Senior Director of Data Security & Privacy

Job Overview

As the Senior Director of Data Security at Lexia, you will play a critical role in developing and executing our comprehensive security and data security strategies.

You will be responsible for establishing and maintaining a unified security program that safeguards our organization's people, assets, and information.

You will work closely with Cambium’s Security, IT, and Legal teams and collaborate with Product Management, Engineering, and Infrastructure teams to implement and ensure our systems and processes adhere to the best in class standards around information security and privacy.

The Senior Director of Data Security and Privacy will report directly to the VP of Product Development & Design and will be a key member of the product leadership team.

Job Responsibilities

Security Strategy and Planning :

• Develop and implement a comprehensive security and data security strategy aligned with the company's objectives and values.
• Continuously assess security risks, data security vulnerabilities, and threats, and proactively ensure security measures are planned as part of product roadmaps.
• Stay informed about the latest security and data protection trends, technologies, and best practices to keep the organization secure.

Team Leadership :

• Lead, mentor, and manage a team of security and data security professionals, ensuring they are well-trained and equipped to carry out their responsibilities.
• Foster a culture of security awareness, accountability, and data protection throughout the organization.

Information Security and Data Protection :

• Manage information security programs, including data protection, network security, and cybersecurity measures.
• Monitor and respond to security incidents, data breaches, and data security incidents, implementing incident response protocols.
• Implement and manage data protection measures, including encryption, access controls, and data loss prevention solutions.
• Establish data classification and handling policies to ensure the appropriate protection of data at all levels.
• Ensure the Infrastructure team implements and maintains a business continuity and disaster recovery plan.

Compliance and Regulations :

• Ensure the organization complies with relevant security and data protection regulations, industry standards, and legal requirements.
• Establish and maintain security policies, procedures, and guidelines for both security and data security.
• Be the single source for Engineering, Infrastructure and DevOps for answering questions on RFPs and Technical Questionnaires.
• Work with counterparts in the Operations Teams to ensure that we are adhering to the latest standards like NIST 800-53.

Job Requirements

• Bachelor's degree in a relevant field (security, data security, engineering, or related disciplines). A master's degree or relevant certifications is a plus.
• Proven experience in security and data security management, with a minimum of 3 years in leadership roles.
• Strong knowledge of security technologies, risk assessment, and information security, as well as data protection regulations and standards.
• Excellent leadership, communication, and interpersonal skills.
• Demonstrated ability to manage security and data security teams and resources effectively.
• Strong problem-solving and decision-making abilities.
• Proactive and adaptable in the face of evolving security and data protection threats and challenges.

An Equal Opportunity Employer