Cybersecurity Director

We are committed to understanding the needs of the homes and businesses we serve. That's why we're always looking for driven, collaborative people to join our team. Because we believe that offering our customers the best service means bringing together the best people.

And we find the best by hiring those who share our values of safety, inclusion and integrity, and demonstrate the competencies that bring the Spire vision, mission and culture to life:

* Adaptability: We embrace change, continuously seeking opportunities for improvement while remaining open-minded and flexible in response to evolving conditions and customer, stakeholder and company needs.

* Collaboration: We achieve more together through a foundation of respect, embracing healthy conflict, actively seeking and providing actionable feedback and fostering an environment where everyone's input is welcomed.

* Ownership: We see things through, demonstrate accountability, honor commitments, take responsibility for outcomes and demonstrate initiative.

By living our values and competencies, we strive to create an environment where employees feel welcome, respected and valued.

Spire is seeking a Director, Cybersecurity. This position is responsible for the overall strategy and execution of the company's information security. The position establishes strategic plans, policies, and processes to ensure the confidentiality, integrity, and availability of Company information assets.

* Develop and administer policies and procedures related to system and information ownership as well as data classification guidelines
* Develop, establish and maintain standards, procedures and guidelines to promote the security, interoperability, supportability, sustainability and usability of computer-based application systems at Spire
* Maintain a robust, resilient and secure information security technology platform
* Identify and address exposures to accidental or intentional destruction, disclosure, modification, or interruption of information that may cause serious financial and/or information loss to the Company
* Develop and manage information security functions within budgeting and business planning processes Implement, maintain, and oversee enforcement of policies, procedures and plans for system security administration and user system access based on industry-standard best practices
* Provide leadership, direction, coaching and career development for the cybersecurity personnel
* Serve as executive information security liaison to business units, providing internal consultation on security considerations for business initiatives
* Establish and maintain security standards and procedures in accordance with industry-accepted best practices, standards and guidelines
* Provide leadership and direction to ensure the appropriate levels of segmentation within IT and OT environments
* Develop and monitor practices to ensure that the information of Spire is secure from unauthorized access, protected from inappropriate alteration, physically secure, and available to authorized users in a timely fashion
* Provide leadership and direction for the organization in meeting all local, state, and federal government regulations and directives
* Establish and maintain metrics quantifying current state and efficacy of security solutions to be aligned with strategic initiatives
* Coordinate information security efforts with the Internal Audit Department

* Ability to communicate effectively, both orally and written, across all levels of the organization
* Ability to work independently and manage time effectively to meet goals and deadlines
* Strong interpersonal skills with a proven ability to build rapport with a diverse array of people
* Ability to handle stress and adapt to a fast-moving, ever-changing cybersecurity landscape
* Ability to work as part of a team and display a positive attitude in a dynamic environment
* Ability to lead by example in support of the company's essential characteristics and values: strong ethics and integrity, dedication to a safe work environment, commitment to a diverse workforce that recognizes and respects every individual's unique skill and perspective

* Bachelor's degree in Computer Science, Business, Information Systems or a related field preferred or ten years' experience in the field

Certificates, Licenses, Registrations

* CISSP, CISA, CISM, PMP preferred

* Five plus years of demonstrated experience leading/managing security practices around security technologies including protocols, policies and procedures with medium to large company experience
* In-depth knowledge of network security frameworks including IT/OT segmentation
* Solid understanding of industry standard best security practices for both on-prem and various cloud platforms
* Strong understanding and experience managing and leading teams in core security solutions such as firewalls, SIEM, EDR/XDR, vulnerability management, and third-party risk management
* In-depth knowledge and understanding of Active Directory and Identity Access Management best practices
* Strong knowledge of mobile device management solutions and mobile security industry-standard best practices

Work is normally performed in a shared services environment

Spire accepts online applications through our career site at jobs.spireenergy.com

The above posting description is intended to describe the general nature of the level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified. To perform this job successfully, an individual must be able to perform each duty and responsibility satisfactorily. The requirements listed above are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Spire, Inc., and its subsidiaries are Affirmative Action and Equal Employment Opportunity employer.

We are committed to providing equal employment opportunity in all areas, including but not necessarily limited to, recruitment, selection, training, education, compensation, benefits, promotion, job transfer, upgrading, separation and recall regardless of the individual's race, color, sex, age, religion, national origin, genetics, sexual orientation, gender identity, disability, veteran status, and/or other protected categories under all Federal, State, and local laws. For more information, please view our Integrity and Inclusion pages of our career site.