Director of Information Security
Harrisburg, PA US
Posted ago

Director, Information Security, Governance, and Infrastructure

This position is responsible for providing information and support to over 200 hotel properties across the U.S. and Canada and will provide leadership, mentorship, and technical direction for developing, leading, and managing security, governance, and infrastructure initiatives. This role directs and actively participates in the planning, engineering, and implementation of the enterprise IT ecosystem in support of the business operation. The Director is also responsible for auditing existing systems while overseeing and directing the enforcement of security policies, activities, and standards.


  •  Manage the activities of the Shared Services team to ensure accurate financial information and appropriate support is provided to the regional accounting teams.
  • Work with peers and the Head of IT to Set the strategy and direction for the Infrastructure, Security, and Governance team.
  • Own the Vendor Relationship for both product and outsourced services
  • Our IT Directors and IT Leadership are considered working directors as such you would be not only leading but also participating as required to meet IT and business goals and objectives
  • Define ambitious, measurable goals and objectives; identity metrics and solutions that show impact and progress over time
  • Lead through organizational scale and priority changes in a rapidly growing, fast-paced, results-oriented team environment
  • Manage, plan and grow your managers and individual contributors in their professional careers by providing development plans, goals, and opportunities for them to succeed in their current or future position
  • Collaborating with different teams including Engineering, Legal, Operations, HR, and other Security teams to ensure alignment with shared goals.
  • Own the planning and delivery and execution of security operations and intelligence solutions to ultimately reduce the risk for the company.
  • Leverage existing architectural standards to achieve SLA objectives.
  • Manage endpoint security and vulnerability management programs for enterprise desktop and server environments.
  • Manage cloud computing infrastructure and security, as well as mobile technology access and security initiatives.
  • Work with security partners to proactively monitor server & network infrastructure to meet annual PCI DSS audit.
  • Provide support for network, server, and desktop support groups to ensure that they are able to perform their functions.
  • Own, configure, install and maintain network access control, IPS, internet proxy, vulnerability scanners, and DLP to meet PCI DSS requirements.
  • Create formal ITIL processes for Incident/Problem/Request/Change management processes.
  • Follow sustainability guidelines and practices related to HHM’s EarthView program.
  • Practice safe work habits.
  • Perform other duties as requested by management.


  • Bachelor’s degree in Computer Science, Engineering, Computer Security, Information Systems, or an equivalent field required
  • Proven track record in building and leading a high-performing team of security, communications, and training experts focused on driving cultural change
  • 8+ years experience in the Information Security field
  • 5+ years working with identity governance and administration solutions
  • Knowledge of various frameworks/regulations such as PCI DSS, ISO 27001, NIST 800-53, NIST Cybersecurity Framework, GDPR, SOX, ITIL, COBIT, COSO, MITRE ATT&CK or similar
  • Accredited certifications are a plus, such as CISSP or CISM
  • Experience with CISCO Meraki is a plus.

About HHM

HHM is an award-winning hotel management and investment company that operates over 200 full-service and select-service hotels with 10,000 associates in markets across the country. HHM is a leading manager of Marriott, Hilton, IHG, and Hyatt brands, and also operates over 30 independent luxury and lifestyle hotels. The highly experienced and stable operating team is known for being nimble, accountable, and passionate in how they drive market-leading results for owners and best-in-class experiences for associates and guests.

Acceptable file formats include .doc, .docx, .pdf, .txt.
By applying, you consent to WizeHire's  Privacy Policy  and  Terms of Service.