Cybersecurity Strategy, Operations and Board Engagement Director

Job description

**Description**

**The Role**

The Cyber Security Strategy Director is a strategic leadership role responsible for enabling the CISO and Cybersecurity Leadership Team to operate at peak efficiency.

This role will act as a trusted advisor, program manager, and operational leader—ensuring the smooth execution of cybersecurity strategy, board engagement, regulatory and audit readiness, and enterprise-wide security initiatives.

The position requires exceptional organizational acumen, deep understanding of cybersecurity principles, financial planning and forecasting, and strong stakeholder management skills across executive, technical, and operational audiences.

**The Responsibilities**

**Board & Executive Engagement**

+ Lead preparation of Board and Executive Committee materials, ensuring clear, concise, and actionable cybersecurity reporting.
+ Partner with the CISO to develop strategic narratives for board updates, including threat landscape insights, program performance, and risk posture.
+ Coordinate follow-up actions and communications stemming from Board and senior leadership meetings.

**Audit & Compliance Oversight**

+ Oversee internal and external cyber audit processes, ensuring timely responses, evidence collection, and remediation tracking.
+ Act as the primary liaison with internal audit, external auditors, and regulatory bodies for cybersecurity matters.
+ Maintain readiness for regulatory examinations and attestations (e.g., SOX, NYDFS, DORA, PCI DSS).

**Cybersecurity Strategy & Program Management**

+ Partner with the CISO to design, refine, and execute the organization’s cybersecurity strategy, ensuring alignment with business priorities and risk tolerance.
+ Drive strategic initiatives, cross-functional projects, and security transformation programs to successful completion.
+ Monitor industry trends, threat intelligence, and regulatory changes to inform strategic decisions.

**Metrics, Reporting & Performance Management**

+ Develop, maintain, and communicate meaningful cybersecurity metrics and key performance indicators (KPIs) to measure program effectiveness.
+ Oversee creation of executive dashboards and data visualizations for senior leadership and Board reporting.
+ Ensure metrics drive informed decision-making and continuous improvement.

**Operational Leadership & Team Enablement**

+ Serve as the operational right-hand to the CISO, enabling prioritization, issue resolution, and decision support.
+ Lead cross-functional coordination between security domains, technology teams, and business units.
+ Support talent development initiatives, including succession planning and leadership team coaching.

**Qualifications**

**The Qualifications**

Required:

+ 10+ years in cybersecurity, information security, or related technology risk roles, with at least 3 years in a leadership or Strategy Director capacity.
+ Proven experience preparing Board-level content and communicating complex technical topics to non-technical audiences.
+ Strong background in audit management, regulatory compliance, and risk governance.
+ Demonstrated success in cybersecurity strategy development and execution.
+ Expertise in building and interpreting metrics, KPIs, and performance reports.
+ Exceptional organizational, communication, and interpersonal skills.
+ Ability to manage multiple priorities in a fast-paced, high-pressure environment.

Preferred:

+ Bachelor’s degree in Cybersecurity, Information Technology, Risk Management, or related field; Master’s degree preferred.
+ Relevant certifications (e.g., CISSP, CISM, CRISC, CGEIT, PMP).
+ Experience in a global or highly regulated industry (e.g., financial services, healthcare, insurance).

**Key Competencies**

+ Strategic Thinking: Ability to translate vision into actionable plans.
+ Executive Communication: Skilled in delivering impactful narratives to senior stakeholders.
+ Program Management: Proven track record of leading complex, cross-functional initiatives.
+ Analytical Insight: Strong data-driven decision-making capability.
+ Adaptability: Comfort in dynamic, rapidly evolving environments.
+ Influence & Collaboration: Ability to build trust and drive consensus across diverse teams.

**Impact of the Role**

The Cyber Security Strategy Director will ensure the CISO organization operates with strategic clarity, operational discipline, and measurable impact.

This role will directly influence the effectiveness of board communications, the success of strategic initiatives, and the organization’s ability to navigate an increasingly complex cyber risk landscape.

This role can be based anywhere in the US, with a preference for Eastern Time-zone locations.

This role can be fully remote or hybrid.

Note: Employment-based non-immigrant visa sponsorship and/or assistance is not offered for this specific job opportunity.

**This position will remain posted for a minimum of three business days from the date posted or until a sufficient/appropriate candidate slate has been identified.**

**Compensation and Benefits**

Base salary range and benefits information for this position are being included in accordance with requirements of various state/local pay transparency legislation.

Please note that salaries may vary for different individuals in the same role based on several factors, including but not limited to location of the role, individual competencies, education/professional certifications, qualifications/experience, performance in the role and potential for revenue generation (Producer roles only).

Compensation

The base salary compensation range being offered for this role is $130,000– $180,000 USD per year.

This role is also eligible for an annual short-term incentive bonus.

**Company Benefits (US locations)**

WTW provides a competitive benefit package which includes the following (eligibility requirements apply):

+ **Health and Welfare Benefits:** Medical (including prescription coverage), Dental, Vision, Health Savings Account, Commuter Account, Health Care and Dependent Care Flexible Spending Accounts, Group Accident, Group Critical Illness, Life Insurance, AD&D, Group Legal, Identify Theft Protection, Wellbeing Program and Work/Life Resources (including Employee Assistance Program)
+ **Leave Benefits:** Paid Holidays, Annual Paid Time Off (includes paid state/local paid leave where required), Short-Term Disability, Long-Term Disability, Other Leaves (e.g., Bereavement, FMLA, ADA, Jury Duty, Military Leave, and Parental and Adoption Leave), Paid Time Off (https://cdn-static.findly.com/wp-content/uploads/sites/1862/2023/01/31091722/Washington-State-Time-Off.pdf) ( _Washington State only_ )
+ **Retirement Benefits:** Contributory Pension Plan and Savings Plan (401k).

This is a remote role, based anywhere in the US.

We understand flexibility is key to supporting an inclusive and diverse workforce and so we encourage requests for all types of flexible working as well as location-based arrangements.

Please speak to your recruiter to discuss more.

Pursuant to the San Francisco Fair Chance Ordinance and Los Angeles County Fair Chance Ordinance for Employers, we will consider for employment qualified applicants with arrest and conviction records.

**EOE, including disability/vets**

Required Skill Profession

Other General