Director of IT Security
PHI Aviation, Dallas, TX, United States
POSITION OVERVIEW
The Director of IT Security is responsible for overseeing the organization's information security program to protect the integrity, confidentiality, and availability of the organization's data and IT infrastructure. This role involves developing, implementing, and maintaining security policies, standards, and procedures, and ensuring compliance with relevant regulations and best practices. The Director of IT Security will manage security incidents, and work collaboratively with other departments to mitigate security risks.
ESSENTIAL DUTIES & ACCOUNTABILITIES
Strategic Leadership
Develop and implement a comprehensive information security strategy aligned with organizational goals. Provide leadership and direction for the information security program, including governance, risk management, and compliance.
Risk Management
Identify, assess, and prioritize information security risks, and develop strategies to mitigate these risks. Ensure compliance with relevant regulatory requirements and standards, including HIPAA, GDPR, DFAR, SOX and industry-specific regulations.
Policy and Compliance
Establish and maintain security policies, procedures, and standards. Monitor compliance with information security policies and procedures and take corrective action as needed.
Incident Response
Develop and implement an incident response plan, including detection, response, and recovery processes. Lead the response to security incidents, including investigation, mitigation, and reporting.
Technology and Infrastructure
Oversee the implementation and management of security technologies and tools, including firewalls, intrusion detection/prevention systems, and encryption. Ensure the secure design, development, and deployment of IT systems and applications.
Training and Awareness
Develop and implement an information security awareness and training program for all employees. Foster a culture of security awareness and vigilance across the organization.
Collaboration and Communication
Collaborate with other executives and stakeholders to integrate security into business processes and initiatives. Communicate security risks and strategies to the board of directors, executive team, and other key stakeholders.
Vendor and Third-Party Management
Assess and manage the security posture of third-party vendors and partners. Develop and enforce security requirements and agreements for external partners.
QUALIFICATION REQUIREMENTS
Bachelor's degree in Information Security, Computer Science, or a related field; Master's degree preferred. Professional certifications such as CISSP, CISM, or CISA. Minimum of 10 years of experience in information security, with at least 5 years in a leadership role. In-depth knowledge of regulatory requirements and standards relevant to aviation and healthcare. Proven experience in developing and implementing security strategies and technologies. Excellent leadership, communication, and interpersonal skills. Ability to work effectively in a fast-paced, dynamic environment. Must have hands-on technical skills to evaluate technology, design, and document controls.
ORGANIZATIONAL CORE VALUES
Safe
- We are absolute in our belief in the tenets of Destination Zero and that Zero is not only achievable, but the only acceptable outcome. Efficient
- We are focused on outcomes that are smart and responsible by making the best use of our resources to maximize overall productivity as a high performing organization. Quality
- We are committed to ensuring excellent organizational performance, which produces sustainable and reliable outcomes. Service
- We are dedicated to the service of our customers, our communities and each other.
BEHAVORIAL COMPETENCIES
Drive & Energy -
Effective performers have a high level of energy and the motivation to sustain it over time. They are ambitious and passionate about their role in the organization. They have the stamina and endurance to handle the substantial workload present in today's organization. They are motivated to maintain a fast pace and continue to produce even in exhausting circumstances. Functional/Technical Expertise -
Effective performers are knowledgeable and skilled in a functional specialty (e.g., finance, marketing, operations, information technologies, human resources, etc.). They add organizational value through unique expertise in a functional specialty area. They remain current in their area of expertise and serve as a resource in that area for the organization. High Standards -
Effective performers establish and model standards that guarantee exceptional quality and necessary attention to detail. They continually seek to improve processes and products, and they hold staff accountable for quality. They find best practices, share them, and then improve upon them. Initiative -
Effective performers are proactive and act without being prompted. They don't wait to be told what to do or when to do it. They see a need, take responsibility and act on it. They make things happen. Integrity -
Effective performers think and act ethically and honestly. They apply ethical standards of behavior to daily work activities. They take responsibility for their actions and foster a work environment where integrity is rewarded. Conflict Management
- Effective performers recognize that conflict can be a valuable part of the decision-making process. They are comfortable with healthy conflict, and they support and manage differences of opinion. They thwart destructive competition or friction and use consensus to debate and resolve issues. Mission Focus -
Effective performers understand and support the organization's mission - its core purpose for being. They believe in the mission, value it, and are committed to it. They communicate it to staff, stand behind it, and interpret its applications for others. They frequently refer to the mission and incorporate it into daily activities. Positive Impact -
Effective performers make positive impressions on those around them. They are personable, self-confident, and generally likable. They are optimistic and enthusiastic about what they do, and their excitement is contagious. They energize those around them. Problem Solving & Decision Making -
