Home > Job Details

Sr. Director, Cybersecurity

BUILD A BETTER CAREER WITH MSC

Serving customers and our community starts with the best people doing their best work. That is precisely what we have created at MSC Industrial Supply Co. We are a leading North American distributor of metalworking and maintenance, repair, and operations (MRO), products and services. We offer more than 2 million products and have over 80 years of experience across dozens of industries. We aim to execute our Built to Make You Better brand promise for all our stakeholders, including our associates.

Requisition ID :20176

Employment Type : Full Time

Job Category : Digital/IT

Work Location : Woburn, MA

BRIEF POSITION SUMMARY:

The Senior Director, Cybersecurity is responsible for establishing, executing, and continuously maturing the enterprise cybersecurity strategy to protect the organization's information assets, technology platforms, and digital operations. This role combines deep technical mastery, strategic risk leadership, and executive-level communication, serving as the primary authority on cybersecurity risk, resilience, and regulatory compliance.

Reporting into the SVP, Chief Information Officer, the Senior Director, Cybersecurity is expected to be both a hands-on technical leader and a trusted advisor to executive leadership and the Board, capable of translating complex cyber risk into clear business impact while maintaining calm, decisive leadership during incidents and crises.

DUTIES AND RESPONSIBILITIES

Cybersecurity Strategy & Technical Leadership

  • Own and evolve the enterprise cybersecurity strategy, ensuring alignment with business objectives, digital transformation initiatives, and emerging technology adoption, including cloud, AI, and ML-enabled systems.
  • Maintain deep, current technical expertise across:
    • Network security, endpoint protection, identity and access management (IAM), and zero-trust architectures
    • On-prem, hybrid, and public cloud platforms
    • Application security, data protection, and secure SDLC practices
    • Emerging threats and technologies, including AI/ML risks, automation, and advanced threat actor techniques
  • Serve as the organization's senior technical authority on cybersecurity architecture, controls, and risk trade-offs.

Cybersecurity Frameworks & Risk Management

  • Lead the cybersecurity program using recognized frameworks, with intimate familiarity and practical application of the NIST Cybersecurity Framework (CSF) across Identify, Protect, Detect, Respond, and Recover functions, consistent with internal framework adoption.
  • Establish and maintain a robust cyber risk management approach that identifies, prioritizes, and mitigates cyber risks in business-relevant terms and fiscal objectives.
  • Ensure consistent measurement, reporting, and continuous improvement of cybersecurity maturity.

Regulatory Compliance & Governance

  • Oversee cybersecurity-related regulatory and compliance requirements, including but not limited to:
    • IT General Controls (ITGC)
    • PCI DSS
    • Data privacy obligations
  • Partner with Internal Audit, Legal, Risk Management, and external auditors to ensure controls are designed, implemented, and operating effectively.
  • Provide executive assurance on cybersecurity governance, control effectiveness, and risk posture.

Incident Response & Crisis Leadership

  • Own and oversee the enterprise cyber incident response program, ensuring readiness, clarity of roles, and regular testing.
  • Act as a senior leader during cybersecurity incidents, providing calm, clear, and decisive crisis communication to executives, legal, communications, regulators, and external stakeholders, consistent with established incident and crisis management practices.
  • Ensure post-incident reviews are conducted and lessons learned are incorporated into controls, processes, and strategy.

Executive & Board Communication

  • Serve as the primary cybersecurity advisor, with Chief Information Officer (CIO), to executive leadership and the Board.
  • Deliver clear, credible, and business-focused cybersecurity briefings that build trust and understanding, leveraging consistent operating frameworks for board-level communication.
  • Translate technical risk into business impact without unnecessary jargon, while maintaining technical depth when required.

