1

Cyber Security Strategy Jobs (NOW HIRING)

Director, Cyber Security

Kirkland, WA · Remote

$165K - $200K/yr

This role provides both strategic direction and operational oversight of the cybersecurity function, ensuring alignment with business priorities, regulatory requirements, and risk tolerance. The ...

Cybersecurity Advisor - Senior

Washington, DC · On-site

$106K - $137K/yr

Key Responsibilities Cybersecurity Strategy and Governance * Advise leadership on cybersecurity priorities, policy enhancements, and governance initiatives. * Support the alignment of cybersecurity ...

Head of Cyber Security

Houston, TX

$106K - $143K/yr

Our focus is on combining data, technology, and strategy to create predictable growth for our clients. As we continue to expand, we're looking for a Head of Cyber Security to lead our security vision ...

Cybersecurity Director

New York, NY · On-site

$200K - $300K/yr

This Senior Cybersecurity Professional is responsible for protecting the organization's data ... This is a hands-on leadership role in a lean team, requiring both strategic ownership and direct ...

Sr Director, Cyber Security

Chamblee, GA · On-site

$108K - $147K/yr

As one of the largest companies in the industry and a strategic partner of Delta Air Lines - we are ... This role owns all aspects of cybersecurity operations, including threat detection and response ...

Sr Director, Cyber Security

Chamblee, GA

$108K - $147K/yr

As one of the largest companies in the industry and a strategic partner of Delta Air Lines - we are ... This role owns all aspects of cybersecurity operations, including threat detection and response ...

Sr Director, Cyber Security

Chamblee, GA · On-site

$108K - $147K/yr

As one of the largest companies in the industry and a strategic partner of Delta Air Lines - we are ... This role owns all aspects of cybersecurity operations, including threat detection and response ...

... cybersecurity strategy and compliance framework • Work directly with executive leadership, gaining high visibility across the business • Be the go-to expert for ITAR and government regulatory ...

This role will lead cybersecurity strategy, architecture, and risk management for industrial control systems (ICS), SCADA networks, and process automation systems critical to water infrastructure.

Sr. Director IT Cyber Security

Waller, TX · On-site

$100K - $135K/yr

Develop and execute the enterprise cyber security strategy aligned with corporate objectives and in partnership with the Vice President of IT and senior leadership. * Lead the design, implementation ...

Sr. Director IT Cyber Security

Waller, TX

$100K - $135K/yr

Develop and execute the enterprise cyber security strategy aligned with corporate objectives and in partnership with the Vice President of IT and senior leadership. * Lead the design, implementation ...

Be Seen First

Key Responsibilities Strategic Leadership * Lead, develop, and mature the enterprise cybersecurity program. * Develop and execute multi-year cybersecurity roadmaps aligned with organizational ...

New

Sr. Director IT Cyber Security

Waller, TX

$100K - $135K/yr

Develop and execute the enterprise cyber security strategy aligned with corporate objectives and in partnership with the Vice President of IT and senior leadership. * Lead the design, implementation ...

next page

Showing results 1-20

Cyber Security Strategy information

See salary details

$57K

$133K

$186K

How much do cyber security strategy jobs pay per year?

As of Jul 1, 2026, the average yearly pay for cyber security strategy in the United States is $132,962.00, according to ZipRecruiter salary data. Most workers in this role earn between $111,000.00 and $150,000.00 per year, depending on experience, location, and employer.

What is the difference between Cyber Security Strategy vs Cyber Security Analyst?

AspectCyber Security StrategyCyber Security Analyst
Primary FocusDeveloping and guiding security policies and long-term plansMonitoring, analyzing, and responding to security threats
Required SkillsStrategic thinking, risk management, policy developmentTechnical skills, threat detection, incident response
CertificationsCISSP, CISM, Security+CompTIA Security+, CEH, CISSP
Work EnvironmentPlanning sessions, executive meetings, policy documentationSecurity operations centers, incident response teams

While Cyber Security Strategy focuses on creating overarching security plans and policies, Cyber Security Analysts implement and monitor these strategies by analyzing threats and responding to incidents. Both roles are essential but differ in scope and daily responsibilities.

