Director - Head of Cybersecurity (CISO)
International, Lisle, IL, United States
Position Overview
International is not just building trucks – it's forging the future of mobility. We build International® trucks and engines and IC Bus™ school and commercial buses and also develop Fleetrite® aftermarket parts. In everything we do, our vision is to accelerate the impact of sustainable mobility to create the cleaner, safer world we all deserve. As of 2021, we joined Scania, MAN and Volkswagen Truck & Bus in TRATON GROUP, a global champion of the truck and transport services industry.
Director – Head of Cyber Security (CISO) The Director – Head of Cyber Security (CISO) will report directly to the Chief Digital & Information Officer (CDIO) and lead the development and execution of a comprehensive cybersecurity strategy, policies, and initiatives. Responsibilities include safeguarding the security posture of all digital assets, cultivating a culture of security assurance, and representing the security function at the executive level.
Responsibilities
Leadership & Strategy
Develop and execute the enterprise-wide cybersecurity strategy aligned with organizational goals.
Lead the information security program, including governance, risk management, compliance, and incident response.
Advise senior leadership and the board on security risks, controls, and emerging threats.
Provide strategic direction for all security functions, fostering a culture of accountability, innovation, and high performance.
Build and develop a high-performing security organization, including hiring, talent development, and succession planning.
Establish clear reporting mechanisms and metrics to communicate security posture and program performance.
Evaluate and implement modern security capabilities and technologies to strengthen resilience and operational efficiency.
Align resources and investments with strategic business priorities and risk-based decisions.
Drive continuous improvement, operational excellence, and timely decision-making across the security organization.
Influence stakeholders at all levels, gaining alignment for major security initiatives and enabling informed executive decision-making.
Provide insights into relevant security standards, best practices, and emerging domain trends.
Establish and oversee security and risk management for AI systems, ensuring responsible and secure adoption of AI technologies across the enterprise.
Planning (Strategic & Tactical)
Contribute to operational, tactical, and strategic planning to support enterprise objectives.
Ensure cybersecurity strategies and priorities align with business goals and effectively mitigate risk.
Monitor organizational security posture, regulatory requirements, and emerging threats to guide planning and decision‑making.
Oversee performance across all security domains (e.g., IAM, endpoint, network, cloud, applications, data security, security operations).
Collaborate with business units to develop and review strategic security plans.
Evaluate industry trends and adopt innovative planning practices where beneficial.
Develop long‑term strategies that align security services with evolving technology trends and business needs.
Cybersecurity Governance
Design and maintain a cybersecurity strategy aligned to business objectives, regulatory expectations, and technology advancements.
Oversee governance of security design, implementation, and operations to ensure compliance with industry standards and regulatory frameworks.
Lead the development, approval, and rollout of enterprise‑wide security policies and frameworks.
Anticipate cybersecurity trends and assess implications for the organization.
Promote adoption of leading practices and drive continuous improvement across security governance processes.
Review and enhance policies, standards, and procedures to ensure they remain effective and relevant.
Collaborate with other brand CISOs across TRATON Group.
Risk Management
Establish the organization's cybersecurity risk appetite and oversee the enterprise security risk management program.
Monitor industry developments, threat trends, and best practices to strengthen the organization’s risk posture.
Lead implementation of enterprise risk management processes, tools, and reporting mechanisms.
Advise senior leadership and board on high‑risk threats, business impacts, and mitigation strategies.
Evaluate risks associated with technology, digital transformation, and evolving business models.
Lead discussions on risk considerations across geographic, technological, and operational contexts.
Capacity Planning & Talent Management
Oversee cybersecurity workforce planning to ensure the organization has the skills and capacity needed to meet current and future demands.
Promote capability management techniques to support service‑level expectations and operational performance.
Integrate capacity forecasts into broader resource planning and prioritization.
Develop scalable processes for capacity planning across multiple environments.
Support creation of training materials and development programs that build technical and leadership capabilities.
Drive strategic talent planning to maintain a competitive and resilient cybersecurity organization.
Minimum Requirements
Bachelor's degree and at least 11 years of information technology security experience; at least 6 years of management experience.
Master's degree and at least 9 years of information technology security experience; at least 6 years of management experience.
At least 14 years of information technology security experience; at least 6 years of management experience.
Additional Requirements
Qualified candidates, excluding current employees, must be legally authorized on an unrestricted basis (US Citizen, Legal Permanent Resident, Refugee, or Asylee) to be employed in the United States. No sponsorship will be provided for work‑related visas.
Desired Skills
Advanced degree (MBA, MS in Cybersecurity, or related field) is a plus.
Progressive experience in cybersecurity or information risk management.
Experience in a senior leadership role.
Experience managing enterprise security programs and incident response.
Excellent communication skills with experience presenting to senior leadership and boards.
Desired certifications: CISSP, CISM, CISA, CCSP, PMP, CVA, GCVA, CISRM, CISRCP, or equivalent.
Deep knowledge of security frameworks (NIST CSF, ISO 27001, CIS Controls, Zero Trust).
Strong understanding of cloud security (AWS, Azure, GCP).
Experience in industry‑specific compliance requirements.
Experience in regulated or global environments.
Strategic leadership and executive presence.
Strong analytical and decision‑making abilities.
Ability to manage competing priorities.
High integrity and commitment to confidentiality and ethics.
Ability to influence and collaborate across the organization.
Benefits and Compensation This position offers competitive market‑based compensation, along with a comprehensive benefits package designed to support employee wellbeing. The expected salary offered will fall within the stated range, with the final offer based on the candidate's applicable skills, knowledge, and experience. For more information about the benefits, visit https://careers.international.com/#benefits.
EEO Statement We are an Equal Opportunity Employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics. If you are a qualified individual with a disability and require a reasonable accommodation to access the online application system or participate in the interview process due to your disability, please email HUB@International.com to request assistance. Kindly specify Job Requisition Number / Job Title and Location in your response. Otherwise, your request may not be considered.
#J-18808-Ljbffr
Director – Head of Cyber Security (CISO) The Director – Head of Cyber Security (CISO) will report directly to the Chief Digital & Information Officer (CDIO) and lead the development and execution of a comprehensive cybersecurity strategy, policies, and initiatives. Responsibilities include safeguarding the security posture of all digital assets, cultivating a culture of security assurance, and representing the security function at the executive level.
Responsibilities
Leadership & Strategy
Develop and execute the enterprise-wide cybersecurity strategy aligned with organizational goals.
Lead the information security program, including governance, risk management, compliance, and incident response.
Advise senior leadership and the board on security risks, controls, and emerging threats.
Provide strategic direction for all security functions, fostering a culture of accountability, innovation, and high performance.
Build and develop a high-performing security organization, including hiring, talent development, and succession planning.
Establish clear reporting mechanisms and metrics to communicate security posture and program performance.
Evaluate and implement modern security capabilities and technologies to strengthen resilience and operational efficiency.
Align resources and investments with strategic business priorities and risk-based decisions.
Drive continuous improvement, operational excellence, and timely decision-making across the security organization.
Influence stakeholders at all levels, gaining alignment for major security initiatives and enabling informed executive decision-making.
Provide insights into relevant security standards, best practices, and emerging domain trends.
Establish and oversee security and risk management for AI systems, ensuring responsible and secure adoption of AI technologies across the enterprise.
Planning (Strategic & Tactical)
Contribute to operational, tactical, and strategic planning to support enterprise objectives.
Ensure cybersecurity strategies and priorities align with business goals and effectively mitigate risk.
Monitor organizational security posture, regulatory requirements, and emerging threats to guide planning and decision‑making.
Oversee performance across all security domains (e.g., IAM, endpoint, network, cloud, applications, data security, security operations).
Collaborate with business units to develop and review strategic security plans.
Evaluate industry trends and adopt innovative planning practices where beneficial.
Develop long‑term strategies that align security services with evolving technology trends and business needs.
Cybersecurity Governance
Design and maintain a cybersecurity strategy aligned to business objectives, regulatory expectations, and technology advancements.
Oversee governance of security design, implementation, and operations to ensure compliance with industry standards and regulatory frameworks.
Lead the development, approval, and rollout of enterprise‑wide security policies and frameworks.
Anticipate cybersecurity trends and assess implications for the organization.
Promote adoption of leading practices and drive continuous improvement across security governance processes.
Review and enhance policies, standards, and procedures to ensure they remain effective and relevant.
Collaborate with other brand CISOs across TRATON Group.
Risk Management
Establish the organization's cybersecurity risk appetite and oversee the enterprise security risk management program.
Monitor industry developments, threat trends, and best practices to strengthen the organization’s risk posture.
Lead implementation of enterprise risk management processes, tools, and reporting mechanisms.
Advise senior leadership and board on high‑risk threats, business impacts, and mitigation strategies.
Evaluate risks associated with technology, digital transformation, and evolving business models.
Lead discussions on risk considerations across geographic, technological, and operational contexts.
Capacity Planning & Talent Management
Oversee cybersecurity workforce planning to ensure the organization has the skills and capacity needed to meet current and future demands.
Promote capability management techniques to support service‑level expectations and operational performance.
Integrate capacity forecasts into broader resource planning and prioritization.
Develop scalable processes for capacity planning across multiple environments.
Support creation of training materials and development programs that build technical and leadership capabilities.
Drive strategic talent planning to maintain a competitive and resilient cybersecurity organization.
Minimum Requirements
Bachelor's degree and at least 11 years of information technology security experience; at least 6 years of management experience.
Master's degree and at least 9 years of information technology security experience; at least 6 years of management experience.
At least 14 years of information technology security experience; at least 6 years of management experience.
Additional Requirements
Qualified candidates, excluding current employees, must be legally authorized on an unrestricted basis (US Citizen, Legal Permanent Resident, Refugee, or Asylee) to be employed in the United States. No sponsorship will be provided for work‑related visas.
Desired Skills
Advanced degree (MBA, MS in Cybersecurity, or related field) is a plus.
Progressive experience in cybersecurity or information risk management.
Experience in a senior leadership role.
Experience managing enterprise security programs and incident response.
Excellent communication skills with experience presenting to senior leadership and boards.
Desired certifications: CISSP, CISM, CISA, CCSP, PMP, CVA, GCVA, CISRM, CISRCP, or equivalent.
Deep knowledge of security frameworks (NIST CSF, ISO 27001, CIS Controls, Zero Trust).
Strong understanding of cloud security (AWS, Azure, GCP).
Experience in industry‑specific compliance requirements.
Experience in regulated or global environments.
Strategic leadership and executive presence.
Strong analytical and decision‑making abilities.
Ability to manage competing priorities.
High integrity and commitment to confidentiality and ethics.
Ability to influence and collaborate across the organization.
Benefits and Compensation This position offers competitive market‑based compensation, along with a comprehensive benefits package designed to support employee wellbeing. The expected salary offered will fall within the stated range, with the final offer based on the candidate's applicable skills, knowledge, and experience. For more information about the benefits, visit https://careers.international.com/#benefits.
EEO Statement We are an Equal Opportunity Employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics. If you are a qualified individual with a disability and require a reasonable accommodation to access the online application system or participate in the interview process due to your disability, please email HUB@International.com to request assistance. Kindly specify Job Requisition Number / Job Title and Location in your response. Otherwise, your request may not be considered.
#J-18808-Ljbffr