Director, Corporate Cyber Security
Company Description
Zayo provides mission-critical bandwidth to the world’s most impactful companies, fueling the innovations that are transforming our society. Zayo’s 133,000-mile network in North America and Europe includes extensive metro connectivity to thousands of buildings and data centers. Zayo’s communications infrastructure solutions include dark fiber, private data networks, wavelengths, Ethernet, and dedicated Internet access. Zayo serves wireless and wireline carriers, media, tech, content, finance, healthcare and other large enterprises.
The Director, Corporate Cyber Security provides direction to a team that designs, develops, implements, maintains and troubleshoots infrastructure that directly protects the Company's global product portfolio and company enterprise environment. In addition, this role will be responsible for identifying security risks to Zayo’s corporate environment, its products and services environments, and Zayo’s public brand; identifying policies and controls to protect against those risks; and validating that the controls are effective.
Responsibilities
Identify, recommend and implement best best practices, policies, standards, baselines, guidelines, procedures, and security solutions. This role requires strategic and technical experience with proven results to lead the overall information security strategy, vulnerability management, incident management, application security standards, and security monitoring.
Develop Zayo’s corporate security roadmap
Leads, develops and maintains technology policies, processes, procedures, and key metrics related to all internal and cloud systems
Deep understanding of identity systems, security threats, code validation tools, cryptographic algorithms.
Ensure risk controls are implemented and fully monitored throughout our system lifecycle
Stay abreast of the shifting security landscape, and communicate across engineering teams to ensure alignment
Lead the security team for any regulatory or compliance requirements project
This is a hands-on role that include security Operation, Engineering and Governance, Risk, and Compliance
Keeps abreast of industry related security issues and evaluates those against Zayo’s security posture
Identifies and ensures implementation of best practices, policies, and standards.
Recommends additional security solutions or enhancements to existing security solutions to improve overall enterprise security posture.
Participates in the design and review of vulnerability assessments, penetration tests, and security audits.
Develop, socialize, implement, and support a multi-year technical roadmap of products and architectural approaches to secure our hybrid cloud and on-premise environments.
Works collaboratively with internal stakeholders and partners to create a comprehensive roadmap and implement it in a phased approach to realize the overall security roadmap.
Identifies, evaluates, and reports on cybersecurity risk related to network/infrastructure assets.
Lead the development, maintenance, and testing of the Information Security Incident Response Playbook(s). In addition, perform annual tabletop exercises integrating critical functions across the organization.
Coordinates with auditors in the execution of audits. Develops a strategy for handling audits and external assessment processes for relevant regulations
Provides strategic and tactical security guidance for all IT projects, including evaluating and recommending technical controls.
Lead Zayo's global Privacy program
Qualifications
Bachelor's Degree in Computer Science and 10 -15 years of software development and management work experience, including five years of Security and Infrastructure compliance management experience and five years of project, business, or management experience, or an equivalent combination of education and experience, required.
Experience and knowledge of audit and compliance management methodology
Experience running embedded security engineers in development teams to educate and grow understanding of secure coding practices.
Working knowledge of global data privacy rules and regulations.
Strong writing skills and communication skills.
Demonstrated ability to think strategically and make effective and timely decisions.
Base salary range for CO $142,000 - $173,700
Benefits, Rewards & Wellness
Annual Incentive Plan (AIP) - Full-time Zayo employees are also eligible for discretionary AIP which is based on the performance of the Company, an employee’s business segment, and the individual employee
Sales Incentive Plan - Full-time Zayo sales employees are also eligible for discretionary incentive cash compensation through our Sales Incentive Plan
Excellent Health, Dental & Vision Insurance
Retirement 401(k) Savings Plan
Fitness membership discounts
Generous paid time off policy including paid parental leave
Please note, in accordance with Zayo's commitment to providing and maintaining a workplace free of recognized hazards, all U.S. and Canadian employees and any employee, vendor, customer, or visitor who enters a Zayo office or facility in the U.S. and Canada must be fully vaccinated against COVID-19 and provide proof of such vaccination. If you are hired by Zayo, you will be required to provide proof of vaccination or have a valid religious or medical reason not to be vaccinated.