Director of Cyber Security

OverviewAs Quanta Services scales, our digital and operational footprint grows, and so do the security threats we face. We’re seeking a Director, Cybersecurity to lead our enterprise-wide security posture across more than 40 operating companies. This role is about building trusted relationships, influencing through expertise, and protecting what powers the world.What Makes This Role UniqueFederated Model, Central Impact: Our businesses operate independently—but cybersecurity is a shared responsibility. You’ll set enterprise standards and help teams across Quanta adopt and adapt them in practical ways.Growth as a Security Challenge: With constant M&A activity and digital transformation underway, you’ll help the business scale securely.What You'll DoUnderstand and Prioritize Key RisksDevelop an enterprise-wide view of the most consequential cyber and operational risks, then translate that insight into a quantifiable framework that drives clear, prioritized action and executive/board-level accountability—from the job site to the C-suite.Quantify and Narrate Cyber RiskTransform real-time telemetry into a leadership-ready scorecard that links cyber exposure to financial and operational impact, guiding swift, data-driven decisions across every level of the business. Partner with Legal and Compliance to ensure Quanta is audit-ready for evolving SEC cybersecurity disclosure rules, utility sector regulations, and insurance requirements.Champion Enterprise Security StandardsSet a clear, business-aligned security baseline for every operating company and inspire teams to adapt and elevate it, making the “why it matters” as compelling as the “what to do.” Define and maintain the Quanta security standards and a clear exceptions process, so every operating company understands “how secure is secure enough.”Enable Secure SolutionsDefine guardrails, reference architectures and decision records so platform and application teams can design the “how” that best fits their stack.Accelerate Next-Gen Threat Detection & ResponseSet the vision and success metrics for an automation-first detection capability, partnering with platform engineering teams to deliver it. Leverage managed services for commodity alerting, allowing your team to focus on advanced detection logic, purple-team experimentation, and self-healing response pipelines. Own the enterprise cyber incident response playbook, ensuring rapid, coordinated responses to major threats. Conduct quarterly tabletop exercises with IT and business leadership to test readiness and maturity.Build Relationships Across the BusinessWork with CIOs, IT leaders, and business leaders to shape a culture of shared responsibility for cybersecurity. Influence by educating—not just enforcing. Publish a quarterly “Cyber Risk in Business Terms” scorecard that links exposure to economic impact and drive remediation planning in partnership with accountable leaders.Embed Security into the M&A PlaybookFacilitate due-diligence “cyber gates” in our M&A playbook—focusing on critical controls and residual risk aligned to the maturity and operational realities of newly acquired organizations. (We acquire and integrate 3-12 companies a year).Create a roadmap to recruit, retain, and grow top-tier cyber talent, especially in cloud security, detection engineering, and operational technology environments.What You'll Bring20+ years of progressive experience in technology and information security, with at least 5 in a senior leadership role – preferably at a publicly traded Fortune 500 company.Experience in consulting, as engineering and construction mirrors professional services, and understand how the fundamentals and economics of our business work.Proven ability to lead cybersecurity in a federated enterprise—balancing central strategy with local autonomyA track record of leading through influence in federated environments—your best work happens when you’re convening cross-functional engineers to invent the solution together.Experience designing and implementing enterprise security controls aligned to frameworks including ISO 27001 and SOC 2 Type II as well as utility and federal-sector frameworks, including NERC CIP and CMMC. Demonstrated experience translating these frameworks into practical implementation roadmaps for Quanta and its operating companies.Demonstrated ability to quantify investment business cases.Hands-on M&A security experience—leading cyber due diligence and post-close integration for cyber; right-sizing controls to acquired firms’ maturity and guiding them toward enterprise standards.Exceptional communication and relationship-building skills—you influence through credibility, not controlA collaborative mindset: you look for ways to say “yes, if…” rather than default to “no”Experience building risk frameworks that bridge operations, cybersecurity, and executive oversightActive certifications such as CISSP, CISM, or GIAC are required.Equal Opportunity EmployerAll qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, national origin or ancestry, sex (including gender, pregnancy, sexual orientation, and/or gender identity), age, disability, genetic information, veteran status, and/or any other basis protected by applicable federal, state or local law.We are an Equal Opportunity Employer, including disability and protected veteran status.We prohibit all types of discrimination and are committed to providing access and equal opportunity for individuals with disabilities. For additional information or if reasonable accommodation is needed to participate in the job application, interview, or hiring processes or to perform the essential functions of a position, please contact us the Company’s Human Resources department.Job DetailsSeniority level: DirectorEmployment type: Full-timeJob function: Information TechnologyIndustries: Construction, Utilities, and TelecommunicationsGet notified about new Director of Cyber Security jobs in Houston, TX. #J-18808-Ljbffr

Created: 2025-10-01