Director, Security Reporting & Metrics

Job Description

Director, Security Reporting & Metrics

Location: Iselin, NJ

Compensation: $200-225k

US Citizens or GC Only

Candidates must be local; Role is Hybrid

Responsibilities:

• Lead the new Security Reporting and Metrics team within IT Security Governance and Management, ensuring it has an effective operating model, processes, roles, and responsibilities
• Provide the strategic development and delivery of executive-level cybersecurity reporting and metrics, ensuring actionable insights and alignment with business objectives
• Detailed and consolidated reports on firm's security posture, capabilities, and risk landscape for executive leadership and the Board, in coordination with the Office of the Chief Information Officer
• Translating complex technical information into actionable business insights
• Direct the measurement, monitoring, and reporting of security risks and performance, ensuring transparency, accountability, and continuous improvement
• Measurement and reporting of security risks
• Establishing and overseeing the monitoring and reporting of Key Performance Indicators (KPIs) for all IT Security-owned processes and services, defining performance criteria and setting benchmarks
• Periodic reporting to IT Security leadership
• Drive continuous improvement in reporting methodologies, data visualization, and communication strategies to enhance clarity, accuracy, and impact of security communications across all levels of the organization
• Oversee and foster strategic collaboration with multiple departments and teams to ensure data accuracy, consistency, and relevance in all security reporting, promoting a data-driven approach to security management

Qualifications:

• Able to lead the Security Reporting and Metrics team, driving innovation and ensuring the team has a clear understanding of its roles and responsibilities, and how they contribute and align to firm's overall IT Security Function
• Able to lead Security Reporting and Metrics transformation programs and implement robust reporting and analytics solutions that establish a strong foundation for firm's IT Security Function
• Able to Identify Security Reporting and Metrics priorities to establish and strengthen a robust security team, by focusing efforts on tailoring work and programs for firm specific needs
• Able to Leverage multiple core relevant tools and solutions to provide actionable insights into firm's security posture.
• Experience in security reporting, risk management, or data analytics (12-15 years), including ~8-10 years in a leadership or management role focused on security reporting and metrics

Experience:

• Leading team adherence to operational and compliance standards within highly regulated environments
• Reporting on team performance and project progress to senior management, translating technical insights
• Representing the team in governance forums or committees, providing expert input and driving outcomes
• Understand, interpret and apply regulatory requirements, compliance and industry standards as pertains to Security Reporting and Metrics