Cyber Security Architect / Director

Chicago, IL, US

Cyber Security Architect / Director

Hybrid or Remote with Travel as needed


James Hardie is the world’s #1 producer and marketer of high-performance fiber cement and fiber gypsum building solutions.


The Cyber Security Architect supports efforts to mature infrastructure security capabilities and is part of a cross-disciplinary Cyber team responsible for full-stack security architecture, as well as continuously improve cyber controls and associated playbooks, workflows, processes, and procedures. Work on the creation and maintenance of security relevant documentation and partner with product, platform, engineering, and operations teams to ensure the adoption of security best practices across the entire application or system lifecycle.



  • 10 years of business experience in planning, organizing, and developing information security capabilities
  • 5 years of Security Architecture experience and hands-on technology experience
  • Five years of people leadership preferred
  • 2 years of experience designing and deploying solutions in the cloud
  • Experience serving as cyber and information security leader in complex organizations required (global for example)
  • CISM, CISSP, or GSLC certification required, plus at least one certification in cloud services or technologies preferred



  • Set overall security architecture direction and partner with the Global Applications, Enterprise Architecture, Engineering, and Infrastructure and Operations teams to align solution delivery activities to architecture standards, business goals and objectives
  • Influence the Cybersecurity organization toward architectural excellence and maturation of key services for enterprise level delivery
  • Drive security assessments to evaluate the processes, procedures and tools used to review and test information system controls and security across enterprise systems and third-party supplier IT systems
  • Evaluate the adequacy of IT security controls to verify compliance with security standards and regulatory compliance (e.g., NIST, PCI, HIPAA, GDPR, SOX, and ISO 27001)
  • Establish an enterprise-wide process to evaluate security tools and vendors, maintain a catalog of approved and preferred tools, and assist business divisions with tool rationalization where feasible



This job description provides general information about the nature and levels of work, knowledge, skills, abilities, and other essential functions expected of an incumbent. It is not designed to be a comprehensive listing of all duties or responsibilities required of an incumbent. Nothing in this job descriptions restricts management’s right to modify these duties and responsibilities at any time. This job description does not constitute a contract of employment or modify your status as an at-will employee.

Nearest Major Market: Chicago

Job Segment: Cyber Security, Compliance, Developer, Information Technology, IT Architecture, Security, Legal, Technology