Director, Information & Application Security

Who we’re looking for

We areseekinga highly skilled and experienced Director, Information Security to join our team at Fieldwire, a leading provider of Construction Software (SW) solutions. The Director, Information Security for Fieldwire is a Line of Defense 1 role and will be responsible for defining, owning and implementing our product security program, ensuring compliance with legal and regulatory requirements. This role requires a strategic thinker with strong delivery and communication skills, as well as in-depth knowledge of product security protocols, technologies, and standards.

The primary responsibilities for our next Director of Information Security will be to:

• Act as Product Business Information security officer for Fieldwire
• Develop, own and implement Fieldwire product security improvement plan.
• Identify and assess product security risks and threats.
• Collaborate with Fieldwire management to integrate security measures into the SW product and business processes.
• Report to management on security incidents and measures.
• Support the Head of Construction SW Security & GRC in all aspects of cyber security.
• Work closely with other Information Security Officers within Hilti, the Group CISO.
• Analyze regulatory and legal developments (e.g., NIST, CRA, NIS2, EU AI data act), translate these into actionable requirements, and oversee their implementation.
• Independently manage business projects related to information and product security, from requirements to implementation.
• Take responsibility for specific security topics such as Cloud & AI Security or technical risk analysis within Fieldwire.
• Contribute to the continuous improvement of the security architecture, the ICT & cyber risk management for Fieldwire.
• Own and maintain Fieldwire SOC2 certification and support Group ISO
  27001 certification.
• Coordinate internal and external audits in the field of information and product security and support the implementation of the resulting measures.

• Bachelor’s or master’s degree in computer science, Information Technology, Information Security, Cybersecurity, or related field.
• Several years of experience in a security officer role in SW/IT security.
• Multiple years of experience in product/SW security.
• In-depth knowledge of security protocols, technologies, and standards (e.g., ISO 27001, SOC2, NIST).
• Experience in developing and implementing security programs.
• Certifications such as CISSP, CISM, CISA, or equivalent are advantageous.
• Proficiency in security frameworks, risk management, incident response, and security architecture.
• Excellent analytical and problem‑solving skills. Ability to assess risks.