The Director of Security Strategy & Transformation is a senior leader responsible for shaping, operationalizing, and governing the enterprise security strategy in alignment with business objectives, regulatory expectations, and technology evolution. This role report to CISO and partners closely with enterprise technology leaders, and executive stakeholders to translate security vision into measurable outcomes, scalable operating models, and sustained risk reduction.

The role is highly cross-functional, blending security strategy, program leadership, resource and operating model design, and executive advisory, with a strong emphasis on enabling business velocity while managing risk in complex, high-growth environments.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

Security Strategy & Planning

• Drive CISO strategy and partner with senior technology leaders to define and evolve the enterprise security strategy, multi-year roadmap, and investment priorities.
• Establish security OKRs, KPIs, and maturity models that align risk reduction, regulatory readiness, and business enablement.
• Translate emerging risk trends (cyber, insider, privacy, AI, regulatory) into actionable strategic initiatives and decision frameworks.

Operating Model & Program Leadership

• Design and lead the security operating cadence, including strategic planning, portfolio governance, and execution oversight across cybersecurity, privacy, and technology risk domains.
• Build and mature enterprise PMO and portfolio management frameworks spanning identity and access management, vulnerability management, cloud security, insider risk, and resilience.
• Drive large-scale, cross-functional security transformation programs from concept through sustained adoption.

Executive & Board Engagement

• Support CISO with materials and artifacts designed for Board members, executive leadership, producing clear, data-driven materials on security posture, risk exposure, program ROI, and operating maturity.
• Prepare and deliver board-level reporting on cybersecurity strategy, investment outcomes, and regulatory posture.
• Enable informed decision-making through concise narratives that connect security risk to business impact.

Risk, Privacy & Regulatory Enablement

• Operationalize regulatory and compliance obligations (e.g., privacy, data protection, financial services oversight) into measurable roadmaps that balance innovation and control.
• Partner with legal, compliance, and risk teams to integrate security strategy into broader enterprise risk management frameworks.
• Ensure consistent visibility into risk, assurance, and response metrics through unified reporting and analytics.

Technology & Innovation Enablement

• Guide the strategic adoption of cloud, AI/ML, automation, and observability capabilities to modernize security operations and enterprise technology platforms.
• Evaluate and govern emerging technologies (e.g., AI agents, semantic search) to ensure security, privacy, and data protection by design.
• Promote scalable, user-centric security solutions that reduce friction while strengthening control effectiveness.

Leadership & Change Management

• Lead through influence in highly matrixed environments, aligning engineering, operations, product, and business teams.
• Drive organizational change through clear communication, empathy, and structured change management.
• Build communities of practice and centers of excellence that elevate security strategy, execution discipline, and continuous improvement.

QUALIFICATIONS:

• Bachelor’s degree in computer science, information technology, or risk and governance or equivalent
• 15+ years of experience in security strategy, enterprise transformation, technology risk, or program leadership, with increasing scope and complexity.
• Proven experience partnering with CISO, CIO, CTO, or equivalent executives in large, global organizations.
• Demonstrated success designing and scaling enterprise security programs (e.g., IAM, insider risk, vulnerability management, privacy, cloud security).
• Strong background in operating model design, portfolio governance, and KPI-driven management.
• Experience producing executive- and board-level communications on security, risk, and transformation outcomes.
• Ability to translate complex technical and regulatory topics into clear, business-oriented narratives

Travel: Approximately 25%

Our Interview Practices

To maintain a fair and genuine hiring process, we kindly ask that all candidates participate in interviews without the assistance of AI tools or external prompts. Our interview process is designed to assess your individual skills, experiences, and communication style. We value authenticity and want to ensure we’re getting to know you—not a digital assistant. To help maintain this integrity, we ask to remove virtual backgrounds and include in-person interviews in our hiring process. Please note that use of AI-generated responses or third-party support during interviews will be grounds for disqualification from the recruitment process.

Applicants may be required to appear onsite at a Wolters Kluwer office as part of the recruitment process.

Compensation:

$181,900.00 - $325,050.00 USD

This role is eligible for Bonus.

Compensation range listed is based on primary location of the position. Actual base salary offer is influenced by a wide array of factors including but not limited to skills, experience and actual hiring location. Your recruiter can share more information about the specific offer for the job location during the hiring process.

Additional Information:

Wolters Kluwer offers a wide variety of competitive benefits and programs to help meet your needs and balance your work and personal life, including but not limited to: Medical, Dental, & Vision Plans, 401(k), FSA/HSA, Commuter Benefits, Tuition Assistance Plan, Vacation and Sick Time, and Paid Parental Leave. Full details of our benefits are available upon request.