Symmetrio is seeking an Information Security Architect to serve as the CISO's right hand in implementing the enterprise cybersecurity roadmap and bringing structure, accountability, and measurable progress to a security program undergoing major transformation. This is a senior leadership role focused on the intersection of strategy and operations in a complex, fast-moving enterprise environment.

What You'll Do

Partner closely with the Chief Information Security Officer (CISO) to implement the enterprise cybersecurity strategy and roadmap.
Lead the execution of remediation efforts from recent penetration testing and vulnerability assessment.
Oversee infrastructure security improvements, including network segmentation, endpoint hardening, and secure configuration of systems (including ICS/OT environments).
Build and operationalize GRC capabilities, including policy development, control mapping, and audit readiness.
Drive adoption of compliance frameworks such as ISO 27001, NIST CSF, and SOC 2.
Finalize and operationalize enterprise-wide Business Continuity and Disaster Recovery Plans.
Define and report operational security metrics, including uptime/downtime, incident response, and root cause analysis.
Guide secure architecture and reference design across ERP modernization, cloud transitions, and AI initiatives.
Lead rollout and maturity of ICS security programs across global manufacturing environments.
Develop and maintain security dashboards and reporting for executive and board-level stakeholders.
Foster cross-functional collaboration to embed security into IT, product, and business operations.
Contribute to building a strong security culture across the organization through education and leadership.

What We're Looking For

10–15+ years of experience in information security.
At least 3 years in a senior or director-level leadership role.
Proven track record of implementing and leading enterprise-wide security programs and initiatives.
Strong technical expertise in infrastructure security, network architecture, vulnerability management, and endpoint protection.
Hands-on experience remediating security assessment findings, including penetration test vulnerabilities.
Working knowledge of ICS/OT security environments (e.g., SCADA systems) and manufacturing technology.
Practical experience with governance, risk, and compliance (GRC) frameworks, including ISO 27001, SOC 2, and NIST CSF.
Demonstrated ability to build, operationalize, and enforce security policies, controls, and standards.
Experience with business continuity planning, disaster recovery, and operational resilience metrics.
Familiarity with secure architecture design for ERP systems, cloud platforms, and modern IT stacks.
Strong communication skills with ability to engage technical teams, business stakeholders, and executive leadership.
Ability to thrive in fast-paced, complex environments with shifting priorities and evolving organizational needs.
Bachelor’s degree in Computer Science, Information Security, or related field.