What is cyber security strategy?

Cyber security strategy refers to a comprehensive plan or framework that organizations use to protect their digital assets, data, and operations from cyber threats. This strategy outlines the policies, procedures, technologies, and resources needed to prevent, detect, and respond to cyber attacks. It typically includes risk assessment, security controls, incident response planning, and ongoing evaluation to adapt to evolving threats. A strong cyber security strategy is essential for minimizing vulnerabilities and ensuring business continuity.

Can I make $200,000 a year in cyber security?

Cyber security professionals, especially those in senior roles such as security architects or chief information security officers, can earn $200,000 or more annually, particularly with extensive experience, advanced certifications like CISSP or CISM, and working in high-demand industries or organizations. Entry-level or mid-tier positions typically have lower salaries, but experience and specialization can significantly increase earning potential.

What does a cybersecurity strategist do?

A cybersecurity strategist develops and implements security plans to protect an organization’s digital assets from cyber threats. They analyze risks, establish security policies, and coordinate with IT teams to ensure defenses are effective, often utilizing tools like firewalls and intrusion detection systems. Strong analytical skills and industry certifications such as CISSP are common requirements for this role.

What are the key skills and qualifications needed to thrive in Cyber Security Strategy, and why are they important?

To thrive in Cyber Security Strategy, you need a deep understanding of information security principles, risk management, and regulatory frameworks, often supported by a degree in cybersecurity or computer science and relevant certifications like CISSP or CISM. Familiarity with security assessment tools, SIEM systems, and threat intelligence platforms is typically required. Strategic thinking, strong communication, and leadership abilities help professionals influence organizational policies and foster security awareness. These skills are crucial for developing comprehensive security strategies that protect organizations from evolving cyber threats and ensure regulatory compliance.

Can you make $500,000 a year in cyber security?

Cyber security professionals, especially those in senior roles such as security architects or chief information security officers, can earn $500,000 or more annually, often through a combination of base salary, bonuses, and stock options. Achieving this level typically requires extensive experience, advanced certifications like CISSP or CISM, and working in high-demand industries or organizations with large security budgets.

What is a cyber security strategy?

A cyber security strategy is a comprehensive plan developed by cybersecurity professionals to protect an organization’s information systems and data from cyber threats. It involves identifying risks, implementing security measures, and establishing policies to ensure ongoing security and compliance. Effective strategies often include risk assessment, incident response planning, and the use of security tools like firewalls and encryption.

What are some common challenges faced when developing and implementing a cyber security strategy in an organization?

Professionals in Cyber Security Strategy often encounter challenges such as aligning security initiatives with business objectives, navigating rapidly evolving threat landscapes, and managing stakeholder expectations. Balancing risk management with operational efficiency requires strong communication and collaboration across departments. Additionally, keeping up with compliance requirements and ensuring user awareness throughout the organization are ongoing tasks that add complexity to the role.
What cities are hiring for Cyber Security Strategy jobs? Cities with the most Cyber Security Strategy job openings:
What are the most commonly searched types of Cyber Security Strategy jobs? The most popular types of Cyber Security Strategy jobs are:
Director, Cyber Security

Director, Cyber Security

Ziply Fiber

Kirkland, WA • Remote

$165K - $200K/yr

Full-time

Medical, Dental, Vision, Retirement, PTO

Posted 8 days ago


Ziply Fiber rating

6.3

Company rating: 6.3 out of 10

Based on 16 frontline employees who took The Breakroom Quiz

62nd of 80 rated telecommunications companies


Job description

This is a remote position.

Position Title: Director, Cyber Security


Base Salary: $165,000 to $200,000 annually DOE

Bonus: Target annual bonus

Benefits: Medical, dental, vision, 401k, flexible spending account, paid sick leave and paid time off, parental leave, quarterly performance bonus, training, career growth and education reimbursement programs.


Ziply Fiber is a local internet service provider dedicated to elevating the connected lives of the communities we serve. We offer the fastest home internet in the nation, a refreshingly great customer experience, and affordable plans that put customers in charge.


As our state-of-the-art fiber network expands, so does our need for team members who can help us grow and realize our goals.


Our Company Values:


  • Genuinely Caring: We treat customers and colleagues like neighbors, with empathy and full attention.
  • Empowering You: We help customers choose what is best for them, and we support employees in implementing new ideas and solutions.
  • Innovation and Improvement: We constantly seek ways to improve how we serve customers and each other.
  • Earning Your Trust: We build trust through clear, honest, human communication.


Job Summary

The Director, Cyber Security is a senior technology leader responsible for defining, advancing, and operationalizing an enterprise cybersecurity strategy and multi-year roadmap that protects the organization’s digital assets, systems, and sensitive information against an increasingly complex threat landscape.


This role provides both strategic direction and operational oversight of the cybersecurity function, ensuring alignment with business priorities, regulatory requirements, and risk tolerance. The Director partners closely with VP-level leadership and cross-functional stakeholders to embed cybersecurity into all aspects of the organization, enabling secure growth while maintaining a strong risk posture.


The successful candidate brings deep cybersecurity expertise, executive presence, and a demonstrated ability to lead organizations, influence senior stakeholders, and drive measurable improvements in security maturity across a dynamic, fast-paced environment.


Essential Duties and Responsibilities:

The Essential Duties and Responsibilities listed below are a range of duties performed by the employee and not intended to reflect all duties performed.


People Leadership & Talent Management

· Build, lead, and scale a high-performing cybersecurity organization, including management of managers and senior individual contributors.

· Establish organizational priorities, operating models, and accountability frameworks to ensure consistent delivery of security outcomes.

· Create and sustain a culture of continuous learning, leadership development, and technical excellence across the cybersecurity function.

· Drive succession planning and long-term talent strategy, ensuring depth of leadership capability across the organization.

· Partner with executive leadership and HR to attract, develop, and retain top-tier cybersecurity leadership and technical talent.


Cybersecurity Strategy, Governance & Program Management

· Own and continuously evolve the enterprise cybersecurity strategy, ensuring alignment with corporate objectives, risk tolerance, and business growth initiatives.

· Establish and report on KPIs, metrics, and maturity models to measure program effectiveness, risk reduction, and return on investment.

· Serve as a key advisor to VP-level leadership, translating cybersecurity risks into clear, actionable business decisions.

· Oversee the development, implementation, and governance of enterprise cybersecurity policies, standards, and frameworks aligned to industry best practices.

· Own cybersecurity financial planning, including budgeting, forecasting, and investment prioritization.

· Drive continuous optimization of cybersecurity investments while maintaining strong protection and scalability.


Risk Management, Compliance & Third-Party Security

· Oversee enterprise-wide cyber risk management strategy, including risk identification, prioritization, and mitigation aligned to business objectives.

· Drive risk mitigation strategies embedded within business and technology processes.

· Ensure implementation and ongoing enforcement of security controls across infrastructure, cloud environments, and applications.

· Provide executive oversight of third-party risk management programs, including vendor security reviews and contractual requirements.

· Set compliance strategy across applicable regulatory frameworks (e.g., NIST, ISO, SOX, PCI DSS), ensuring audit readiness and operational adherence.

· Act as the escalation point for high-impact cybersecurity risks, partnering with senior leadership on mitigation decisions.


Incident Response, Business Continuity & Disaster Recovery

· Oversee enterprise incident response capabilities, ensuring readiness, governance, and continuous improvement.

· Provide senior leadership during major cybersecurity incidents, coordinating across business and technology stakeholders.

· Drive executive-level post-incident reviews, including root cause analysis and long-term remediation strategies.

· Partner with Technology leadership to integrate cybersecurity into enterprise business continuity and disaster recovery planning.

· Ensure ongoing testing, validation, and improvement of resilience capabilities through simulations and exercises.


Security Operations, Architecture & Technology Enablement

· Provide strategic oversight of security operations, including SOC capabilities, monitoring, detection, and response maturity.

· Define and drive the cybersecurity technology roadmap, including evaluation and adoption of emerging solutions.

· Ensure alignment of cybersecurity architecture with enterprise infrastructure, cloud platforms, and application strategies.

· Establish and enforce security architecture standards across all environments, including network, endpoint, cloud, and data systems.

· Ensure implementation of data protection strategies, including encryption, DLP, and secure data handling practices.

· Direct the engineering, deployment, and lifecycle management of the enterprise security technology stack, including SIEM platforms, IDS/IPS, EDR/XDR, firewalls, VPNs, and vulnerability scanning and penetration testing tooling.

· Oversee the secure architecture and hardening of core infrastructure services — including DNS, DHCP, and identity and access management platforms such as LDAP and Active Directory — and enforce system hardening baselines such as CIS Controls, DISA STIGs, and USGCB.

· Drive the maturation of 24/7 SOC capabilities and the enterprise adoption of zero-trust architecture and AI-driven threat detection and response automation.

· Ensure secure configuration and protection across cloud platforms (AWS, Azure, and Google Cloud), IoT devices, and mobile endpoints.


AI Governance & Emerging Technology Risk

· Sponsor and set the strategic direction for the enterprise AI governance program for the secure and responsible adoption of artificial intelligence and machine learning across the organization, providing executive oversight of the supporting policies, standards, and acceptable-use guidelines.

· Provide executive oversight of AI and machine-learning security risk assessments, including model integrity, training-data protection, and defenses against prompt injection, model evasion, and data-poisoning attacks.

· Partner with Legal, Privacy, and business leadership to align AI adoption with regulatory expectations and emerging AI-specific frameworks (e.g., NIST AI RMF and ISO/IEC 42001).

· Govern the secure use of generative AI and AI-enabled security tooling, balancing innovation and productivity with data protection, intellectual-property safeguards, and risk reduction.

· Monitor the evolving AI threat landscape and direct the responsible integration of AI-driven automation into detection, response, and operational workflows.



Awareness, Cross-Functional Partnership & Reporting

· Deliver executive-level reporting on cybersecurity posture, risk trends, and program performance.

· Oversee enterprise-wide cybersecurity awareness and training programs, driving cultural adoption and measurable risk reduction.

· Serve as a strategic partner across Technology, Legal, HR, Compliance, and business functions to embed cybersecurity into operations.

· Influence major business and technology initiatives by integrating cybersecurity considerations early in planning and execution.

· Promote a culture of shared accountability for cybersecurity across the organization.


Other Duties

· Must be available to work regular business hours Pacific Standard Time.

· Must also be available to work on-call, evenings and weekends as needed.

· Performs other duties as required to support the business and evolving organization.


Required Qualifications:

· High school diploma or GED.

· Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a closely related field. Equivalent professional experience may be considered.

· Minimum of fifteen (15) years of progressive experience in cybersecurity, information security, or related technical fields.

· Minimum of seven (7) years of progressive leadership experience, including direct management of managers within a cybersecurity or technology function.

· Demonstrated experience leading enterprise-scale cybersecurity programs and influencing VP-level stakeholders.

· Proven experience balancing strategic planning with operational execution in a complex and evolving environment.

· Extensive experience securing IT infrastructure, managing vulnerability programs, and leading incident response.

· Experience implementing and managing security frameworks such as NIST CSF, ISO 27001, or CIS benchmarks.

· Strong knowledge of network security, cloud security platforms, and enterprise security operations tools (SIEM, IDS/IPS, EDR).

· Experience with identity management, system hardening, and emerging threat mitigation techniques.

· Familiarity with DevSecOps practices and secure software development lifecycle (SDLC).


Preferred Qualifications:

· CISM, CISSP, CEH, or comparable cybersecurity certifications.

· Experience in telecommunications, ISP, or highly regulated industries.

· Experience leading cybersecurity transformation initiatives in a high-growth or scaling organization.

· Experience presenting cybersecurity strategy or risk posture to executive leadership or board-level stakeholders.


Knowledge, Skills, and Abilities:


What Ziply Fiber employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom