Director, Cybersecurity
Howard Hughes Medical Institute (HHMI), Chevy Chase, MD, United States
Howard Hughes Medical Institute (HHMI) advances scientific discovery and education in the life sciences. The Technology & Systems Management (TSM) team supports that mission by delivering secure, resilient, and forward-looking technology solutions across the Institute. We are seeking a Director, Cybersecurity to lead HHMI’s enterprise information security program and strengthen the Institute’s overall security posture in an evolving threat landscape. The Director, Cybersecurity serves as the Institute’s senior cybersecurity leader and trusted advisor to the CTO and executive leadership on risk posture and emerging threats. This role is responsible for ensuring the confidentiality, integrity, and availability of digital assets across enterprise systems, infrastructure, and applications.The Director leads internal cybersecurity and identity and access management (IAM) teams, partners with an external SOC/MSSP for continuous monitoring and response, and collaborates across TSM and Institute leadership to embed security into technology strategy and operations. This role also works closely with Risk and Compliance and the Office of General Counsel to align cybersecurity governance with regulatory requirements and the protection of sensitive research and regulated data.* Partner with Risk and Compliance, the Office of General Counsel and other stakeholders to develop and enforce security policies, standards, and procedures; lead internal assessments and coordinate external audits.* Establish and communicate security metrics to senior leadership that reflect performance, maturity, and risk reduction.* Embed security principles into infrastructure, applications, and business systems design, including secure architecture, network segmentation, and identity and access management best practices.* Provide strategic guidance and leadership for a team responsible for internal security/access assessments, coordinating external audits, and supporting regulatory and compliance initiatives across financial systems and other technology areas.* Lead enterprise incident response and recovery efforts, and develop and test disaster recovery and business continuity plans from a security perspective.* Oversee cybersecurity budgeting, including operational expenses, service agreements, equipment, and special projects.**What You Bring:***Education & Certifications** Bachelor’s degree* CISSP, CISM, CISA, or equivalent advanced security certification*Experience** 12+ years of progressive experience in information security* 5+ years of leadership experience managing teams and vendors* Knowledge of emerging technologies, including Artificial Intelligence*Skills & Expertise** Deep understanding of cybersecurity frameworks (NIST, CIS Controls) and risk management methodologies* Experience with SOC operations, IAM platforms, cloud security, and endpoint protection technologiesExperience developing security governance frameworks for AI/ML systems and third-party AI tools Proven ability to build high-performing teams and foster a culture of accountability, transparency, and continuous improvement Excellent communication skills with the ability to translate technical risks into business context Demonstrated problem-solving ability with strong communication, interpersonal, and organizational skills, and a high level of initiative.**Physical Requirements:** Remaining in a normal seated or standing position for extended periods of time; reaching and grasping by extending hand(s) or arm(s); dexterity to manipulate objects with fingers, for example using a keyboard; communication skills using the spoken word; ability to see and hear within normal parameters; ability to move about workspace. The position requires mobility, including the ability to move materials weighing up to several pounds (such as a laptop computer or tablet).
Persons with disabilities may be able to perform the essential duties of this position with reasonable accommodation. Requests for reasonable accommodation will be evaluated on an individual basis. This job description sets forth the job’s principal duties, responsibilities, and requirements; it should not be construed as an exhaustive statement, however.
Unless they begin with the word “may,” the Essential Duties and Responsibilities described above are “essential functions” of the job, as defined by the Americans with Disabilities Act. #LI-EG1 Howard Hughes Medical Institute (HHMI) is an independent, ever-evolving philanthropy that supports basic biomedical scientists and educators with the potential for transformative impact. We make long-term investments in people, not just projects, because we believe in the power of individuals to make breakthroughs over time. **Why HHMI**To move science forward we need a diverse collection of talents, expertise, and backgrounds in scientific research and science education, as well as communications, finance, human resources, information technology, investments, law, and operations.At HHMI, we encourage collaborative and results-driven working styles and offer an adaptable environment where employees can do their best work.What makes us strong is the diversity of our perspectives. page. #J-18808-Ljbffr
Persons with disabilities may be able to perform the essential duties of this position with reasonable accommodation. Requests for reasonable accommodation will be evaluated on an individual basis. This job description sets forth the job’s principal duties, responsibilities, and requirements; it should not be construed as an exhaustive statement, however.
Unless they begin with the word “may,” the Essential Duties and Responsibilities described above are “essential functions” of the job, as defined by the Americans with Disabilities Act. #LI-EG1 Howard Hughes Medical Institute (HHMI) is an independent, ever-evolving philanthropy that supports basic biomedical scientists and educators with the potential for transformative impact. We make long-term investments in people, not just projects, because we believe in the power of individuals to make breakthroughs over time. **Why HHMI**To move science forward we need a diverse collection of talents, expertise, and backgrounds in scientific research and science education, as well as communications, finance, human resources, information technology, investments, law, and operations.At HHMI, we encourage collaborative and results-driven working styles and offer an adaptable environment where employees can do their best work.What makes us strong is the diversity of our perspectives. page. #J-18808-Ljbffr