Effective performers are able to identify problems, solve them, act decisively, and show good judgement. They isolate causes from symptoms, and compile information and alternatives to illuminate problems or issues. They involve others as appropriate and gather information from a variety of sources. They find a balance between studying the problem and solving it. They readily commit to action and make decisions that reflect sound judgement Team Player -
Effective performers are team oriented. They identify with the larger organizational team and their role within it. They share resources, respond to requests from other parts of the organization, and support larger legitimate organizational agendas as more important than local or personal goals. C
ustomer Orientation
- Effective performers stay close to customers and consumers. They view the organization through the eyes of the customer and go out of their way to anticipate and meet customer needs. They continually seek information and understand market trends. Leader Identification -
Effective performers identify with the role of leader and enjoy positions of responsibility and the exercise of authority. They understand that management is a distinct vocation and choose to be in a leadership position. Talent Management -
Effective performers keep a continual eye on the talent pool, monitoring skills and needs of all team members. They expand the skills of staff through training, coaching, and development activities related to current and future jobs. They evaluate and articulate present performance and future potential to create opportunities for better use of staff abilities. They identify developmental needs and assist individuals in developing plans to improve themselves. They stay proficient in appropriate talent management processes, including best practices for prospecting, recruiting, selection, orientation, and succession management. Team Management
- Effective performers create and maintain functional work units. They understand the human dynamics of team formation and maintenance. They formulate team roles and actively recruit and select to build effective workgroups. They develop and communicate clear team goals and roles, and they provide a level of guidance and management appropriate to the circumstances. They reward team behavior and foster a team atmosphere in the workplace. Organizing & Planning -
Effective performers have strong organizing and planning skills that allow them to be highly productive and efficient. They manage their time wisely and effectively prioritize multiple competing tasks. They plan, organize, and actively manage meetings for maximum productivity. Results Orientation -
Effective performers maintain appropriate focus on outcomes and accomplishments. They are motivated by achievement and persist until the goal is reached. They convey a sense of urgency to make things happen. They respect the need to balance short- and long-term goals. They are driven by a need for closure. Business Thinking -
Effective performers see the organization as a series of integrated and interlocking business processes. They understand general business concepts that govern these systems and their interfaces. They create and / or realign these systems in response to changing business needs. They understand that a change in one process can have a dramatic and unintended impact across the entire organization. They are adept at using these interdependencies to synergistic advantage Influence -
Effective performers are skilled at directing, persuading, and motivating others. They can flex their style to direct, collaborate, or empower, as the situation requires. They have established a personal power base built on mutual trust, fairness, and honesty. Delegation -
Effective performers willingly entrust work to others. They provide clear guidelines, monitor, redirect, and set limits as needed. They provide challenging assignments whenever possible, sharing the authority and providing resources and support that empower others to meet their expectations. Strategic Thinking -
Effective performers act with the future in mind. They plan and make decisions within the framework of the enterprise's strategic intent. They know and understand the factors influencing strategy (e.g., core competence, customers, competition, and the organization's current strengths and limitations). They consider future impact when weighing decisions. They constantly think in terms of expanding the business and are always looking for new ways to grow and achieve competitive advantage. Visioning -
Effective performers are imaginative. They can create a vision of a preferred future for their teams. They communicate clearly and enthusiastically in such a way that others are attracted to it. They can bring the vision to life for team members. HSEQ DUTIES & RESPONSIBILITIES
Understand and provide visible support of Destination Zero Practice job duties with Safety at the core of all tasks A job is not complete unless it is done safely Stand-Up, Speak-Out, and Take-Action - Do the right thing when no one is looking, report safety concerns, near misses and incidents to management, use the Stop Work authority to immediately stop unsafe acts or work practices.
PHYSICAL DEMANDS AND ENVIRONMENTAL CONDITIONS
PHYSICAL DEMANDS
:
While performing the duties of this job, the employee is regularly required to sit, use fingers/hands to handle or feel, reach with hands and arms, and talk or hear. The employee is frequently required to stand and walk. The employee is occasionally required to climb or balance, stoop, kneel, crouch, or crawl. The employee must frequently lift and/or move up to 10 pounds. The employee must occasionally lift and/or move up to 25 pounds.
WORK ENVIRONMENT
:
The noise level in the work environment is usually moderate.
AMR DISCLAIMER
The above Statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed, as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified.
