Senior Director, Cyber Security (Hybrid - San Diego, CA or Acton, MA)

Overview

The Senior Director, Cyber Security oversees cyber security measures throughout the organization. This senior-level position will participate in strategic oversight of every aspect of security - from staffing and budgets to protocols and incident response. Reporting directly to the CISO you will continue to develop and deliver a comprehensive information security program for Insulet Corporation global operations. Additionally, you will be responsible for ensuring the information / cyber security program is aligned with both IT, Corporate risk, and business objectives.

The Senior Director, Cyber Security reports directly to the Chief Information Security Officer and plays a pivotal role within Insulet's Chief Technology Office (CTO). This executive will lead a global function that encompasses security operations, Posture management, Data Protection, and IAM. The role includes direct management of senior leaders and tight partnership with leadership across organization to support risk reduction efforts.

Responsibilities

Strategic and Leadership & Governance

Define strategy and lead the Security Operation Center incident response capabilities.

Define, implement, and maintain corporate security policies and procedures that promote business resiliency (incident response, secure posture, architecture, IAM, data protection).

Work with CIO, CISO, and other executives to prioritize security initiatives and spending based on risk management and financial methodology.

Participate in strategic planning for the deployment of information security technologies and program enhancements.

Identify opportunities to reduce costs and / or increase business benefits while meeting or exceeding expected performance levels.

Support risk committee meetings; contribute to board-level risk oversight and reporting

Prepare financial forecasts for security operations and ensure proper maintenance coverage for security assets.

People Leadership and Culture

Provide leadership, mentorship, training opportunities, and guidance to personnel.

Support education programs focused on user awareness and security compliance.

Communicate with internal and external stakeholders as part of security awareness and risk response.

Incident Response & Resilience

Govern the enterprise cyber incident response plan, including tabletop exercises and business continuity planning.

Ensure readiness for ransomware, act as incident commander for breaches and other high-impact events.

Drive collaboration with Product security team to ensure ingestion to alerts, and product specific response actions.

Metrics & Reporting

Define and track key performance indicators (KPIs) and metrics for risk, quantification, compliance, and control effectiveness.

Deliver quarterly board updates, annual program reviews, and ad hoc reports on incidents, audits, and compliance status.

Strategic & External Engagement

Representing the organization in industry forums (e.g., H-ISAC), regulatory discussions, and peer collaborations.

Stay ahead of emerging technologies (e.g., AI, IoMT, cloud) and evolving regulatory landscapes to inform GRC strategy.

Required Leadership / Interpersonal Skills & Behaviors

Proven executive leader with a track record of building and scaling high-performing, cross-functional teams in complex, regulated environments.

Demonstrated ability to influence across the enterprise, including ELT and Board-level stakeholders, to drive alignment and accountability for risk and compliance outcomes.

Builds trust quickly and leads with integrity, transparency, and a collaborative mindset.

Skilled at navigating ambiguity and driving clarity in high-stakes, fast-paced environments.

Required Skills and Competencies

Polished communications skills, appropriate for a broad range audience

Strong executive presence with the ability to translate complex risk and compliance issues into actionable business insights for C-level and Board audiences.

Experience leading enterprise-wide GRC programs that span cybersecurity, privacy, product security, and data governance.

Demonstrated success in maturing GRC capabilities through automation, metrics, and continuous improvement.

Advanced degree (e.g., MBA, MS in Cybersecurity, or related discipline).

Professional certifications such as CISSP, CISM, CISA, CRISC, or CIPP.

Experience with GRC platforms and automation tools (e.g., Archer, ServiceNow GRC, OneTrust).

Familiarity with cloud security compliance frameworks (e.g., CSA CCM, FedRAMP, HITRUST for cloud).

Ability to effectively under pressure and during high-impact cyber incidents

Experience integrating cybersecurity with enterprise risk management, privacy, and product lifecycle governance.

Ability to prioritize and manage multiple competing demands in a global enterprise environment

Education and Experience

15+ years of proven Cyber Security and 7 years in leadership / management role.

Deep, hands-on knowledge of SOC tooling (EDR, NDR, SEIM)

CISSP, CISM, or similar

Additional Information

The position is hybrid at our Acton / SD / Bay Area office.

Travel is estimated at 25% but will flex depending on business needs.

NOTE : This position is eligible for hybrid working arrangements (requires on-site work from an Insulet office; may work remotely other days). #LI-Hybrid

Additional Information

The US base salary range for this full-time position is $217,275.00 - $325,912.50. Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position in the primary work location in the US. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your Talent Acquisition Specialist can share more about the specific salary range for your preferred location during the hiring process. Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits.

Insulet Corporation (NASDAQ : PODD), headquartered in Massachusetts, is an innovative medical device company dedicated to simplifying life for people with diabetes and other conditions through its Omnipod product platform. The Omnipod Insulin Management System provides a unique alternative to traditional insulin delivery methods. With its simple, wearable design, the tubeless disposable Pod provides up to three days of non-stop insulin delivery, without the need to see or handle a needle. Insulet's flagship innovation, the Omnipod 5 Automated Insulin Delivery System, integrates with a continuous glucose monitor to manage blood sugar with no multiple daily injections, zero fingersticks, and can be controlled by a compatible personal smartphone in the U.S. or by the Omnipod 5 Controller. Insulet also leverages the unique design of its Pod by tailoring its Omnipod technology platform for the delivery of non-insulin subcutaneous drugs across other therapeutic areas. For more information, please visit insulet.com and omnipod.com.

We are looking for highly motivated, performance-driven individuals to be a part of our expanding team. We do this by hiring amazing people guided by shared values who exceed customer expectations. Our continued success depends on it!

At Insulet Corporation all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Know Your Rights

J-18808-Ljbffr