HighlightTA is the on-demand talent team for Q4At Q4, we make an impact together, obsess over our customer, operate with integrity, and bring big ideas to life.Q4 is charting a bold new path for investor relations as the first AI-driven IR Ops Platform, providing everything an IR team needs to succeed on a single, powerful platform. The Q4 Platform enables public companies to attract, manage, and understand investorsâall in one place. Over 2,600 customers, including many of the most respected brands in the world, trust Q4 to help drive premium valuations for their companies. Only Q4 offers a tech stack holistically designed to equip IR teams with data, insights, and smart workflows that power remarkable outcomes.Learn more at q4inc.com.We hire smart, curious, and talented people to push boundaries, reimagine whatâs possible, and turn challenges into opportunities â all while keeping the needs of our clients at the heart of everything we do.Come grow with us!About the RoleThe Director, IT & Security will be a senior member of the Business Operations department. The role will have direct responsibility for detection & monitoring operations, incident response and threat identification initiatives as well as responsibility for overseeing all aspects of our IT and security operations. The role will build/lead a small team and be hands-on with strong influence skills and ability to balance day-to-day execution with strategy. The successful candidate must have a proven track-record of working closely with internal and external stakeholders to understand and safeguard the assets, people, and processes across a global company.What Youâll DoLead security operations, monitor emerging threats, oversee incident response and procedures and capabilities, enable outcomes-based metrics, and work closely with internal and external stakeholders for incident responses to determine appropriate courses of actions.Develop and implement industry standard cyber controls and threat analytics.Identify and drive the end-to-end remediation of discovered or potential security vulnerabilities and mature operational security processes and procedures.Execute periodic security testing and reviews, promptly remediate any findings, and ensure policies, controls, and procedures are effective, documented, and understood by relevant stakeholders/roles through training and education.With R&D leadership, enhance the Cloud security framework, including prevention, detection, and response controls for all Cloud environments, and drive DevSecOps adoption across the entire software development lifecycle by enabling tools, processes, and framework.Lead the development and implementation of disaster recovery and business continuity plans.Manage the IT infrastructure and ensure that it is operating efficiently and effectivelyDevelop and implement IT policies and procedures to ensure that all systems and applications are secure and compliant.Manage a small team of IT and security professionals and provide guidance and support as needed.Ensure that all projects are delivered on time, within budget, and to the required level of quality.What Weâre Looking ForBachelor Degree, with a technology or business emphasis, or equivalent education and experience.Proven track record of managing, inspiring and motivating a team of IT and security professionals.Possess one or more of the following industry certifications:CISSP / CISA / CISMCCSP â Certified Cloud Security ProfessionalSABSA - Security ArchitectureOther industry recognized Information Security certificationsDemonstrated knowledge of current cloud platforms, services and security best practices for their protection.Demonstrated knowledge and understanding of information security industry standards (e.g. ISO17799, ISO27001, ISO27018, NIST, COBIT, ITIL, etc), and legislative/regulatory requirements (e.g. SAS-70, SOX, B198, GDPR, PIPEDA, etc).Minimum of 7-10 years experience in information security including:Security Management, Policy & Procedure development, Governance Frameworks, Security ProgramsDeveloping and implementing cloud security architecturesRisk Assessment, Risk ManagementSecurity Architecture, IS Infrastructure ProcessesOperational security (network architecture, application, systems)Adaptable to new technologies and challenges not previously encountered.Able to build strong relationships and communicate effectively with a diverse set of stakeholders, including business leaders, operational staff and engineers.Why Q4?At Q4, we embrace diverse perspectives and experiences as the driving force behind innovation and problem-solving. We envision Q4 to reflect the global community we serve, empowering representation and opportunity at all levels. Think you have what it takes, but not sure you check every box? Apply anywayâweâd love to talk and see if youâre a great fit!Should you require accommodations at any stage of the interview process, please let our Recruitment team know.How We HireWe use AI tools to support our recruitment process, including helping us organize applications and identify early matches based on role criteria. Every rejection decision is made by a human. We encourage candidates to apply authentically and avoid relying solely on AI-generated responses, especially during interviews.This opportunity is offered through HighlightTA, the on-demand talent team supporting Q4âs growth.Connect with us and learn more:HighlightTA on LinkedInPlease mention the word **COHESIVE** and tag RMjQwMTo0OTAwOjg4OTg6OGVmODo0MDVjOjE4M2U6NWJhMzo1Y2Ey when applying to show you read the job post completely (#RMjQwMTo0OTAwOjg4OTg6OGVmODo0MDVjOjE4M2U6NWJhMzo1Y2Ey). This is a beta feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.