Director of Corporate Information Security in Towcester

It’s fun to work in a company where people truly BELIEVE in what they’re doing! Lumentum designs and builds photonic technologies that power the world’s communications and industrial innovation. We are seeking a Director of Corporate Information Security to lead and expand cybersecurity operations across our global hybrid environment. Based in Caswell, this leadership role oversees the Security Operations Center (SOC) and a team of information security analysts. The Director will drive operational excellence across on-premises IT and manufacturing systems, AWS cloud infrastructure, and enterprise SaaS platforms such as Box, Office 365, and Workday, ensuring robust protection of Lumentum’s digital and operational assets.

Responsibilities:

• Lead and mature the Security Operations Center (SOC), ensuring efficient detection, triage, and response to security incidents.
• Direct and mentor a global team of information security analysts and senior engineers.
• Oversee cybersecurity operations across on-prem, manufacturing, cloud, and SaaS environments.
• Drive deployment, integration, and lifecycle management of enterprise security tools and platforms.
• Oversee vulnerability management, patch governance, and system hardening for IT and OT assets.
• Maintain and continuously improve the company’s incident response program and escalation playbooks.
• Lead enterprise-wide security awareness and phishing simulation initiatives to strengthen employee cyber resilience.
• Partner with IT, operations, and cloud teams to ensure coordinated monitoring, response, and remediation.
• Report on incident trends, risk metrics, and SOC performance to the CISO and senior leadership.
• Support business continuity and disaster recovery readiness through cybersecurity-driven assessments and exercises.
• Align operational security practices with corporate policies and frameworks (ISO 27001, NIST 800-53).

Skills:

Required:

• Deep technical expertise in SOC operations, threat detection, incident response, and vulnerability management.
• Proven leadership experience managing multidisciplinary cybersecurity teams.
• Strong understanding of hybrid infrastructures (on-prem, AWS, SaaS).
• Experience with SIEM, EDR, and network security technologies.
• Proficiency in security program development, reporting, and performance tracking.
• Strong project and task management capabilities.
• Excellent communication skills, capable of translating complex technical issues into business-relevant insights.

Optional (Desirable):

• Familiarity with manufacturing and industrial control systems (ICS/OT).
• Experience with SOAR and automation-driven incident management.
• Knowledge of phishing simulation and behavioral awareness platforms.
• Experience with Jira, ServiceNow, or other workflow management tools.
• Awareness of ISO 27001, NIST 800-53, and CMMC frameworks.

Education:

• Bachelor’s degree in Computer Science, Information Security, or related discipline.
• Advanced degree preferred but not required.
• Equivalent professional experience may be considered.

Relevant Certifications:

• Preferred: CISSP, CISM, GIAC (GCIA, GCIH, GMON), or AWS Security Specialty.
• Other relevant security or cloud certifications considered an advantage.

Work Experience:

• Minimum 8–10 years of cybersecurity experience, including 3–5 years in a leadership or management role.
• Demonstrated experience leading operational security programs in complex, global, or manufacturing environments.
• Proven success managing hybrid and legacy technology environments.

Competencies:

• Strategic leadership and operational discipline.
• Analytical thinking and structured problem solving.
• Program and project management excellence.
• Strong stakeholder communication and executive reporting.
• Collaboration across IT, OT, and business functions.
• Risk-based decision-making under pressure.
• Focus on measurable performance and continuous improvement.