PHI Aviation, LLC provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws
The Director of IT Security is responsible for overseeing the organization's information security program to protect the integrity, confidentiality, and availability of the organization's data and IT infrastructure. This role involves developing, implementing, and maintaining security policies, standards, and procedures, and ensuring compliance with relevant regulations and best practices. The Director of IT Security will manage security incidents, and work collaboratively with other departments to mitigate security risks.
ESSENTIAL DUTIES & ACCOUNTABILITIES
Strategic Leadership
Develop and implement a comprehensive information security strategy aligned with organizational goals. Provide leadership and direction for the information security program, including governance, risk management, and compliance.
Risk Management
Identify, assess, and prioritize information security risks, and develop strategies to mitigate these risks. Ensure compliance with relevant regulatory requirements and standards, including HIPAA, GDPR, DFAR, SOX and industry-specific regulations.
Policy and Compliance
Establish and maintain security policies, procedures, and standards. Monitor compliance with information security policies and procedures and take corrective action as needed.
Incident Response
Develop and implement an incident response plan, including detection, response, and recovery processes. Lead the response to security incidents, including investigation, mitigation, and reporting.
Technology and Infrastructure
Oversee the implementation and management of security technologies and tools, including firewalls, intrusion detection/prevention systems, and encryption. Ensure the secure design, development, and deployment of IT systems and applications.
Training and Awareness
Develop and implement an information security awareness and training program for all employees. Foster a culture of security awareness and vigilance across the organization.
Collaboration and Communication
Collaborate with other executives and stakeholders to integrate security into business processes and initiatives. Communicate security risks and strategies to the board of directors, executive team, and other key stakeholders.
Vendor and Third-Party Management
Assess and manage the security posture of third-party vendors and partners. Develop and enforce security requirements and agreements for external partners.
QUALIFICATION REQUIREMENTS
Bachelor's degree in Information Security, Computer Science, or a related field; Master's degree preferred. Professional certifications such as CISSP, CISM, or CISA. Minimum of 10 years of experience in information security, with at least 5 years in a leadership role. In-depth knowledge of regulatory requirements and standards relevant to aviation and healthcare. Proven experience in developing and implementing security strategies and technologies. Excellent leadership, communication, and interpersonal skills. Ability to work effectively in a fast-paced, dynamic environment. Must have hands-on technical skills to evaluate technology, design, and document controls.
ORGANIZATIONAL CORE VALUES
Safe
- We are absolute in our belief in the tenets of Destination Zero and that Zero is not only achievable, but the only acceptable outcome. Efficient
- We are focused on outcomes that are smart and responsible by making the best use of our resources to maximize overall productivity as a high performing organization. Quality
- We are committed to ensuring excellent organizational performance, which produces sustainable and reliable outcomes. Service
- We are dedicated to the service of our customers, our communities and each other.
BEHAVORIAL COMPETENCIES
Drive & Energy -
Effective performers have a high level of energy and the motivation to sustain it over time. They are ambitious and passionate about their role in the organization. They have the stamina and endurance to handle the substantial workload present in today's organization. They are motivated to maintain a fast pace and continue to produce even in exhausting circumstances. Functional/Technical Expertise -
Effective performers are knowledgeable and skilled in a functional specialty (e.g., finance, marketing, operations, information technologies, human resources, etc.). They add organizational value through unique expertise in a functional specialty area. They remain current in their area of expertise and serve as a resource in that area for the organization. High Standards -
Effective performers establish and model standards that guarantee exceptional quality and necessary attention to detail. They continually seek to improve processes and products, and they hold staff accountable for quality. They find best practices, share them, and then improve upon them. Initiative -
Effective performers are proactive and act without being prompted. They don't wait to be told what to do or when to do it. They see a need, take responsibility and act on it. They make things happen. Integrity -
Effective performers think and act ethically and honestly. They apply ethical standards of behavior to daily work activities. They take responsibility for their actions and foster a work environment where integrity is rewarded. Conflict Management
- Effective performers recognize that conflict can be a valuable part of the decision-making process. They are comfortable with healthy conflict, and they support and manage differences of opinion. They thwart destructive competition or friction and use consensus to debate and resolve issues. Mission Focus -
Effective performers understand and support the organization's mission - its core purpose for being. They believe in the mission, value it, and are committed to it. They communicate it to staff, stand behind it, and interpret its applications for others. They frequently refer to the mission and incorporate it into daily activities. Positive Impact -
Effective performers make positive impressions on those around them. They are personable, self-confident, and generally likable. They are optimistic and enthusiastic about what they do, and their excitement is contagious. They energize those around them. Problem Solving & Decision Making -
