HiringCafe
Posted 1mo ago

Director Cybersecurity

@ Resorts World
View All Jobs
New York, New York, United States
$170k-$250k/yrOnsiteFull Time
Responsibilities:Develop strategy, Lead architecture, Oversee operations
Requirements Summary:Lead enterprise cybersecurity strategy, governance, and operations; manage compliance with NYSGC, PCI DSS, ISO 27001, NIST; build and mentor security team; communicate with executives.
Technical Tools Mentioned:NIST, ISO 27001, PCI DSS, CISSP, CISM, CISA, CRISC
Save
Mark Applied
Hide Job
Report & Hide
Job Description

Job Responsibilities

The Director of Cybersecurity is responsible for developing, implementing, and overseeing the enterprise-wide cybersecurity strategy to protect the organization’s information systems, data, and technology assets. This role leads cybersecurity operations across all properties, ensuring compliance with regulatory requirements, industry standards, and internal policies. The Director partners closely with executive leadership, IT infrastructure, application teams, compliance, and external regulators to mitigate cyber risk while enabling secure business operations. Strong leadership, deep technical expertise, and a proactive risk-management mindset are essential.

License Level: This is a key level position and requires a key license.

Essential Duties/Core Competencies

  • Develop and execute a comprehensive cybersecurity strategy and roadmap aligned with business objectives, regulatory obligations, and enterprise IT initiatives.
  • Lead enterprise security architecture, including network security, endpoint protection, identity and access management (IAM), cloud security, and application security.
  • Oversee security operations, including threat monitoring, incident detection, investigation, response, and post-incident remediation.
  • Establish and maintain cybersecurity governance, policies, standards, and procedures across all facilities.
  • Ensure compliance with applicable regulations and frameworks, including NYSGC requirements, PCI DSS, ISO 27001, NIST, and data privacy laws.
  • Serve as the primary cybersecurity liaison with regulators, auditors, and third-party assessors, supporting audits, risk assessments, and examinations.
  • Lead incident response planning and execution, including tabletop exercises, breach simulations, and crisis communications coordination.
  • Manage third-party and vendor security risk assessments, ensuring proper controls, attestations, and contractual safeguards are in place.
  • Partner with IT Infrastructure, Applications, and PMO teams to embed security-by-design into all technology initiatives and system deployments.
  • Oversee vulnerability management, penetration testing, and continuous risk assessments across on-premise and cloud environments.
  • Develop and manage the cybersecurity budget, tools, and vendor relationships to maximize risk reduction and operational efficiency.
  • Lead, mentor, and grow the cybersecurity team, fostering a culture of accountability, continuous improvement, and operational excellence.
  • Drive organization-wide security awareness and training programs for employees, contractors, and third parties.
  • Monitor emerging threats, technologies, and regulatory changes, proactively adjusting security posture as needed
  • Strategic thinking and risk-based decision making
  • Executive-level communication and stakeholder management
  • Incident response and crisis leadership
  • Regulatory and compliance expertise
  • Team leadership and talent development

Work/Educational Experience

  • Must be at least 18 years old and have the ability to obtain the appropriate license pursuant to the applicable statute, rules and regulations.
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field degree preferred.
  • 8+ years of progressive experience in cybersecurity or information security, including leadership roles in regulated environments.
  • Strong knowledge of cybersecurity frameworks, risk management, and compliance standards (e.g., NIST, ISO, PCI DSS).
  • Experience leading security operations, incident response, and regulatory audits.
  • Proven ability to communicate complex security risks to executive leadership and non-technical stakeholders.
  • Relevant certifications preferred (e.g., CISSP, CISM, CISA, CRISC).

Essential Requirements

To perform this job successfully, an individual must be able to perform each job responsibility satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. 

Physical and Mental Demands:

The physical demands described here are representative of those that must be met by the Team Member to successfully perform the essential functions of this job.

While performing the duties of this job, the Team Member is regularly required to talk or hear. The Team Member is also regularly required to stand, walk, sit, and use hands to finger, handle, or feel objects, tools or controls. The Team Member is occasionally required to reach with hands and arms, and to sit, climb or balance, and stoop, stretch, bend, kneel, crouch, or crawl.

Specific vision abilities required by this job include close vision, distance vision, color vision, peripheral vision, depth perception, and the ability to adjust focus. Essential responsibilities include moderate physical ability such as lift or maneuver at least fifteen (15) pounds, and prolonged sitting during the shift. 

Language Skills:

Ability to read, analyze, and interpret documents, such as policy and procedure manuals and other related documents.  Ability to respond to common inquiries from other Team Members or guests. Fluency in English required.  Ability to write detailed instructions and correspondence.  Ability to effectively present information in one-on-one and small group situations.

Mathematical Skills & Reasoning Ability:

Ability to compute complex mathematical calculations. Ability to work with mathematical concepts such as probability and statistical inference. Ability to apply concepts such as fractions, percentages, ratios, and proportions to practical situations. Ability to decipher various reports and maintains reports upon request with strong decision-making and problem-solving skills. Ability to work well under pressure and deadlines.

Work Environment

The work environment characteristics described here are representative of those that exists while employees are performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

  • The noise level in the work environment is typically moderate. When on the property or some back of house areas, the noise level increases to loud. Must be able to interact with internal and external guests in a professional manner.
  • Due to the unpredictable nature of the hospitality/entertainment industry, employees must be able to work varying schedules to reflect the business needs of the property.

Pay Transparency: $170,000-250000

The Company is committed to achieving full equal opportunity without discrimination based on race, religion, color, sex, national origin, politics, marital status, physical disability, age or sexual orientation or any other status protected by law. We welcome the strength of diversity in our workforce.

NOTE:  This job description is not intended to be all-inclusive. Team members may perform other related duties as required to meet the ongoing needs of the organization.

Working at Resorts World:

Resorts World New York City strives to provide our guests with world-class gaming, exquisite dining, and unique entertainment experiences. We are looking to hire an enthusiastic and dedicated team of professionals.