It's fun to work in a company where people truly BELIEVE in what they're doing!
Lumentum designs and builds photonic technologies that power the world’s communications and industrial innovation. We are seeking a Director of Corporate Information Security to lead and expand cybersecurity operations across our global hybrid environment.
Based in Caswell, this leadership role oversees the Security Operations Center (SOC) and a team of information security analysts. The Director will drive operational excellence across on-premises IT and manufacturing systems, AWS cloud infrastructure, and enterprise SaaS platforms such as Box, Office 365, and Workday, ensuring robust protection of Lumentum’s digital and operational assets.
Responsibilities
1. Lead and mature the Security Operations Center (SOC), ensuring efficient detection, triage, and response to security incidents.
2. Direct and mentor a global team of information security analysts and senior engineers.
3. Oversee cybersecurity operations across on-prem, manufacturing, cloud, and SaaS environments.
4. Drive deployment, integration, and lifecycle management of enterprise security tools and platforms.
5. Oversee vulnerability management, patch governance, and system hardening for IT and OT assets.
6. Maintain and continuously improve the company’s incident response program and escalation playbooks.
7. Lead enterprise-wide security awareness and phishing simulation initiatives to strengthen employee cyber resilience.
8. Partner with IT, operations, and cloud teams to ensure coordinated monitoring, response, and remediation.
9. Report on incident trends, risk metrics, and SOC performance to the CISO and senior leadership.
10. Support business continuity and disaster recovery readiness through cybersecurity-driven assessments and exercises.
11. Align operational security practices with corporate policies and frameworks (ISO 27001, NIST 800-53).
Skills
Required:
12. Deep technical expertise in SOC operations, threat detection, incident response, and vulnerability management.
13. Proven leadership experience managing multidisciplinary cybersecurity teams.
14. Strong understanding of hybrid infrastructures (on-prem, AWS, SaaS).
15. Experience with SIEM, EDR, and network security technologies.
16. Proficiency in security program development, reporting, and performance tracking.
17. Strong project and task management capabilities.
18. Excellent communication skills, capable of translating complex technical issues into business-relevant insights.
Optional (Desirable):
19. Familiarity with manufacturing and industrial control systems (ICS/OT).
20. Experience with SOAR and automation-driven incident management.
21. Knowledge of phishing simulation and behavioral awareness platforms.
22. Experience with Jira, ServiceNow, or other workflow management tools.
23. Awareness of ISO 27001, NIST 800-53, and CMMC frameworks.
Education
24. Bachelor’s degree in Computer Science, Information Security, or related discipline.
25. Advanced degree preferred but not required.
26. Equivalent professional experience may be considered.
Relevant Certifications
27. Preferred: CISSP, CISM, GIAC (GCIA, GCIH, GMON), or AWS Security Specialty.
28. Other relevant security or cloud certifications considered an advantage.
Work Experience
29. Minimum 8–10 years of cybersecurity experience, including 3–5 years in a leadership or management role.
30. Demonstrated experience leading operational security programs in complex, global, or manufacturing environments.
31. Proven success managing hybrid and legacy technology environments.
Competencies
32. Strategic leadership and operational discipline.
33. Analytical thinking and structured problem solving.
34. Program and project management excellence.
35. Strong stakeholder communication and executive reporting.
36. Collaboration across IT, OT, and business functions.
37. Risk-based decision-making under pressure.
38. Focus on measurable performance and continuous improvement.