Head of Digital Security – Billerica, MA - Hybrid

Head of Digital Security – Billerica, MA - Hybrid

Cabot Corporation invites you to apply for the Head of Digital Security – Billerica, MA - Hybrid role.

Cabot has an exciting opportunity for a Sr Director of Information Security to join the Digital organization at Cabot’s Billerica, MA location. This critical role is ideal for someone passionate about leading Cabot’s global cyber and data security programs and overseeing the overall Information and Data security of the entire organization. The leader provides strategic vision, scoping of requirements, design, development, implementation, incident response, budgets and adherence to all necessary protocols, regulations, and any legal requirements.

Overall, the role encompasses all aspects of information security across the enterprise, including web and mobile application security, cloud, infrastructure and device security, security awareness training, policy, and compliance. The position is part of the Cabot Digital Leadership team and Manufacturing Security Council and is responsible for presenting to Cabot’s Board of Directors on a quarterly basis. The role requires 25% domestic and international travel and flexibility to work in a hybrid environment.

• Define and own a multi-year cybersecurity roadmap and key performance indicators focused on reducing cyber risk.
• Create quarterly, annual and long-term cyber security and cyber risk management goals, articulate strategies, define metrics, and provide necessary updates to executive leadership and the Board of Directors.
• Lead security incident response, third‑party information security assessment, data protection and encryption, identity and access management and privileged user access.
• Define cyber security governance and control strategies for emerging technologies such as cloud, containerization, blockchain, and distributed computing.
• Keep well informed of developing security threats and proactively create strategies to mitigate potential security problems that might arise from acquisitions or other large business moves.
• Develop, implement, and monitor a strategic, comprehensive enterprise‑wide information security and risk management program.
• Provide strategic and tactical vision around adversary and threat detection, incident response, and asset fortification.
• Advise the CDIO, executive leadership, and digital leaders on security issues and threats.
• Oversee the design, testing, and implementation of all IT security solutions.
• Oversee day‑to‑day control of the maintenance and monitoring of live production environments.
• Strategic planning, leadership, staff development, training, and adherence to all legal, compliance and regulatory requirements.
• Define, scope, create, and execute IT and data security strategies to enhance the reliability and security of IT systems, projects, and underlying data.
• Oversee managers and teams, allocate resources to ensure secure and robust IT solutions.
• Plan and execute vulnerability audits, penetration testing or forensic IT audits and investigations to improve security.
• Liaise with senior level directors, the board, and key stakeholders, managers, programmers, and IT security risk‑assessment staff.
• Oversee integration of new IT systems with overall security policies.
• Train staff in latest security awareness skills and ensure protocols and procedures are implemented.
• Ensure compliance with legislation such as the Data Protection Act, ISO standards, or relevant regulations.
• Plan budget allocations and financial forecasts for IT, data, and information security.
• Manage staff development, hiring, dispute resolution, and personnel decisions.
• Liaise with partners, stakeholders, vendors, and third‑party providers.
• Oversee projects, budgets and resources to ensure favorable return on IT investments.
• Maintain GRC and audit responsibility.

• Degree in business administration or a technology‑related field.
• Relevant professional security management certifications.
• 8+ years of experience overseeing information, cyber and technology security.
• Experience in a manufacturing environment.
• Experience with a global organization.
• Experience with contract and…