Vice President Cyber Security Jobs (NOW HIRING)

See What We’re All About

As the fastest-growing distributor of restaurant equipment, HVAC and residential appliance parts, we like to do things a little differently. First, you need to understand and demonstrate our Core Values with safety being your first priority. That’s key. But we’re also looking for unique enthusiasm, high integrity, courage to embrace change…and if you know a few jokes, that puts you on the top of our list!

Do you have a genius-level knowledge of original equipment manufacturer parts? If not, no problem! We’re more interested in passionate people with fresh ideas from different backgrounds. That’s what keeps us at the top of our game. We’re proud that our workplace has been recognized for its growth and innovation on the Inc. 5000 list 15 years in a row and the Crain’s Fast 50 list ten times. We are honored to be voted by our Chicagoland team as a Chicago Tribune Top Workplace for the last four years.

If you’re ready to roll up your sleeves, go above and beyond and put your ambition to work, all while having some fun, let’s chat – Apply Today!

Perks

• Parts Town Pride – check out our virtual tour and culture!
• Hybrid Work schedule
• Team member appreciation events and recognition programs
• Volunteer opportunities
• Monthly IT stipend
• Casual dress code
• On-demand pay options: Access your pay as you earn it, to cover unexpected or even everyday expenses
• All the traditional benefits like health insurance, 401k/401k match, employee assistance programs and time away – don’t worry, we’ve got you covered.

The Job at a Glance

The Vice President, Cybersecurity is a mission‑driven leader who protects the enterprise from cyber threats while empowering the business to move fast, innovate boldly, and operate safely. This role champions cyber risk ownership across the organization, translating complex threats into clear business, financial, and legal impact. With passion, courage, and deep integrity, this leader ensures Parts Town can withstand disruption, respond decisively, and recover stronger every time.

A Typical Day

• Cybersecurity Strategy & Enterprise Risk Ownership
  • Build and execute a multi‑year cybersecurity and resiliency strategy that fuels Parts Town’s growth and innovation.
  • Own the enterprise cyber risk register and align it with a maturing ERM program.
  • Communicate cyber risk in a way that empowers executives and the Board to make confident, informed decisions.
  • Create a roadmap that balances safety, scalability, cost efficiency, and business speed.

• Governance, Policy & Regulatory Compliance
  • Lead cybersecurity policies and controls grounded in integrity and aligned to NIST/ISO.
  • Ensure readiness for SOX, GDPR, PCI, and other regulatory requirements.
  • Strengthen collaboration across IT, Legal, Audit, Finance, and business teams through clear accountability.
  • Oversee penetration testing, control assessments, and continuous compliance.

• Security Architecture & Zero Trust
  • Define a modern, resilient security architecture across cloud, on-prem, ERP, identity, network, and endpoints.
  • Own the Zero Trust strategy and guide its maturity with courage and clarity.
  • Approve secure reference architectures and embed security‑by‑design into every platform and integration.

• Identity, Access & Privileged Security
  • Own IAM, SSO, MFA, and privileged access management (PAM).
  • Establish access governance across workforce, vendors, service accounts, and APIs.
  • Reduce identity-based risk through continuous monitoring, access certification, and least-privilege enforcement.
  • Ensure strong access controls across ERP, cloud, and third-party platforms.

• Threat Detection, Incident Response & Cyber Recovery
  • Lead enterprise threat detection, monitoring, and incident response capabilities.
  • Own ransomware preparedness, response playbooks, and cyber recovery strategies.
  • Partner with Infrastructure to ensure cyber-resilient backup, restore, and disaster recovery capabilities.
  • Run executive tabletop exercises that build organizational courage and readiness.

• Third-Party & Supply Chain Security
  • Own third-party and vendor security risk management.
  • Define security requirements for vendors, MSPs, and cloud providers.
  • Oversee ongoing risk monitoring of critical third parties and integration partners.
  • Partner with Legal and Procurement to embed security requirements into contracts.

• Data Protection & Privacy (in partnership with Legal)
  • Define enterprise data protection standards including classification, encryption, and DLP.
  • Support global privacy (GDPR etc) operations in coordination with the General Counsel.
  • Establish security guardrails for AI usage, sensitive data access, and data sharing.
  • Ensure secure handling of regulated and high-risk data across platforms.

• Metrics, Reporting & Executive Communication
  • Define cybersecurity metrics that matter (risk reduction, detection and response time, control effectiveness).
  • Deliver clear, non-technical reporting to executive leadership and Audit/Risk Committees.
  • Provide forward-looking insight into emerging threats and risk trends.

• Cyber Operating Model, Talent & Vendors
  • Shape the cybersecurity operating model, balancing internal expertise with managed services.
  • Lead SOC, MDR, and MSSP strategy and performance.
  • Build and mentor a high‑performing security leadership team rooted in passion, community, and integrity.
  • Raise cyber awareness across the organization and foster a culture of shared responsibility.

• Crisis Leadership
  • Serve as the enterprise incident commander during cybersecurity events.
  • Declare incidents, activate response plans, and lead cross‑functional teams with courage and clarity.
  • Make rapid decisions to isolate systems, restrict access, and contain threats.
  • Advise CIO, CFO, and General Counsel on business impact, financial exposure, insurance, and regulatory obligations.
  • Own post‑incident reviews, root‑cause analysis, and long‑term remediation.

To Land This Opportunity

• You have 12+ years of progressive cybersecurity leadership experience, including enterprise-scale environments.
• You demonstrate ownership of enterprise cyber risk, incident response, and resilience programs.
• You have strong experience with security architecture, Zero Trust, IAM, and cloud security.
• Your leadership style is grounded in passion, integrity, innovation, and community.
• You have proven ability to engage executive leadership and Boards with clear, business-oriented communication.
• You have experience in regulated, audit-sensitive, or PE-backed environments strongly preferred.
• You have a background in distribution, manufacturing, e-commerce, or complex operational environments a plus.

About Your Future Team

We are about working hard and playing hard. We are about having each others back, taking on responsibility and making things better for all. We are gritty, roll back your sleeves and get the job done with an inclusive, positive can-do attitude. We enjoy our social events, celebrating with food (of course) and celebrating our team members life’s milestones and events.

At Parts Town, we value transparency and are committed to ensuring our team members feel appreciated and supported.   We prioritize our positive workplace culture where collaboration, growth, and work-life balance are celebrated. The salary range for this role is $194,414.45 to $290,430.41 annually which is based on including but not limited to qualifications, experience, and geographical location. Parts Town is a pay for performance-company. In addition to base pay, some roles offer a profit-sharing program, and an annual bonus depending on the role. Our comprehensive benefits package includes health, dental and vision insurance, 401(k) with match, employee assistance programs, paid time off, paid sick time off, paid holidays, paid parental leave, and professional development opportunities.

Parts Town welcomes diversity and as an equal opportunity employer all qualified applicants will be considered regardless of race, religion, color, national origin, sex, age, sexual orientation, gender identity, disability or protected veteran status.