The Director - Cybersecurity is responsible for leading Five Guys cybersecurity strategy, governance, and operations to protect critical assets, data, and infrastructure. This executive-level role oversees the development and implementation of security policies, risk management frameworks, incident response protocols, and compliance initiatives. The Director collaborates with senior leadership, IT teams, and external partners to ensure a resilient and proactive security posture across the enterprise.
Essential Duties and Responsibilities:
Strategic Leadership

\n

•Develop and execute the organization’s enterprise-wide cybersecurity strategy.
•Align security initiatives with business objectives and risk tolerance.
•Advise executive leadership on emerging threats, regulatory changes, and technology trends.
Governance & Risk Management
•Establish and maintain cybersecurity policies, standards, and procedures.
•Lead risk assessments and ensure mitigation strategies are in place.
•Oversee compliance with relevant frameworks and regulations (e.g., NIST, ISO 27001, HIPAA, PCI-DSS).
Security Operations
•Direct the Security Operations Center (SOC) and incident response teams.
•Monitor threat intelligence and ensure timely response to security incidents.
•Oversee vulnerability management, penetration testing, and forensic investigations.
Architecture & Technology Oversight
•Guide the design and implementation of secure infrastructure and applications.
•Evaluate and select cybersecurity technologies and vendors.
•Promote adoption of Zero Trust architecture and secure cloud practices.
Team Leadership & Development
•Build, lead, and mentor a high-performing cybersecurity team.
•Foster a culture of accountability, innovation, and continuous improvement.
Awareness & Collaboration
•Lead organization-wide cybersecurity awareness and training programs.
•Collaborate with IT, legal, compliance, and business units to embed security into operations.
•Serve as the primary liaison for external audits, assessments, and regulatory inquiries.

\n

Education/Experience:
•Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field. Master’s degree or MBA with a focus on Information Security, Risk Management, or Technology Leadership is preferred
•10+ years of progressive experience in cybersecurity or information security roles.
•5+ years in a leadership or management capacity, overseeing security teams and programs

\n

Special Requirements/Certification:
•Strong background in risk management, compliance, and regulatory frameworks (e.g., NIST, ISO 27001, HIPAA, PCI-DSS).
•Industry-recognized certifications such as:
oCISSP (Certified Information Systems Security Professional)
oCISM (Certified Information Security Manager)
oCRISC (Certified in Risk and Information Systems Control)
oGIAC, CCSP, or other relevant credentials

\n

Five Guys Operations LLC participates in eVerify. Click here for information about eVerify.

\n

Click the following links for important information about Five Guys' participation in this program and your rights. 

\n\n\n\n\n

eVerify Notice of Participation - English

\n\n\n

eVerify aviso de participación - Espanol

\n\n\n\n\n

Right to Work Poster - English

\n\n\n

Derecho al trabajo en cartel - Espanol

\n\n\n\n\n

By choosing to APPLY, you acknowledge that we are an eVerify employer and you have read the Detailed Position Description, as well as our Privacy Policy.

\n

It is the policy of Five Guys to provide equal employment opportunity (EEO) to all persons.

\n

The Company strives to increase representation of women, people of color, veterans and individuals with disabilities in all areas of the Company.

\n

IND5GC