OVERALL DESCRIPTION

The Senior Director Network Security is responsible for overseeing and managing the network security infrastructure and operations of the organization. This role involves designing, implementing, and maintaining robust security solutions to safeguard Septa networks, systems, and data against potential threats. The Senior Director Network Security will lead a team of network security professionals and collaborate closely with other IT departments to ensure that all network and security operations are aligned with organizational goals.

SPECIFIC RESPONSIBILITIES

• Designs, implements, and maintains a Zero Trust framework and secure network architecture to protect against unauthorized access, cyber-attacks, and data breaches.
• Develops and enforces security policies and procedures to safeguard the organization's network infrastructure.
• Oversees network monitoring tools and ensures the detection and timely resolution of security incidents.
• Leads incident response efforts to identify, contain, and resolve network security breaches.
• Conducts thorough root cause analyses of security incidents and proposes preventive measures to reduce future risks.
• Stays up to date with the latest cyber threats and security trends and proactively applies defense mechanisms to minimize potential vulnerabilities.
• Leads, mentors, and guides the network security team, fostering a culture of continuous learning and improvement.
• Collaborates with cross-functional teams including system administrators, IT support, and compliance officers to integrate security best practices into all aspects of the organization's IT infrastructure.
• Manages security projects and initiatives to improve the network security posture.
• Conducts risk assessments and vulnerability scans to identify areas of improvement and mitigate risks.
• Ensures compliance with relevant regulatory frameworks (e.g., GDPR, HIPAA, PCI-DSS) and industry standards ( e.g., ISO 2700 l ).
• Maintains and updates disaster recovery and business continuity plans to protect critical network systems.
• Oversees the deployment and management of firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), and other network security technologies such as SASE, OLP, and CASB.
• Evaluates and recommends new security tools, solutions, and technologies to enhance the organization's network security.
• Ensures proper encryption and access controls are implemented across the network.
• Maintains accurate documentation of security policies, procedures, and incidents.
• Prepares and presents regular security reports to senior management, outlining key risks, issues, and mitigation plans.
• Complies with all Authority and departmental safety and security policies and procedures as well as all applicable job safety responsibilities. Reports any safety concerns, compromises or hazards affecting operations, the public, self and/or other employees. Responsible for personal safety and is encouraged to promote the safety of others.
• Performs other duties as assigned.

QUALIFICATIONS AND EXPERIENCE

• Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field required; Master's degree preferred.
• Minimum of 10 years of experience in network security, including at least 5 years in a managerial or leadership role required.
• Strong hands-on experience with network security technologies such as firewalls, Zero Trust implementation (ZIA/ZPA), endpoint protection, and SIEM systems required.
• Deep understanding of network protocols (TCP/IP, DNS, HTTP, etc.), firewall configurations, and encryption methods required.
• Familiarity with network security best practices, vulnerability assessment tools, and security incident management procedures required.
• Experience with cloud security solutions in A WS, Azure, or Google Cloud environments required.
• Excellent leadership and team management skills required.
• Strong problem-solving abilities and attention to detail required.
• Effective communication skills, both technical and non-technical, required.
• Ability to prioritize tasks and work under pressure in a fast-paced environment required.
• Experience with SIEM tools ( e.g., Splunk, Tenable, Cortex, QRadar) preferred.
• Knowledge of threat intelligence platforms and their integration with network security systems preferred.
• Experience working in highly regulated industries such as finance, healthcare, or government preferred.