Director, IT Security

Enpro is currently seeking a Director of Information Security to join our Information Security Team based in Charlotte, NC.  The ideal candidate will possess extensive technical experience building and optimizing information security programs. In this role, the Director of Information Security will lead a team in maturing security processes, capabilities, and tooling across a global, highly matrixed environment.  Reporting directly to the CISO, the successful candidate will collaborate closely with other IT teams throughout the organization to champion the adoption of Enpro's security standards and architecture principles across IT and OT environments. Additionally, the role requires advancing information security governance processes, implementing new security solutions, and fostering continuous improvement initiatives to fortify Enpro's information security program. 

What You’ll Do: 

Responsibilities of the Director of Information Security: 

• Develop and sustain high-performing teams through direct and indirect leadership. 

• Drive and execute security projects proactively, demonstrating a self-driven approach to project execution.  

• Lead the Enpro Information Security Team in the enhancement of incident response processes, strategic planning, and driving a culture of cybersecurity across the business. 

• Support risk management initiatives by working closely with stakeholders across business functions to assess needs and apply risk management treatments accordingly. 

• Act as a technical authority to provide security architecture guidance to teams across the business. 

• Support and mature Enpro's Security Operations program by optimizing the combination of technologies required to improve monitoring, prevention, detection, mitigation, and automation capabilities. 

• Mature Enpro’s Governance Risk & Compliance (GRC) and Identity & Access Management (IAM) capabilities and processes. 

• Manage and support regulatory compliance programs by guiding compliance initiatives, driving cybersecurity business certifications, advising stakeholders, and staying abreast of emerging trends and changes to regulations.  

• Lead team in responding promptly to security incidents and provide thorough post-event analysis. 

• Mature risk and vulnerability management programs by driving security and risk assessments, vulnerability analysis, and prioritizing remediation efforts. 

• Strengthen OT security program by leading the continuous improvement efforts for Enpro's OT security strategy.  

• Provide technical leadership and oversight to organizational technology and security projects. 

• Drive agile approach in managing security team workload and projects. 

• Manage and mentor the Information Security Team focusing on vertical and horizontal development. 

• Research topics in cybersecurity to stay ahead of the learning curve including emerging trends, technologies, threats, and vulnerabilities to always stay current with emerging threats and risks. 

Your Role in Our Values 

At Enpro, our values of Safety, Excellence, and Respect guide how we work, collaborate, and grow. In this role, you will have opportunities to live these values every day by creating safe environments, driving meaningful results, and building respectful relationships. 

 Safety: 

Champion a culture of safety by embracing the Enpro Safety Pledge in everything you do. Look for ways to improve safety in your work, your team, and the broader organization, because safety starts with each of us. 

Excellence: 

Bring your full self to work. Focus on creating value, driving innovation, and continuously improving how we work. 

Respect: 

Create space for every voice to be heard. Foster a workplace built on mutual respect, where people feel valued and empowered to contribute to both personal and organizational success. 

What You’ll Bring:  

Required Qualifications of the Director of Information Security: 

• 10+ years of experience in information security supporting risk management initiatives across security pillars including operations, GRC, IAM, awareness, and architecture 

• 5+ years of management experience leading information security programs including security operations, engineering, and architecture 

• 2+ years of experience supporting data privacy programs globally 

• Experience leading organizations through the ISO 27001, SOC, or similar certification processes 

• Experience securing OT environments 

• Experience building and maturing IAM programs 

• Experience formally presenting to executive leadership 

• Extreme ownership of assigned responsibilities and accountable for driving the security program's success 

• Possess a learning mindset; proactively staying current with new technologies, risks, and trends 

• Extensive experience leading teams in support of securing client and server operating systems (Windows/Linux) 

• Deep experience securing and monitoring multi-cloud environments; AWS / Entra 

• Expert working knowledge of current IT risks coupled with experience implementing effective and appropriate risk management treatments 

• Ability to interact with people at all levels of the business with excellent written and communication skills; experience with public speaking / reporting a plus 

• Experience working in a security operations environment performing security monitoring and incident response activities 

• Advanced understanding of core IT protocols and security architecture fundamentals 

 Preferred Qualifications of the Director of Information Security: 

• Master's degree in computer science, Information Security, or related field (MBA preferred) 

• Experience securing merger and acquisition (M&A) integrations and divestitures 

• Industry certifications (CISSP, CISM, GCIH, GMON, GPEN, OSCP, AWS) 

• Experience securing cloud infrastructure (AWS/Azure) 

• Experience securing application development environments (appsec) 

• Agile or scrum experience 

• Exposure to industry cybersecurity frameworks (ATT&CK, NIST CSF, Cyber Kill Chain, etc.) 

• Experiencing supporting industry and regulatory compliance frameworks such as PCI, ISO, DFARS, ITAR, NIST, and Sarbanes-Oxley  

EEO and Culture Statement: 

Enpro is a leading industrial technology company focused on critical applications across many end-markets, including semiconductor, industrial process, commercial vehicle, sustainable power generation, aerospace, food and pharma, photonics and life sciences. The company operates in two segments: Sealing Products and Advanced Surface Technologies. 

At Enpro, we believe that diversity drives innovation and inclusion fosters growth. We are committed to creating a workplace where everyone feels valued and respected. Our employment decisions are based on merit, qualifications, and business needs, without regard to race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), national origin, age, disability, genetic information, marital status, military service, or any other status protected by applicable law.  If you require accommodation due to a disability at any time during the recruitment and/or assessment process, please contact Human Resources, and we will make all reasonable efforts to accommodate your request. 

Legal authorization to work in the United States is required. We will not sponsor employment visas now or in the future for this job.