Director Of Security And Infrastructure
CurrentKey Responsibilities:Cybersecurity Strategy: Develop, implement, and maintain a comprehensive cybersecurity strategy aligned with industry best practices. This includes identifying, assessing, and mitigating security risks, as well as creating an incident response plan to address potential threats.Network and Systems Security: Manage and monitor the security of the organization's network and IT systems. Implement firewalls, intrusion detection systems, encryption, and other security measures to protect against unauthorized access and data breaches.Infrastructure Management: Oversee the design, deployment, and maintenance of the company's IT infrastructure, including on prem servers, data centers, and cloud services. Ensure high availability, scalability, and reliability of systems.Compliance and Regulations: Stay updated on cybersecurity laws and regulations relevant to the construction industry and ensure the company complies with all applicable requirements. Manage audits and assessments as needed.Security Awareness Training: Develop and conduct cybersecurity training and awareness programs for employees, subcontractors, and vendors, promoting a culture of security throughout the organization.Incident Response: Lead the response to security incidents, investigating breaches, coordinating with law enforcement and third-party experts, and implementing corrective actions to prevent future occurrences.Vendor and Third-Party Risk Management: Evaluate and manage the cybersecurity risks associated with third-party vendors and contractors, ensuring that they meet the company's security standards.Budget Management: Develop and manage the cybersecurity and infrastructure budget, making strategic investments to enhance the company's overall security posture.Technology Evaluation: Stay current with emerging technologies and trends in cybersecurity and infrastructure management, evaluating their applicability to the company's needs.