Director, Physical Security Programs, Policy, and Assurance (Hyperscale)- job post
Job Description
3.83.8 out of 5 stars
United States
Full-time
Job details
Job type
- Full-time
Full job description
We are seeking a senior leader to drive Global Physical Security (GPS) programs, policy, and assurance across our hyperscale environment. This role will coordinate cross-functional stakeholders, ensure policy and process alignment, and oversee governance and documentation to support reliable, auditable, and scalable security operations in hyperscale data centers and facilities.
- Program leadership and governance
- Establish and lead a governance framework for GPS in hyperscale covering policy, standards, procedures, and controls.
- Own the lifecycle of GPS physical security policies/procedures, including authorship, change management, approval workflows, version control, and stakeholder communication.
- Ensure repeatability, audit readiness, and continuous improvement across hyperscale physical security operations.
- Policy, compliance, and assurance
- Align GPS hyperscale policies and processes to ISO 27001/27701, SOC 2, PCI, and applicable NIST Physical and Environmental (PE) controls.
- Partner with Compliance, Risk, Legal, Data Privacy, and Internal Audit to maintain evidence, control mappings, and corrective action plans.
- Lead internal assurance activities, readiness reviews, and support external audits; track findings and remediation to closure.
- Cross-functional coordination
- Coordinate with Data Center Operations, Engineering, Networking, Facilities, Cloud Security, HR, and Vendor Management to ensure end-to-end policy adoption and operational alignment.
- Serve as the primary point of contact for hyperscale physical security policy questions and escalations.
- Project and portfolio management
- Lead a team of project managers and SMEs to plan, prioritize, and execute hyperscale physical security initiatives.
- Build and maintain standardized tracking for initiative intake, scope, milestones, risks, dependencies, and metrics (creation, progress, completion).
- Drive change management and stakeholder communications for GPS Hyperscale programs.
- Documentation and communications
- Maintain comprehensive documentation (policies, SOPs, playbooks, diagrams, RACI, and runbooks).
- Develop and deliver communications, status reporting, and leadership updates for GPS Hyperscale.
Qualifications
- 10+ years of experience in physical security programs within data center, hyperscale cloud, critical infrastructure, or similarly complex environments.
- 5+ years leading cross-functional programs and policy governance, including change management and documentation ownership.
- Demonstrated experience aligning or auditing against ISO 27001/27701, SOC 2, PCI, and NIST PE controls; strong understanding of control frameworks, evidence, and assurance.
- Experience managing or leading PMOs and project managers; expert in portfolio tracking tools and metrics.
- Strong stakeholder management skills and the ability to influence at executive levels.
- Excellent written and verbal communication skills; proven ability to translate technical and operational requirements into clear policies and procedures.
- Bachelor’s degree in security management, information systems, engineering, or related field; advanced degree or relevant certifications (CPP, PSP, CISSP, CISM, CISA, ISO 27001 Lead Implementer/Auditor, PMP) preferred.
Key competencies
- Governance and policy ownership
- Risk, compliance, and audit readiness
- Program/portfolio management and execution
- Cross-functional leadership in hyperscale/critical environments
- Process design, standardization, and repeatability
- Clear, concise executive communication
Success metrics
- Timely publication and maintenance of GPS hyperscale policies/SOPs with robust change control.
- Measurable alignment to ISO 27001/27701, SOC 2, PCI, and NIST PE controls; clean audit outcomes and closed findings.
- On-time delivery of portfolio milestones; transparent tracking from project creation through completion.
