Logo
RXO

Senior Director, Information Security (Engineering, Operations, Identity)

RXO, Charlotte, North Carolina, United States, 28245


Senior Director, Information Security (Engineering, Operations, Identity)

RXO is a leading provider of transportation solutions. With cutting-edge technology at the center, we’re revolutionizing the industry with our massive network and commitment to finding solutions for every challenge. We create more efficient ways for shippers and carriers to transport goods across North America. As a Senior Director, Information Security (Engineering, Operations, Identity) at RXO, you'll spearhead the evolution of our security landscape. In this pivotal role, you'll drive the design and deployment of cutting-edge security technologies to safeguard our organization’s assets and data. Your expertise will shape the future of our security architecture, integrating advanced solutions such as EDR, NDR, DLP and more to stay ahead of emerging threats. You’ll also lead the charge in fortifying our identity security framework, ensuring robust management of privileged access, endpoint security and access governance. As a key partner to the CISO and a peer to the Director of Security Risk and Governance, you’ll play a crucial role in shaping our comprehensive security strategy and driving our mission to protect and enhance our business operations. Join us and be at the forefront of cybersecurity innovation, leading a dynamic team and making a significant impact on our organization's security posture. What your day-to-day will look like: Direct Security Engineering and Operations: Oversee security solutions/technology architecture, evaluation, engineering and operations, including advanced technologies such as EDR, NDR, DLP, WAF, IPS, Secure Email Gateways, Web Security Platforms and Certificate Management. Manage Identity and Access: Oversee endpoint privilege management, privileged access for critical systems and conditional access policies. Lead access reviews, certifications and audits to ensure robust access controls. Enhance Security Architecture: Continuously evaluate and improve the organization's security architecture and infrastructure. Ensure alignment with industry best practices and regulatory requirements. Collaborate with IT and Business Teams: Partner with IT infrastructure and business development to implement identity and access management frameworks and best practices. Vendor and Technology Management: Facilitate the review of security technologies/hardware/software; work with vendors and procurement to obtain best pricing. Drive POCs and implementations, establishing clear ownership of responsibilities. Monitor and Report Metrics: Develop and track key metrics related to security defenses, technology performance and coverage gaps. Provide regular reports and a comprehensive security dashboard in collaboration with the security risk and governance team. Establish Procedures and SLAs: Create and maintain operational procedures, SLAs, and on-call availability, driving continuous improvement in processes, people and technology. Lead and Mentor Team: Build, lead and mentor a high-performing security engineering and operations team. Foster a culture of continuous improvement, collaboration and professional development. Build External Relationships: Develop and maintain relationships with external security vendors, service providers and industry peers. Act as a key advisor to the CISO and collaborate with the Director of Security Risk and Governance to build a unified security strategy. Innovation and Adaptability: Stay informed about emerging threats and technologies, adapting security strategies proactively. What you’ll need to excel: At a minimum, you’ll need: Bachelor's degree or equivalent related work or military experience. 7 years of experience in cybersecurity, with a focus on security engineering, operations and identity management. 5 years of leadership experience managing large, complex security infrastructure and engineering teams. It’d be great if you also have: Bachelor’s degree in Computer Science or related field or equivalent experience. 10 years of experience in cybersecurity, with a focus on security engineering, operations, and identity management. Expertise in security technologies such as EDR, NDR, DLP, email security, web security, firewalls and PAM solutions. Certifications such as CISSP, CISM, or equivalent are highly desired. In-depth knowledge of and experience in security concepts including cyber-attacks and techniques, incident management, threat management, etc. Experience with automation and efficiency to improve programs/processes. Good presentation, collaboration, relationship and interpersonal skills. In this role, you’ll be supported by a passionate team motivated by fast-paced innovation and the desire to deliver for customers. We’re a company where you can continually advance your career, no matter your background — the opportunities are endless and yours for the taking. If you’re driven and looking for a place to grow, come join us. Does this sound like you? Check out what else RXO has to offer. Competitive pay. Health, dental and vision insurance. 401(k) with company match. Life insurance, disability. Employee Assistance Program (EAP). Paid time off. Our Culture We do great things when we are inclusive and work together. To perform with excellence, we learn from one another, value diverse perspectives, operate safely, and build strong relationships. We welcome everyone regardless of background, identity, or ability. The Next Step Ready to join our team? We’d love to hear from you. Fill out an application now and join our talent community to learn about future opportunities. We are proud to be an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. All applicants who receive a conditional offer of employment may be required to take and pass a pre-employment drug test. The above statements are not an exhaustive list of all required responsibilities, duties and skills for this job classification.

#J-18808-Ljbffr