Director of Cyber Security

Company Description
Zayo provides mission-critical bandwidth to the world's most impactful companies, fueling the innovations that are transforming our society. Zayo's 133,000-mile network in North America and Europe includes extensive metro connectivity to thousands of buildings and data centers. Zayo's communications infrastructure solutions include dark fiber, private data networks, wavelengths, Ethernet, and dedicated Internet access. Zayo serves wireless and wireline carriers, media, tech, content, finance, healthcare and other large enterprises.

• We are seeking an experienced and knowledgeable Director of Security to lead our Cyber Security programs. This position is responsible for overseeing the development, implementation, and management of two critical security programs. The Director of Cyber Security will provide strategic direction, leadership, and operational excellence in both areas to protect our organization from cyber threats and ensure the security of our products throughout their lifecycle. The ideal candidate will have a deep understanding of cybersecurity principles, extensive experience in security program management, and a proven track record of success in leading cross-functional teams.

Responsibilities
Cybersecurity Program:

• Security Operations Center (SOC):
  Establish and maintain an effective Security Operations Center (SOC) to monitor, detect, and respond to security incidents promptly.
  Lead incident response efforts, ensuring swift and effective actions to mitigate security breaches and minimize potential damage.
• Threat Intelligence:
  Develop and maintain a comprehensive Threat Intelligence program to proactively identify and mitigate potential cyber threats.
  Monitor threat actors, analyze threat indicators, and provide actionable intelligence to enhance proactive defense and incident response capabilities.
• Vulnerability Management:
  Oversee the vulnerability management program, including vulnerability assessments, scanning, and remediation strategies.
  Collaborate with relevant teams to ensure timely identification and mitigation of vulnerabilities in systems, networks, and applications.
• Incident Response and Forensics:
  Lead incident response activities, including incident triage, containment, eradication, and recovery.
  Conduct forensic analysis to gather evidence, determine root causes, and support legal or disciplinary actions when required.
• Network Security:
  Define and implement network security strategies and controls to protect the organization's network infrastructure from unauthorized access, data breaches, and network-based attacks.
  Collaborate with network engineering teams to ensure secure network design and configuration.
• Data Protection and Privacy:
  Develop and implement data protection and privacy strategies, including encryption, data loss prevention (DLP) mechanisms, and privacy controls.
  Ensure compliance with data protection regulations and industry best practices.
• Security Awareness and Training:
  Develop and deliver comprehensive security awareness and training programs to educate employees about cyber threats, best practices, and their role in maintaining a strong security posture.
• Cyber Engineering:
  Oversee the Cyber Engineering program, responsible for designing, implementing, and maintaining security controls across our infrastructure and systems.
• Email Protection:
  Implement robust email protection measures, including email filtering, anti-phishing techniques, and email security awareness programs to minimize the risk of email-based attacks.
• Encryption Services:
  Oversee the deployment and management of encryption services to protect sensitive data at rest, in transit, and in storage, ensuring compliance with relevant regulations and industry standards.

Requirements

• Bachelor's degree in Computer Science, Information Security, or equivalent experience.
• Extensive experience in cyber defense & engineering as well as product security, with a focus on managing security programs in a leadership role.
• Strong knowledge of cybersecurity principles, frameworks, and best practices.
• In-depth understanding of cyber operations, incident response, forensics, and investigations.
• Strong communication and interpersonal skills, with the ability to effectively collaborate with stakeholders at all levels of the organization.

If you are a highly skilled and experienced security professional looking for an exciting leadership opportunity, we encourage you to apply for the position of Director of Cyber and Product Security. Join our dynamic team and play a pivotal role in protecting our organization's assets and ensuring the security of our products.
Base pay range: $170,000- $212,500, commensurate with experience
#LI-ST1
Benefits, Rewards & Wellness

• Excellent Health, Dental & Vision Insurance
• Retirement 401(k) Savings Plan
• Fitness membership discounts
• Generous paid time off policy including paid parental leave

Zayo provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, provincial or local laws.
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.