Senior Director, Security

Summary

Join Miovision as a Senior Director, Security (CISO) in Washington, DC, leading and expanding the company's security strategy across corporate systems, customer engagements, and product development. This role demands expertise in transportation security, including OT, ICS, and V2X environments. You will establish Miovision as a transportation security leader by engaging with US regulatory bodies like CISA, DoT, and FCC. Oversee security initiatives, ensuring the security of solutions, supply chain, products, and operations. Collaborate with various teams to integrate security into all aspects of Miovision's operations. Represent Miovision at industry events and regulatory forums, advocating for best practices in transportation security. This position requires strong leadership, technical expertise, and experience working with government agencies.

Requirements

• 15+ years of leadership experience in cybersecurity, with a focus on transportation security, critical infrastructure, or related fields
• Experience working with government agencies or regulatory bodies (e.g., CISA, DoT, FCC, NIST) on cybersecurity and critical infrastructure protection
• Strong background in cloud security, IoT security, and enterprise security architecture
• Familiarity with security frameworks such as ISO 27001, SOC 2, NIST Cybersecurity Framework, and Zero Trust principles
• Proven ability to support sales teams and engage customers, including government entities, by articulating security value propositions
• Extensive experience in secure product development, working with software and hardware teams to embed security into engineering processes. Must have demonstrable experience applying secure development practices to transportation-related technologies, connected vehicle systems (V2X), Operational Technology (OT), Industrial Control Systems (ICS), and IoT/IIoT environments
• Strong stakeholder engagement and communication skills, with experience presenting to executives, regulators, and industry forums

Responsibilities

• Define, communicate, and execute Miovision’s comprehensive security strategy across corporate, product, and customer environments, with a primary focus on transportation security standards and regulations and alignment with agency guidelines (CISA, DoT, FCC)
• Build and lead a high-performing cross-functional security team, including internal experts and external consultants for specialized areas like transportation security, penetration testing, compliance, and incident response
• Develop and manage security budgets, strategically aligning investments with company growth, evolving transportation security regulatory requirements, and strategic engagement with government bodies
• Track and report security metrics and KPIs, with a focus on demonstrating the effectiveness of Miovision’s transportation security posture and compliance efforts to both internal and external stakeholders, including regulatory agencies
• Act as a trusted security advisor and subject matter expert in transportation security for Miovision’s customers, partners, and prospects during the sales cycle
• Provide technical security expertise, specifically in transportation security, in customer meetings, RFP responses, contract negotiations, and security due diligence processes, highlighting Miovision's leadership in secure transportation solutions
• Drive customer confidence by proactively sharing Miovision’s robust transportation security posture, relevant certifications, and industry best practices in transportation security
• Ensure security considerations are a key enabler for business growth, helping to close high-value deals by demonstrating a competitive advantage in secure transportation solutions
• Integrate security into all aspects of Miovision’s hardware and software products, specifically ensuring compliance with industry best practices and emerging standards in transportation IoT security
• Lead OWASP Software Assurance Maturity Model (SAMM) adoption to embed security into product development lifecycles, with a strong emphasis on addressing transportation-specific security vulnerabilities
• Oversee penetration testing, vulnerability management, and secure development lifecycle across Miovision One and other platforms, with a focus on scenarios relevant to transportation infrastructure and connected vehicle ecosystems
• Collaborate proactively with Product and Engineering teams to address emerging security concerns in product roadmaps, particularly those related to the evolving threat landscape in transportation technology
• Oversee ISO 27001 re-certification and ensure ongoing compliance with SOC 2, GDPR, PIPEDA, FedRAMP, and other applicable standards, with a critical focus on incorporating relevant transportation security regulations and guidelines
• Manage cybersecurity governance, risk management, and compliance (GRC) programs, ensuring adherence to internal and external security policies, and specifically addressing compliance requirements related to transportation security mandates
• Lead incident response exercises, ensuring readiness for a wide range of cybersecurity threats, including those specific to transportation infrastructure and connected systems
• Establish and maintain Zero Trust security architecture and identity and access management (IAM) strategies, aligning with best practices and recommendations from agencies like CISA and DoT for critical infrastructure security
• Represent Miovision as a recognized thought leader in national and international transportation and critical infrastructure security standards bodies, engaging with organizations such as DoT, CISA, FCC, NIST, and SAE International
• Collaborate with Departments of Transportation (DOTs), municipalities, and regulatory agencies to shape transportation security policies and best practices
• Advocate for secure smart city and transportation infrastructure by participating in industry working groups and government initiatives
• Build and maintain relationships with relevant federal and state agencies to ensure Miovision stays at the forefront of transportation security

Preferred Qualifications

• Experience securing AI/ML systems in safety-critical applications is highly preferred
• Relevant security certifications (e.g., CISSP, CISM, GIAC) and cloud security expertise are preferred
• AWS Security Certification or equivalent cloud security expertise is a plus

Benefits

• Comprehensive health benefits starting on day one
• RRSP Matching Plan
• Variable Incentive Plan
• Mio-Days : We extend all three-day weekends to four-days and provide a Holiday Shutdown in December
• Virtual Healthcare Service providing employees and their families access to healthcare providers 24/7
• Internet subsidy and a remote work allowance
• Enhanced paternity and maternity leaves
• Unlimited vacation policy
• Wellness offerings (Fitness, Mindfulness)
• Note: We do offer flexible onsite and remote work options