Cybersecurity Director

ATLAS SP Partners is a global investment firm providing stable funding, financing, advisory and institutional products to market participants seeking innovative and bespoke structured credit and asset-backed solutions. Our experienced team works closely with clients to determine optimal approaches for capital optimization and goal achievement, leveraging a holistic suite of integrated capabilities – including asset and portfolio advisory, warehouse and acquisition financing, whole loan purchase and sale, and securitization and distribution. ATLAS is proud to build upon a legacy of client excellence, distinguished by certainty of execution, deep expertise, and comprehensive service across the asset management landscape.

ATLAS operates as “one team” where every individual makes an impact. We grow together, win together, and embrace change as a unified organization. Our commitment extends beyond advancing markets, and we strive to make a meaningful difference in our communities and for our clients. Our people are industry leaders, driven by a passion for client service, complex problem solving, and innovation. We foster professional and personal growth in a collaborative, inclusive environment, and are proud to build upon a legacy of excellence anchored in deep expertise and client service across the asset management landscape.

ATLAS SP is seeking a Cybersecurity Director to join the CISO’s cybersecurity team.

This Senior Cybersecurity Professional is responsible for protecting the organization’s data, computer systems and networks from cyber threats.  This is a hands-on leadership role in a lean team, requiring both strategic ownership and direct technical contribution.  Only candidates with direct experience in the “Primary Responsibilities” and “Requirements” sections will be considered.  This role will also be responsible for owning cybersecurity projects and assist in the development of the company’s cybersecurity strategy with Atlas’ CISO.  You will help shape Atlas’ cybersecurity readiness and security posture.

• →Drive the development and execution of the firm’s cybersecurity strategy, aligned with business objectives and risk tolerance.
• →Oversee and participate in security monitoring and incident response functions, ensuring effective detection, investigation, escalation, and resolution of security events through internal teams and external partners.
• →Govern security policies, standards, and procedures, ensuring alignment with regulatory requirements and industry best practices.
• →Own the design and evolution of the firm’s security architecture and control framework, spanning endpoints, identity, cloud, logging, and threat detection capabilities.
• →Ensure effective security event monitoring and response capabilities are in place, with appropriate tooling, processes, and coverage (internal and/or third-party).
• →Oversee vulnerability management and security testing programs, ensuring risks are identified, prioritized, and remediated in alignment with business impact.
• →Manage phishing tests, user cybersecurity training and social engineering tests to promote a culture of security awareness and compliance.
• →Partner with infrastructure and network teams to define and enforce security controls, including firewall policies and network protections.
• →Drive security initiatives and projects, from concept through execution, ensuring measurable improvement to the firm’s security posture.
• →Ensure effective incident documentation, reporting, and post-incident analysis.
• →Collaborate with senior stakeholders across IT and the business, embedding security into processes, systems, and decision-making.
• →Maintain awareness of the evolving threat landscape, translating insights into actionable improvements to the firm’s defenses.
• →Ensure effective endpoint and infrastructure hygiene programs are in place, including patching and configuration management.
• →Participate in DR, BCP and incident response tabletop tests.
• →Provide leadership and ownership for additional security initiatives as required.

• Bachelor’s degree in computer science, Cybersecurity, Information Systems, or a related field preferred.
• 8-10 years of experience in cybersecurity with 10-15 years overall in the technology industry.
• Experience developing cybersecurity strategy for technology organizations.
• Expertise in security frameworks, protocols, and products.
• Experience managing and influencing third-party security vendors
• Demonstrable experience in leveraging native security capabilities of cloud platforms from both a configuration management & security monitoring perspective.
• A full understanding of TCP/IP and the OSI stack and its impact on application and network security.
• Experience in defining & implementing processes to provide higher-quality control processes where emphasis is on integration & automation.
• Certification experience such as CISSP, CISA, CEH, or equivalent a +.
• Strong knowledge of SIEM, firewalls, VPNs, and proxies
• Experience with Azure and AWS cloud architecture and security.
• Experience with Windows, Mac, and Linux operating systems.
• Excellent problem-solving and analytical skills.
• Strong communication and teamwork abilities based on ‘can-do’ approach.

• Familiarity with regulatory requirements and compliance standards (e.g., ISO 27001, SSAE 18/19, GDPR, DORA).
• Experience integrating security into cloud-native and DevSecOps workflows.
• Knowledge of scripting languages (e.g., Python, PowerShell) a +.
• Experience operating security programs in regulated environments.
• Prior experience acting as a security lead or security architect.

$200,000 - $300,000