As a Director of Cybersecurity, you’ll work to mature our operational security capabilities, evolve our threat detection and response program, and drive strategic improvements to our identity architecture and governance. We’re looking for a Director of Cybersecurity to join our team and help elevate our security team and program to the next level. The ideal candidate for the role will be a passionate, data driven, team-oriented, servant leader who can lead day-to-day operations, help shape the organization’s strategic direction, and, when needed, provide tactical operational support to the team.

This person must be mission and values-driven, must have an ownership mentality, and must put the well-being of our customers, our teammates, and our organization at the forefront of how they operate. This person must be able to operate and thrive in a dynamic, high-growth startup environment with established Cybersecurity, GRC, and IT teams and programs within the Office of the CISO.

This is a critical, high-impact role that will serve as a catalyst for growth for any seasoned cybersecurity and technology leader up to the challenge. The Director of Cybersecurity is the senior operational leader overseeing this critical area of the organization. This position operates within the Office of the Chief Information Security Officer (CISO) and reports directly to the CISO. The director is responsible for the daily operational leadership and management of the company’s enterprise cybersecurity, information security, and related programs. Additionally, they partner with the Director, GRC to ensure the effective governance of security risks necessary to manage organizational risk, maintain compliance with relevant frameworks and programs, implement resilient and secure IT systems, and prioritize security, privacy, and customer trust throughout the organization.

Here are some of the problems you’ll help us solve:

• Program Leadership - Develop and refine the overall vision and strategy for the Security Engineering and Operations program, aligning it with business objectives, risk appetite, and industry best practices.

• Team Management - Lead, mentor, and develop a high-performing team of cybersecurity engineers, focusing on the concepts of Service Ownership. Own and direct a service ownership model for all security services based on security design foundations. The services will be closely tracked for effectiveness using service outcome metrics, maturity metrics, and business ROI metrics. Foster a collaborative and results-oriented environment. Assign tasks, provide feedback, and conduct performance reviews.

• Process Improvement - Continuously evaluate and improve engineering processes and system/control performance, identifying areas for automation, optimization, and increased efficiency. Develop and maintain relevant policies, procedures, and standards.

• MX Platform oversight - Partner with cross functional teams to perform product requirements analysis and design reviews to ensure the delivery of services that protect our customers data and preserve the integrity of all MX platform processes.

• Technology Oversight - Evaluate, select, and implement technology solutions and tools that efficiently provide required security control capabilities. Ensure the effective utilization of these tools and integrate them with other security systems. Stay current with emerging security technologies and threats.

• Reporting & Metrics - Develop and maintain key performance indicators (KPIs) and metrics to track the performance and effectiveness of security technologies and the overall security engineering program. Provide regular reports to peers and leadership on trends, progress, risks, and overall security posture.

• Compliance & Audits: Partner with the Governance, Risk, and Compliance (GRC) team to strike a balance between enforcing controls and maintaining engineering velocity. Ensuring compliance with relevant security regulations and standards (e.g., PCI DSS, SOC2, & NIST). Support internal and external audits as necessary.

• Collaboration & Communication - Effectively communicate information related to the security engineering program to technical and non-technical audiences. Collaborate with other security teams, IT operations, and business units. Cultivate and evangelize a culture of security across MX through training, internal communications, and stakeholder engagement, making security a shared responsibility at every level.

• Serve as a strategic partner to all MX business teams to drive cross-functional security initiatives, reduce technical debt, and implement pragmatic, risk-based and scalable solutions.
  
  

The Team You'll Work With

You will be part of a security-minded team that believes in progress over perfection and where both security culture and mindset are key. Our team is rethinking how security operations can be accomplished in innovative ways. We focus on enabling our business to security deliver world class services while minimizing and managing risk exposure for MX and its customers.

About You

You will act as a technical leader for our security engineering and operations team to help and empower technical decision making. You will work closely with all MX teams to protect MX. If you are excited by the idea of developing a scalable, efficient, and business-enabling security program, come join us!

Basic Requirements

• 10+ years of experience in information security with deep expertise in security engineering and operations.

• 4+ years of experience leading engineering teams, with familiarity in Agile development and security practices

• Experience developing and deploying Zero Trust architectures

• Strong understanding of modern cloud and network security principles, especially in GCP.

• Experience with enterprise IAM capabilities

• Experience leading and continuously improving incident response programs

• Experience with Terraform or similar cloud configuration tools

At MX, we are a high-performance organization that thrives on trust and results. This role is based in Lehi, Utah, with flexibility for both in-office and remote work. We believe in empowering our team members to deliver exceptional outcomes while taking advantage of our incredible office space when it best supports their work. Our Utah office features onsite perks such as company-paid meals, massage therapists, a sports simulator, gym, mother’s lounge, and meditation room and meaningful interactions with amazing people. We encourage team members to come together in the office to collaborate, kick off key projects, or strategize cross-functionally, fostering connection and innovation.

MX is proudly committed to recruiting and retaining a diverse and inclusive workforce. As an Equal Opportunity Employer, we never discriminate based on race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, military or veteran status, status as an individual with a disability, or other applicable legally protected characteristics. We particularly welcome applications from veterans and military spouses. All your information will be kept confidential according to EEO guidelines. You may request reasonable accommodations by sending an email to hr@mx.com.