Brooks Automation is a growing, fast-paced technology leader of automation solutions which support the dynamic and expanding semiconductor and life sciences lab markets. At Brooks, new ideas, technologies and ways of thinking are driving our future. Our customer-focused culture encourages employees to embrace innovation and collaborate with one another to achieve new heights. Headquartered in Chelmsford, MA, with operations in North America, Europe, and Asia, Brooks is looking for a Sr. Director Information Security/CISO as we accelerate our growth journey.
The IT organization at Brooks is transforming to support the company growth target. Through talents and technologies, the Vision of IT is to be a trusted and strategic Business Partner that empowers Brooks employees, customers and suppliers with efficient processes and innovative digital systems fueled with accurate data and delivered with excellence.
To reinforce our IT leadership team, we are looking for a senior InfoSec leader. The role will report to the Chief Digital and Information officer and is part of the IT leadership team. The CISO is responsible for designing and driving a strong security strategy across a diverse and global organization. A successful candidate for this position must have a strong base of knowledge and a proven track record of execution and leadership across both the technical and non-technical aspects of information security and compliance. This role can be Remote, but will require travel to headquarters one week per month.
What You'll Do
Conduct a security maturity assessment and define strategic and short-term objectives
Based on the assessment, the business priorities and the IT strategy, define a Brooks tailored Infosec strategy and roadmap. The roadmap will build a strong and scalable foundation to support the company growth target. It will also include mitigation actions and quick wins to address immediate needs
Socialize and communicate the Infosec strategy and obtain the endorsement from the key stakeholders
Lead and develop an efficient, effective, and high performing Infosec team, both integrated to the wider IT organization and is highly effective with the business functions and regions.
Evaluate, select, deploy, and oversee a comprehensive set of host-based, network-based, and cloud-based security systems globally
Lead the 3rd party vendors assessment and contribute to the company enterprise architecture and to the cloud 1st strategy and roadmap
Develop and maintain effective policies and procedures that ensure a consistent and thorough suite of controls.
Lead compliance activities including audits, ITGC, SOX, and certifications and ensure continuous compliance with applicable regulations.
Report key metrics, program progress, and future strategy to executive leadership.
Respond to security incidents, and participate in event containment, mitigation, investigation, and evidence preservation.
Interface with external customers and serve as the public face of security.
Develop information security culture and awareness across the company.
What You'll Bring
10+ years’ experience with 5+ years progressive leadership in information security.
Bachelor’s degree in technology (computer science/engineering). An advanced degree is a plus.
CISSP, CISM, or CRISC certification required.
Outstanding technical knowledge and applied experience in technical information security fields, including network security architecture and operations, cloud architecture, vulnerability management, intrusion detection, endpoint protection, authentication and access control, and secure software development.
Demonstrated project management skills and ability to track and report progress against established milestones, metrics, and deliverables.
Experience with vendor selection and management
Experience working directly with external customers, auditors, and regulators.
Influencer, able to build consensus in a team, socialize security requirements, and effectively communicate with management and customers.
Experience with business continuity planning, high availability concepts, and resilient design.
Familiarity with information security standards and industry regulations, including SOX, ISO 27000 series, GDPR, PCI, etc.
Experience securing public cloud environments (AWS, Azure, etc.)
Excellent written, verbal and presentation skills with a proactive approach to communication and escalation management
Ability to operate effectivelyin a global multi-cultural environment and drive harmonization and standardization
Strong analytic and problem-solving skills across a range of technologies
What We Offer
Competitive compensation, Subsidized health, dental, & life insurance, Flexible /Remote work, Paid time off; 12 paid holidays; Tuition Assistance; Student Loan Program; Scholarship Program; Community & Volunteer opportunities
A collaborative environment that values continuous learning & growth, problem solving, innovation, and teamwork to achieve mutual success.
Brooks Automation US, LLC is proud to be an Equal Opportunity Employer. We celebrate diversity and are committed to creating a welcoming and inclusive environment for all. Please apply to this role if you feel you are a good fit, regardless of your race, color, religion, gender identity, sex, sexual preference, sexual identity, pregnancy, national origin, ancestry, citizenship, age, marital status, physical disability, mental disability, medical condition, military status, or any other perceived limiting factor.
#LI-Remote
#LI-KV1