Director, Security (Cybersecurity)

TL;DR

Director, Security (Cybersecurity): Develop and execute a global cybersecurity strategy for a medical technology company with an accent on risk management, compliance with healthcare regulations, and threat detection. Focus on leading security operations center, incident response planning, and embedding security-by-design into enterprise IT transformations.

Location: Lewisville, Texas (USA). Up to 25% travel.

Company

Innovation-driven medical technology growth company focused on orthopedics solutions that improve patient outcomes.

What you will do

• Develop and execute global cybersecurity strategy aligned to NIST CSF, ISO 27001, and healthcare frameworks.
• Oversee 24x7 SOC, incident response, vulnerability management, and penetration testing.
• Lead security architecture reviews, IAM/PAM strategy, and compliance with HIPAA, GDPR, FDA requirements.
• Manage cyber risk assessments, security budget, and present metrics to executive leadership.
• Design enterprise-wide security awareness training and simulated phishing campaigns.

Requirements

• 7+ years leading global cybersecurity teams in healthcare or regulated industries.
• Experience with IT integrations, ERP transitions, M&A in multi-business-unit organizations.
• Deep knowledge of HIPAA, HITRUST, NIST CSF, SOC 2; cloud security (AWS, Azure, GCP), zero trust, IAM.
• Proven incident response for ransomware/data breaches; reporting to executives/Board.
• Excellent communication to translate risks into business terms.

Culture & Benefits

• Comprehensive medical, dental, vision insurance.
• 401(k) plan, spending/savings accounts, income protection.
• Vacation, sick leave, holidays; discounted insurance, legal services.
• Culture of continuous improvement, collaboration, and innovation.