Effective performers are able to identify problems, solve them, act decisively, and show good judgement. They isolate causes from symptoms, and compile information and alternatives to illuminate problems or issues. They involve others as appropriate and gather information from a variety of sources. They find a balance between studying the problem and solving it. They readily commit to action and make decisions that reflect sound judgement Team Player -
Effective performers are team oriented. They identify with the larger organizational team and their role within it. They share resources, respond to requests from other parts of the organization, and support larger legitimate organizational agendas as more important than local or personal goals. C
ustomer Orientation
- Effective performers stay close to customers and consumers. They view the organization through the eyes of the customer and go out of their way to anticipate and meet customer needs. They continually seek information and understand market trends. Leader Identification -
Effective performers identify with the role of leader and enjoy positions of responsibility and the exercise of authority. They understand that management is a distinct vocation and choose to be in a leadership position. Talent Management -
Effective performers keep a continual eye on the talent pool, monitoring skills and needs of all team members. They expand the skills of staff through training, coaching, and development activities related to current and future jobs. They evaluate and articulate present performance and future potential to create opportunities for better use of staff abilities. They identify developmental needs and assist individuals in developing plans to improve themselves. They stay proficient in appropriate talent management processes, including best practices for prospecting, recruiting, selection, orientation, and succession management. Team Management
- Effective performers create and maintain functional work units. They understand the human dynamics of team formation and maintenance. They formulate team roles and actively recruit and select to build effective workgroups. They develop and communicate clear team goals and roles, and they provide a level of guidance and management appropriate to the circumstances. They reward team behavior and foster a team atmosphere in the workplace. Organizing & Planning -
Effective performers have strong organizing and planning skills that allow them to be highly productive and efficient. They manage their time wisely and effectively prioritize multiple competing tasks. They plan, organize, and actively manage meetings for maximum productivity. Results Orientation -
Effective performers maintain appropriate focus on outcomes and accomplishments. They are motivated by achievement and persist until the goal is reached. They convey a sense of urgency to make things happen. They respect the need to balance short- and long-term goals. They are driven by a need for closure. Business Thinking -
Effective performers see the organization as a series of integrated and interlocking business processes. They understand general business concepts that govern these systems and their interfaces. They create and / or realign these systems in response to changing business needs. They understand that a change in one process can have a dramatic and unintended impact across the entire organization. They are adept at using these interdependencies to synergistic advantage Influence -
Effective performers are skilled at directing, persuading, and motivating others. They can flex their style to direct, collaborate, or empower, as the situation requires. They have established a personal power base built on mutual trust, fairness, and honesty. Delegation -
Effective performers willingly entrust work to others. They provide clear guidelines, monitor, redirect, and set limits as needed. They provide challenging assignments whenever possible, sharing the authority and providing resources and support that empower others to meet their expectations. Strategic Thinking -
Effective performers act with the future in mind. They plan and make decisions within the framework of the enterprise's strategic intent. They know and understand the factors influencing strategy (e.g., core competence, customers, competition, and the organization's current strengths and limitations). They consider future impact when weighing decisions. They constantly think in terms of expanding the business and are always looking for new ways to grow and achieve competitive advantage. Visioning -
Effective performers are imaginative. They can create a vision of a preferred future for their teams. They communicate clearly and enthusiastically in such a way that others are attracted to it. They can bring the vision to life for team members. HSEQ DUTIES & RESPONSIBILITIES
Understand and provide visible support of Destination Zero Practice job duties with Safety at the core of all tasks A job is not complete unless it is done safely Stand-Up, Speak-Out, and Take-Action - Do the right thing when no one is looking, report safety concerns, near misses and incidents to management, use the Stop Work authority to immediately stop unsafe acts or work practices.
PHYSICAL DEMANDS AND ENVIRONMENTAL CONDITIONS
PHYSICAL DEMANDS
:
While performing the duties of this job, the employee is regularly required to sit, use fingers/hands to handle or feel, reach with hands and arms, and talk or hear. The employee is frequently required to stand and walk. The employee is occasionally required to climb or balance, stoop, kneel, crouch, or crawl. The employee must frequently lift and/or move up to 10 pounds. The employee must occasionally lift and/or move up to 25 pounds.
WORK ENVIRONMENT
:
The noise level in the work environment is usually moderate.
AMR DISCLAIMER
The above Statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed, as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified.
PHI Aviation, LLC provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws