Director of Information Security and Data Governance at Tecta America Commercial Roofing in Rosemont, IL | Kablio

Role

Description

secure sdlc

data governance

veeam backup

sentinelone

fortinet firewall

incident response

Mentor and support cross-functional teams in integrating security into their workflows and operational processes.
Work closely with development teams to integrate secure software development practices (e.g., threat modeling, secure coding, code reviews, and penetration testing) into the SDLC for in-house developed software solutions.
Develop and enforce a data governance framework to classify, protect, and secure sensitive data across the company’s distributed operations.
Develop and enforce policies to mitigate risks associated with cloud-based services, on-premise infrastructure, and remote locations.
Provide targeted training on phishing prevention, secure data handling, and threat awareness, tailored to employees at all levels of the organization.
Ensure compliance with relevant data privacy and security regulations (e.g., GDPR, CCPA, SOC 2, ISO 27001) and guide the company through audit and certification processes.
Leverage Veeam backups and disaster recovery solutions to ensure data availability and resilience in case of cyber incidents or natural disasters.
Conduct regular security risk assessments, vulnerability scanning, and penetration testing to identify and address potential threats.
Lead the management and optimization of SentinelOne for endpoint protection, ensuring the security of devices across the organization and the rapid detection of potential threats.
Implement and maintain encryption and access control mechanisms to safeguard PII, financial data, and other sensitive information.
Coordinate with external vendors to ensure data security standards are maintained for managed services and third-party integrations.
Lead the development and execution of an incident response plan that addresses potential data breaches, ransomware attacks, and other security incidents.
Develop and execute a company-wide security awareness program to educate employees on the importance of data protection and best practices for securing sensitive information.
Partner with the CIO to define and implement a roadmap for evolving the organization’s security strategy, with the goal of transitioning into a CISO role as the company’s security needs mature.
Monitor and respond to security alerts, utilizing SentinelOne and other tools to investigate, contain, and mitigate potential threats in real time.
Oversee the management and configuration of Fortinet firewalls, SentinelOne endpoint protection, and Veeam backup systems to ensure continuous data protection and rapid incident detection and recovery.
Develop and execute a comprehensive cybersecurity strategy, with a focus on risk management, threat detection, and incident response.
Serve as a thought leader in the organization, guiding teams on emerging threats, industry best practices, and innovative security solutions.
Collaborate with IT Operations to embed security across all IT initiatives and operations, ensuring proactive security measures are taken from the start.
Oversee the implementation and management of Fortinet firewalls for network security, ensuring optimal performance in protecting internal and external assets.

Requirements

fortinet

sentinelone

vmware

veeam

cissp

7+ years

Expertise in Fortinet firewalls, SentinelOne endpoint protection, VMware server security, and Veeam backup solutions.
Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001) and data privacy regulations (e.g., GDPR, CCPA).
Experience with E-mail protection platforms (Proofpoint, Abnormal & KnowBe4)
Familiarity with Fortinet NSE certifications or VMware certifications is a plus.
Excellent problem-solving, leadership, and communication skills, with the ability to influence and collaborate across teams.
Hands-on experience managing Fortinet firewalls, SentinelOne, VMware servers, and Veeam backups in an enterprise environment.
7+ years of experience in IT security or cybersecurity, with experience in endpoint protection, network security, and data governance.
Bachelor’s degree in Information Security, Computer Science, or a related field.
CISSP, CISM, or similar cybersecurity certifications (preferred but not required).

Benefits

Information not given or found

Training + Development

Information not given or found

Interview process

Information not given or found

Visa Sponsorship

Information not given or found

Security clearance

Information not given or found

People also searched

Systems Engineer Jobs in Chicago United States Risk Manager Jobs in Chicago United States Security Engineer Jobs in Chicago United States Security Systems Technician Jobs in Chicago United States IT Operations Jobs in Chicago United States IT Consultant Jobs in Chicago United States Risk Analyst Jobs in Chicago United States Information Manager Jobs in Chicago United States

Company

Overview

Focus on high-quality roofing services.
Provides tailored roofing solutions.
Handles a wide range of projects from new installations to complex repairs.
Experts in energy-efficient roofing systems.
Supports the utilities sector with specialized roofing.
Known for exceptional customer service and project delivery.
Operates a network of regional offices leveraging local expertise.

Culture + Values

0.51 EMR

Industry-Leading Safety Commitment

This low Experience Modification Rate reflects a strong dedication to creating a safe work environment, exceeding industry standards.

treating customers and employees with respect and dignity
prioritizing safety and quality
capitalizing on best practices, all while maintaining a strong local foundation and presence in each location
Continuous investment in people and business operations to foster growth and operational excellence

Environment + Sustainability

Offer cool roof coatings that improve energy efficiency by reflecting heat, reducing HVAC energy usage
Provide green/vegetative roofing systems to lower energy costs, improve air quality, and reduce storm-water runoff
Install daylighting systems to reduce reliance on artificial lighting and decrease utility costs
Support solar photovoltaic installations to offset utility consumption with on‑site renewable generation
Green technology investments include on-site green roof test plots, white TPO membranes, solar thin film, with demonstrated ROI via energy savings and incentives
No publicly stated net-zero target date found

Inclusion & Diversity

Articles

Careers at Tecta America

Our Projects

Role

Description

secure sdlc

data governance

veeam backup

sentinelone

fortinet firewall

incident response

Mentor and support cross-functional teams in integrating security into their workflows and operational processes.
Work closely with development teams to integrate secure software development practices (e.g., threat modeling, secure coding, code reviews, and penetration testing) into the SDLC for in-house developed software solutions.
Develop and enforce a data governance framework to classify, protect, and secure sensitive data across the company’s distributed operations.
Develop and enforce policies to mitigate risks associated with cloud-based services, on-premise infrastructure, and remote locations.
Provide targeted training on phishing prevention, secure data handling, and threat awareness, tailored to employees at all levels of the organization.
Ensure compliance with relevant data privacy and security regulations (e.g., GDPR, CCPA, SOC 2, ISO 27001) and guide the company through audit and certification processes.
Leverage Veeam backups and disaster recovery solutions to ensure data availability and resilience in case of cyber incidents or natural disasters.
Conduct regular security risk assessments, vulnerability scanning, and penetration testing to identify and address potential threats.
Lead the management and optimization of SentinelOne for endpoint protection, ensuring the security of devices across the organization and the rapid detection of potential threats.
Implement and maintain encryption and access control mechanisms to safeguard PII, financial data, and other sensitive information.
Coordinate with external vendors to ensure data security standards are maintained for managed services and third-party integrations.
Lead the development and execution of an incident response plan that addresses potential data breaches, ransomware attacks, and other security incidents.
Develop and execute a company-wide security awareness program to educate employees on the importance of data protection and best practices for securing sensitive information.
Partner with the CIO to define and implement a roadmap for evolving the organization’s security strategy, with the goal of transitioning into a CISO role as the company’s security needs mature.
Monitor and respond to security alerts, utilizing SentinelOne and other tools to investigate, contain, and mitigate potential threats in real time.
Oversee the management and configuration of Fortinet firewalls, SentinelOne endpoint protection, and Veeam backup systems to ensure continuous data protection and rapid incident detection and recovery.
Develop and execute a comprehensive cybersecurity strategy, with a focus on risk management, threat detection, and incident response.
Serve as a thought leader in the organization, guiding teams on emerging threats, industry best practices, and innovative security solutions.
Collaborate with IT Operations to embed security across all IT initiatives and operations, ensuring proactive security measures are taken from the start.
Oversee the implementation and management of Fortinet firewalls for network security, ensuring optimal performance in protecting internal and external assets.

Requirements

fortinet

sentinelone

vmware

veeam

cissp

7+ years

Expertise in Fortinet firewalls, SentinelOne endpoint protection, VMware server security, and Veeam backup solutions.
Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001) and data privacy regulations (e.g., GDPR, CCPA).
Experience with E-mail protection platforms (Proofpoint, Abnormal & KnowBe4)
Familiarity with Fortinet NSE certifications or VMware certifications is a plus.
Excellent problem-solving, leadership, and communication skills, with the ability to influence and collaborate across teams.
Hands-on experience managing Fortinet firewalls, SentinelOne, VMware servers, and Veeam backups in an enterprise environment.
7+ years of experience in IT security or cybersecurity, with experience in endpoint protection, network security, and data governance.
Bachelor’s degree in Information Security, Computer Science, or a related field.
CISSP, CISM, or similar cybersecurity certifications (preferred but not required).

Benefits

Information not given or found

Training + Development

Information not given or found

Interview process

Information not given or found

Visa Sponsorship

Information not given or found

Security clearance

Information not given or found