Business Wire, a Berkshire Hathaway company, is the global market leader in press release distribution and regulatory disclosure. We are on a mission to redefine how organizations connect with their audiences - and that’s just the beginning!

Organizations, large and small, depend on us to accurately publicize market-moving news and multimedia, and generate social engagements that develop interactions with their target audiences.

The Cybersecurity Director is responsible for providing strategic leadership across Business Wire’s cybersecurity function, providing strategy, overseeing security architecture and infrastructure, guiding cybersecurity-related risk decisions across the organization, and advancing and managing a comprehensive Governance, Risk, and Compliance (GRC) program.

This role works collaboratively with all areas of the business to ensure that we maintain a robust and highly effective Information Security program for our existing solutions while also supporting the buildout of new client solutions hosted in our data centers and the cloud. This role provides oversight of our external cyber defense partner and drives efforts in cloud security, application security, identity and access strategies, Zero Trust, vulnerability management, email security, data protection, privacy requirements, and emerging technology risks—including AI.

This role is additionally responsible for establishing a robust security governance framework, ensuring compliance with internal and external audit requirements, fostering a security-first culture across the organization, and collaborating with cross-functional teams to integrate risk management practices into all business operations.

What You'll Do

• Develop and maintain cybersecurity and GRC strategy and long-term roadmap, with the goal of enhancing overall strategy in alignment with business objectives.
• Make continuous improvements to our security strategies to protect critical assets and data.
• Provide strategic decision-making and problem-solving to navigate complex security and regulatory landscapes.
• Manage a comprehensive Governance, Risk, and Compliance program in support of corporate audits, client assessments, and regulatory standards such as PCI DSS, SOC 2, and ISO 27001; ensure that our company meets all internal and external audit requirements.
• Conduct regular risk assessments and periodic penetration testing and vulnerability assessments to identify and mitigate potential threats to the organization's infrastructure, applications, and data. 
• Manage the timely creation and dissemination of security-related communications including security awareness and training announcements, security compliance policies and processes, security alerts, and event messaging.
• Provide oversight in maintaining a successful collaborative relationship with our external cyber defense partner, including evaluation of service delivery performance and in alignment with BW’s cybersecurity priorities.
• Provide strategic leadership during cybersecurity incidents, coordinating with IT, Legal, HR, Privacy, Communications, and other stakeholders, and act as executive-level point-of-contact.
• Offer senior-level guidance in developing and improving cybersecurity governance programs, policies, standards, and secure architecture guidelines.
• Oversee enterprise cybersecurity risk assessments and ensure corrective actions are prioritized and implemented effectively; provide direction for privacy and data protection initiatives.
• Provide leadership, guidance, and mentorship to cybersecurity and GRC team members, drive strong performance across all initiatives and support individual and team development.
• Act as a trusted advisor to senior leadership on cybersecurity risk, architecture decisions, and strategic measures.
• Use metrics to evaluate and track effectiveness of security, governance, and compliance initiatives.
• Leverage exceptional communication skills to translate technical requirements into actionable business solutions.

A pre-employment background check will be required after the acceptance of an offer. Business Wire is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Pursuant to the San Francisco Fair Chance Ordinance and other similar state laws and local ordinances, and its internal policy, Business Wire will also consider for employment qualified applicants with arrest and conviction records.