Overview

Senior Director, Cyber Security (Hybrid - San Diego, CA or Acton, MA) at Insulet Corporation

Join to apply for the Senior Director, Cyber Security (Hybrid - San Diego, CA or Acton, MA) role at Insulet Corporation.

Position Overview: The Senior Director, Cyber Security oversees cyber security measures throughout the organization. This senior-level position participates in strategic oversight of security, including staffing and budgets, protocols, and incident response. Reporting directly to the CISO, you will develop and deliver a comprehensive information security program for Insulet Corporation global operations and ensure alignment with IT, corporate risk, and business objectives. This role reports to the Chief Information Security Officer and leads a global function spanning security operations, posture management, data protection, and IAM, with direct management of senior leaders and close collaboration with leadership to support risk reduction.

Responsibilities

• Define strategy and lead the Security Operations Center incident response capabilities.
• Define, implement, and maintain corporate security policies and procedures to promote business resiliency (incident response, secure posture, architecture, IAM, data protection).
• Prioritize security initiatives and spending with CIO, CISO, and executives based on risk management and financial methodology.
• Participate in strategic planning for deployment of information security technologies and program enhancements.
• Identify opportunities to reduce costs and/or increase benefits while meeting performance expectations.
• Support risk committee meetings; contribute to board-level risk oversight and reporting.
• Prepare financial forecasts for security operations and ensure proper maintenance coverage for security assets.

People Leadership and Culture

• Provide leadership, mentorship, training opportunities, and guidance to personnel.
• Support education programs focused on user awareness and security compliance.
• Communicate with internal and external stakeholders as part of security awareness and risk response.

Incident Response & Resilience

• Govern the enterprise cyber incident response plan, including tabletop exercises and business continuity planning.
• Ensure readiness for ransomware and act as incident commander for breaches and other high-impact events.
• Drive collaboration with Product security to ensure ingestion to alerts and product-specific response actions.

Metrics & Reporting

• Define and track KPIs and metrics for risk, quantification, compliance, and control effectiveness.
• Deliver quarterly board updates, annual program reviews, and ad hoc reports on incidents, audits, and compliance status.

Strategic & External Engagement

• Represent the organization in industry forums and regulatory discussions; stay ahead of emerging technologies and evolving regulatory landscapes to inform GRC strategy.

Required Leadership / Interpersonal Skills & Behaviors

• Proven executive leader with a track record of building and scaling high-performing, cross-functional teams in complex, regulated environments.
• Ability to influence across the enterprise, including ELT and Board-level stakeholders, to drive alignment and accountability for risk and compliance outcomes.
• Builds trust quickly and leads with integrity, transparency, and collaboration.
• Skilled at navigating ambiguity and driving clarity in high-stakes, fast-paced environments.

Required Skills and Competencies

• Polished communications skills suitable for a broad range of audiences.
• Strong executive presence with the ability to translate complex risk and compliance issues into actionable business insights for C-level and Board audiences.
• Experience leading enterprise-wide GRC programs spanning cybersecurity, privacy, product security, and data governance.
• Success in maturing GRC capabilities through automation, metrics, and continuous improvement.
• Advanced degree (e.g., MBA, MS in Cybersecurity, or related discipline).
• Professional certifications such as CISSP, CISM, CISA, CRISC, or CIPP.
• Experience with GRC platforms and automation tools (e.g., Archer, ServiceNow GRC, OneTrust).
• Familiarity with cloud security compliance frameworks (e.g., CSA CCM, FedRAMP, HITRUST for cloud).
• Ability to work effectively under pressure during high-impact cyber incidents.
• Experience integrating cybersecurity with enterprise risk management, privacy, and product lifecycle governance.
• Ability to prioritize and manage multiple competing demands in a global enterprise environment.

Education and Experience

• 15+ years of proven Cyber Security experience with 7 years in leadership/management roles.
• Hands-on knowledge of SOC tooling (EDR, NDR, SIEM).
• CISSP, CISM, or similar certification.

Additional Information

• The position is hybrid at our Acton/SD/Bay Area office.
• Travel is estimated at 25% but will flex depending on business needs.
• The US base salary range for this full-time position is $217,275.00 - $325,912.50, with details shared during the hiring process.
• Insulet Corporation is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

(Know Your Rights)