Director of Information Security & Compliance

• Lead the design and implementation of secure architecture across enterprise systems, applications, and data platforms.
• Oversee the full lifecycle of corporate directive implementation (esp. CD 9000), including threat modeling, cybersecurity verification, vulnerability management, and incident response.
• Ensure alignment with Bosch's Essential and Integral Cybersecurity Architecture (EISA) and other applicable internal standards.
• Provide expert consulting to business units and project teams on data protection and privacy compliance.
• Identify and assess risks related to data protection and information security then develop and implement mitigation strategies.
• Design and implement controls and measures to address high-risk areas in compliance with statutory requirements.
• Advise on legal compliance, contract negotiations, and integration of privacy requirements into new business models.
• Lead or participate in cross-departmental working groups focused on data protection and GRC tool initiatives.
• Provide specialized support to business initiatives, offering expert advice on data protection and information security.
• Develop and enforce security policies, procedures, and technical standards in collaboration with IT, legal, and operational stakeholders.
• Plan, prepare, and conduct audits and assessments related to data protection and information security.
• Develop and deliver targeted training programs and awareness campaigns for managers and employees on compliance best practices.
• Engage and direct external resources as needed for specific project scope
• Monitor emerging threats, technologies, and regulatory changes to proactively adjust security strategies.

• Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or a related field.
• Deep knowledge of data protection and information security principles.
• 8+ years of experience in IT, cybersecurity, information security architecture, or related leadership roles.
• Demonstrated experience implementing CD 9000 or similar cybersecurity frameworks.
• Practical experience in privacy compliance consulting and risk mitigation.
• Exposure to security frameworks (CMMC, ISO 27001, SOC 2).
• Strong analytical skills and understanding of business and technical contexts.
• Strong customer service and communication skills.
• Excellent project management and communication skills.
• Ability to manage multiple tasks and prioritize effectively.

• Master's degree in Cybersecurity, Information Assurance, or a related discipline.
• Proven experience implementing statutory and corporate data protection frameworks.
• Familiarity with Bosch cybersecurity standards, including EISA and CSMS.
• Certifications such as CISSP, CISM, or equivalent.
• Experience supporting remote users and hybrid work environments.
• Experience with certification requirements (CMMC, SOC 2, ISO 27001) and data protection laws.
• Empathetic, collaborative and an effective communicator.
• Self-driven, organized, solution-focused, and adaptable to new challenges.
• A passion for innovation and an expert understanding of emerging technologies.

• A passion for innovation and an expert understanding of emerging technologies.
• Always strive to provide an excellent end-user experience.
• Possess a sense of urgency and a focus on results-driven performance.
• Excellent project management and communication skills.
• Able to work within deadlines and is flexible.
• Self-motivated and can work well as part of a team.
• Extremely detail-oriented, proactive self-starter demonstrating a positive, willing attitude.
• Excellent oral and written communication skills.
• Be able to lift and carry, drawings, personal computers, material, and spend significant time sitting etc.
• Be able to lift up to 30lbs.
• Be able to spend significant time standing and walking.
• Be able to climb flights of stairs throughout a typical day.

• Must be able to effectively communicate, (ie see, hear, speak and write clearly) in order to communicate with colleagues and/or customers; manual dexterity required for occasional reaching, lifting of light office objects, and operating office equipment

• The office is clean, orderly, properly lighted and ventilated. Noise levels are considered low to moderate

Company Info:

Paladin Technologies is a premier North American complex systems integrator for building technology solutions, including IP security, alarms & monitoring, audio visual, low-voltage infrastructure, and networking. As a leader in the design, deployment, optimization, management, and maintenance of communication and digital networks, Paladin can meet the needs of clients on a national scale, while providing local support. Our team is the best in the industry, with manufacturer trained technicians, PMP-certified project managers, CTS- and RCDD-certified design engineers, coordinators, and administrative resources.

Paladin has offices coast to coast across the United States and Canada, and nearly 1,700 talented and committed professionals dedicated to custom-crafting and installing technology solutions for clients requiring Integrated Security, Network Infrastructure, Audio Visual, Fiber Optics/OSP, Structured Cabling, and more. We are always at the forefront of the changing technology landscape, and through continued training, complex client projects, and company support, we provide our colleagues with exciting challenges and a rewarding career as Paladin continues to grow.

This company considers candidates regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. Equal Opportunity Employer, including disability & veterans, or any other characteristic protected by law. If you need accommodation for any part of the application process, please send an email or call 1-855-296-3199 to speak with Human Resources and let us know the nature of your request.

We thank you for your application, however only those selected for an interview will be contacted.