with the data protection standardsof both US and foreign. Align with internal compliance teams on policyupdates in global data privacy standards. Work with MSSP to monitor andmanage all IT security tools and platforms including Security managementplatforms, Anti-Malware/Ransomware, log management systems, andinformation security training systems. Work with IT department, MSP,legal and compliance teams to keep security polices updated,communicated and enforced. Review existing security architecture,identify design gaps, and recommend security enhancements. Stays abreastof emerging security technologies and integrates them into securityarchitecture as needed. Ensures alignment between security architectureframeworks, IT standards and overall business strategy. Achievessecurity architecture compliance on industry-specific requirements aswell as state and federal regulations. Leadership: Lead, grow and managethe Information Security Program at IHI, with the responsibility toensure that information assets and associated technology are alladequately protected. Partner with all business leaders while workingclosely with service desk, Infrastructure and Enterprise/BusinessApplications teams.