GE Appliances, a Haier company · 1 day ago
Senior Director - IT & OT Security
Louisville, KY
Full-time
Onsite
Director/Executive
12+ years expGE Appliances, a Haier company, is the fastest-growing appliance company in the U.S., dedicated to creating innovative solutions for everyday life. The Senior Director – IT & OT Security will lead the organization's global cybersecurity vision across IT and OT, ensuring the resilience of digital systems and industrial operations while safeguarding company assets against cyber threats.
Consumer Goods
No H1B
Responsibilities
Define and drive the enterprise-wide cybersecurity vision and multi-year roadmap, with strong focus on IT/OT/industrial control systems (ICS)
Align security strategy with corporate objectives, digital transformation, IT/OT convergence, and compliance obligations
Provide executive-level advisory to the CDO on cyber risks, emerging threats, and investment priorities
Provide regular updates to the CDO & Executive Leadership Team on cybersecurity posture, risks, and required investments
Lead enterprise-wide risk assessments and influence business decisions through risk-to-value tradeoff frameworks
Drive innovation by adopting new technologies (Zero Trust, AI/ML for threat detection, advanced OT monitoring)
Integrate cybersecurity into the enterprise risk management framework, ensuring security risks are identified, assessed, and mitigated alongside financial, operational, and compliance risks
Partner with Legal, Audit, and Compliance to oversee regulatory adherence
Foster strong external relationships with industry groups, government agencies, and regulators to shape cyber policy and best practices
Oversee enterprise-wide IT security across networks, applications, cloud, and endpoints
Ensure identity and access management, data protection, and monitoring are consistent with Zero Trust principles
Lead enterprise incident detection, response, and forensics across IT environments
Enhance robust IT incident response and disaster recovery protocols, ensuring minimal downtime in the event of cyberattacks
Ensure compliance with applicable frameworks such as NIST CSF, ISO 27001, GDPR, HIPAA, and CMMC
Build and lead a robust OT cybersecurity program securing industrial control systems (ICS), SCADA, PLCs, DCS, and plant-floor networks
Implement segmentation and defense-in-depth strategies to separate OT and IT environments without disrupting operations
Develop security standards for plant operations, connected devices, IIoT, and smart manufacturing initiatives
Conduct threat modeling, vulnerability assessments, and penetration testing tailored to OT environments
Collaborate with Plant Managers, Engineers, and Operations leaders to ensure production continuity while mitigating risks
Drive compliance with IEC 62443, NERC CIP, and industry-specific OT security standards
Establish robust OT incident response and disaster recovery protocols, ensuring minimal downtime in the event of cyberattacks
Lead the MSSP to Establish and monitor service level agreements (SLAs) for security
As the executive leader you will be responsible for driving the consolidation of security systems for cost out/optimization
Drive optimization of the cybersecurity budget, ensuring ROI on security investments and alignment with business priorities
Lead IT/OT security related policy development & deployment
Drive enterprise-wide cybersecurity awareness and culture change programs
Define, measure, and report cybersecurity KPIs and KRIs, including incident response time, compliance maturity, OT system patching, downtime reduction, and vendor risk ratings
Qualification
Required
Bachelor's degree in Computer Science, Information Security, Engineering, or related field
Minimum of twelve (12) or more years of prior relevant experience in roles of increasing responsibility with a minimum of five (5) years of experience leading a global cybersecurity
Proven record in defining security strategies, managing incidents, and ensuring compliance
Strong knowledge or expertise in OT/ICS security within manufacturing, critical infrastructure, or industrial environments
CISSP (Certified Information Systems Security Professional) and CISM (Certified Information Security Manager) certified
Knowledge of frameworks such as NIST, ISO 27001, IEC 62443, MITRE ATT&CK for ICS
Demonstrated competency in strategic thinking and leadership with strong abilities in relationship management, independent judgment and creative problem-solving techniques in a highly complex environment
Demonstrated experience setting long term strategic direction
Strong leadership ability that energizes multi-functional, multi-geographical global work teams to learn and apply new skills & techniques to business needs. Champions innovation as a primary business driver
Strong interpersonal, communication, and executive presentation skills with experience leading reviews with the leadership. Proven ability to communicate a technical solution in a way that establishes rapport, persuades others and gains understanding
Preferred
Master's degree in Cybersecurity, Information Systems, or Business Administration (MBA)
Global manufacturing or energy/critical infrastructure sector experience
Proven success in IT/OT convergence projects and IIoT security
Experience in cloud security (AWS, Azure, GCP) and integration with OT
Certification like GIAC/GICSP (Global Industrial Cyber Security Professional), ISA/IEC 62443 Cybersecurity Expert, CRISC (Certified in Risk and Information Systems Control), ISO 27001 Lead Implementer/Auditor
Company
GE Appliances, a Haier company
At GE Appliances, a Haier company, we come together to make good things, for life. Headquartered in Louisville, Kentucky, we are a leading U.S.
10001+ employees
Funding
Current Stage
Late StageLeadership Team
Kevin Nolan
President & Chief Executive Officer
Marc Charnas
CFO & VP Corporate Strategy
Recent News
2026-01-09
Lane Report | Kentucky Business & Economic News
2025-11-23
Company data provided by crunchbase