Director of IT & Cybersecurity
[solidcore], Arlington, VA, United States
The Director of IT & Cybersecurity will serve as the single point of accountability for enterprise technology reliability, security, and compliance across [solidcore]’s HQ and studio footprint. Reporting to the CFO, this role is responsible for ensuring our internal systems, infrastructure, and vendors operate securely, efficiently, and in a scalable, cost-effective manner as the business grows.
This leader will own IT operations, cybersecurity posture, and enterprise risk management, while partnering closely with Finance, People, and Legal to ensure compliance with regulatory and audit requirements. The role will also oversee internal technology vendor selection, governance, and performance, ensuring the business is set up with the right tools, controls, and support systems to operate effectively.
This is a critical “run and protect” function - reducing operational risk, minimizing disruption, and creating a stable, secure foundation that enables the broader organization to scale.
Responsibilities
Own IT infrastructure across HQ and studios, including networks, devices, and in-studio technology (AV/WiFi, hardware, etc.)
Lead cybersecurity strategy and execution, including vendor oversight, monitoring, incident response, and risk mitigation
Ensure compliance with data privacy and regulatory standards (e.g. GDPR, CCPA) and support audit readiness and diligence processes
Establish and manage identity and access controls, including onboarding/offboarding and least-privilege access enforcement
Conduct regular access audits and maintain strong internal controls across systems
Oversee internal IT support and MSP/vendor relationships (e.g. helpdesk, cybersecurity providers, infrastructure vendors)
Own vendor security reviews and governance (e.g. risk assessments, contract diligence)
Manage Workday and other internal systems from an infrastructure, security, and vendor standpoint, including future planning and cost management
Lead employee-related system processes, including onboarding, offboarding, and support for investigations in partnership with People and Legal
Establish disaster recovery and business continuity plans across critical systems
Define and enforce policies around vendor procurement, preventing shadow IT and ensuring alignment with security and compliance standards
Manage SaaS cost governance and provide visibility into system spend and optimization opportunities
Ensure reliability and uptime of internal and studio systems, minimizing operational disruption
Qualifications
8-12+ years of experience in IT, cybersecurity, or enterprise systems
Experience managing IT operations across multi-location businesses preferred
Strong understanding of cybersecurity frameworks, compliance, and vendor risk management
Experience managing MSPs and external vendors at scale
Ability to balance hands‑on execution with strategic planning
Strong cross‑functional communication and problem‑solving skills
Compensation & Benefits
Competitive starting salary, based on experience
Bonus eligibility based on performance
Monthly cell phone stipend
401k with employer match
Health, dental, & vision insurance
Flexible PTO
Free drop in classes at [solidcore]
And MORE
#J-18808-Ljbffr
This leader will own IT operations, cybersecurity posture, and enterprise risk management, while partnering closely with Finance, People, and Legal to ensure compliance with regulatory and audit requirements. The role will also oversee internal technology vendor selection, governance, and performance, ensuring the business is set up with the right tools, controls, and support systems to operate effectively.
This is a critical “run and protect” function - reducing operational risk, minimizing disruption, and creating a stable, secure foundation that enables the broader organization to scale.
Responsibilities
Own IT infrastructure across HQ and studios, including networks, devices, and in-studio technology (AV/WiFi, hardware, etc.)
Lead cybersecurity strategy and execution, including vendor oversight, monitoring, incident response, and risk mitigation
Ensure compliance with data privacy and regulatory standards (e.g. GDPR, CCPA) and support audit readiness and diligence processes
Establish and manage identity and access controls, including onboarding/offboarding and least-privilege access enforcement
Conduct regular access audits and maintain strong internal controls across systems
Oversee internal IT support and MSP/vendor relationships (e.g. helpdesk, cybersecurity providers, infrastructure vendors)
Own vendor security reviews and governance (e.g. risk assessments, contract diligence)
Manage Workday and other internal systems from an infrastructure, security, and vendor standpoint, including future planning and cost management
Lead employee-related system processes, including onboarding, offboarding, and support for investigations in partnership with People and Legal
Establish disaster recovery and business continuity plans across critical systems
Define and enforce policies around vendor procurement, preventing shadow IT and ensuring alignment with security and compliance standards
Manage SaaS cost governance and provide visibility into system spend and optimization opportunities
Ensure reliability and uptime of internal and studio systems, minimizing operational disruption
Qualifications
8-12+ years of experience in IT, cybersecurity, or enterprise systems
Experience managing IT operations across multi-location businesses preferred
Strong understanding of cybersecurity frameworks, compliance, and vendor risk management
Experience managing MSPs and external vendors at scale
Ability to balance hands‑on execution with strategic planning
Strong cross‑functional communication and problem‑solving skills
Compensation & Benefits
Competitive starting salary, based on experience
Bonus eligibility based on performance
Monthly cell phone stipend
401k with employer match
Health, dental, & vision insurance
Flexible PTO
Free drop in classes at [solidcore]
And MORE
#J-18808-Ljbffr