Leadership & Talent Development

  • Build, lead, and mentor high-performing cybersecurity teams across security architecture, operations, governance, risk, and compliance.
  • Foster a culture of accountability, technical excellence, and continuous learning.
  • Partner with IT and business leaders to embed security into technology design and operational processes.
  • Fosters the MSC Culture in the department and throughout the company to ensure fulfillment of MSC's vision and unity of purpose.
  • Participation in special projects and performs additional duties as required

QUALIFICATIONS

What You Need:

  • Bachelor's degree in Computer Science, Information Security, Engineering, or related field; advanced degree preferred.
  • Industry certifications such as CISSP, CISM, CISA, or equivalent strongly preferred.
  • 10+ years of progressive experience in cybersecurity, information security, or related technical disciplines, including senior leadership roles.
  • Demonstrated hands-on technical depth across enterprise infrastructure, cloud platforms, and modern security tooling.
  • Proven experience leading cybersecurity programs aligned to NIST CSF in complex enterprise environments.
  • Strong background in regulatory compliance, audit, and risk management (ITGC, PCI, GDPR).
  • Executive presence with the ability to communicate confidently and effectively with senior leadership and Boards.
  • Proven crisis leadership experience, including calm and effective communication during high-impact cybersecurity incidents.
  • Ability to influence without authority and partner effectively across IT, Legal, Finance, Audit, and the business

Bonus Points If You Have:

  • Experience serving as senior cybersecurity leader within a complex, multi-channel enterprise (e.g., distribution, manufacturing, retail, or logistics)
  • Demonstrated success aligning cybersecurity investments with business growth, digital transformation, and operational resilience
  • Experience partnering with Sales, Supply Chain, and Operations leaders to embed security into revenue generating and mission critical processes

Other Requirements:

  • A valid driver's license may be required.
  • Position requires up to 30% of travel
  • This position may require access to International Traffic in Arms Regulations Information (“ITAR”) and/or Controlled Unclassified Information (“CUI”)

Compensation starting at $181,930 - $265,177 depending on candidate location and experience.

The salary range represented is based on similar roles in comparable industries, and the cost of labor in respective cities. Actual compensation is based on the candidate's relevant experience, education requirements and peer pay equity. The Company reserves the right to modify the range as market conditions change.

 

Applicants must be currently authorized to work in the United States. We are unable to sponsor or take over sponsorship of an employment Visa for this position at this time.

 

This job posting will remain open for a minimum of 3 business days from the original posting date or longer as needed to fill the position.

WHY MSC?

People. Collaboration. Insight. That's how you build something that works. Built on a foundation of trust, MSC works side by side with our customers to help them drive business results. With more than one million product offerings and 80+ years of experience across industries, MSC strives to help our customers achieve greater productivity, profitability, and growth through inventory management and other innovative supply chain solutions. We care about our associates and have programs in place to help our 6,500+ team members achieve their potential.

OUR COMMITMENT TO YOU

Our associates are our top priority and investing in their well-being is one way we execute our Built to Make You Better brand promise. Alongside competitive pay, we have a comprehensive benefits program to support you and your family's health, well-being and financial future. We offer dynamic healthcare plans, generous 401K and stock purchasing programs, tuition reimbursement opportunities, and paid time away for holidays, vacations, and illness. Visit our page for a better look at our extensive benefits: Your Future Benefits.

You will also have the opportunity to join our Associate Inclusion Circles: Women, Pride, Black, Generational, Veterans, HOLA, and Able. These circles are open to all associates and are designed to promote awareness, collaboration, and respect.

EQUAL EMPLOYMENT OPPORTUNITY STATEMENT

At MSC, we are committed to providing an environment of mutual respect where equal employment opportunities are available to all qualified applicants and our associates without regard to race, color, religion, age, sex, national origin, disability, protected veteran status, sexual orientation or any category protected by applicable law. Accommodation requests can be made at any stage of the recruitment process; applicants are asked to make their needs/requirements known.

APPLY NOW
APPLY NOW
Share this job
INTERESTED IN THIS JOB?
Save Job
Print this job

CREATE A JOB ALERT

SUBMIT ALERT

SIMILAR JOBS

SCHEMA MARKUP ( This text will only show on the editor. )