Director of IT

The Director of Technology & Innovation is a dual-focus role designed to bridge the gap between traditional IT infrastructure and market-leading service delivery. Beyond maintaining the internal stability of our network and software systems, this individual will act as a strategic partner in defining our Unique Selling Proposition (USP).

This role ensures that:

• ERP (accounting, dispatch, work order lifecycle, AR/AP, reporting) operates securely and accurately.
• System access aligns with Human Resources onboarding and clearance controls.
• Recruitment, screening, and employment governance systems remain protected.
• Departmental systems across Operations, Finance, Sales, and Human Resources function within documented authority boundaries.
• Financial measurement and internal control integrity are preserved.
• Our field technicians, estimators, and project managers have the most advanced tools available, while simultaneously vetting and implementing client-facing technologies—such as advanced building automation, IoT monitoring, and integrated service platforms—that set us apart from the competition.

1. Cyber-Resilience: Zero unauthorized system breaches or unmitigated data exfiltration events.
2. System Availability: 99.9% availability of core ERP and field communication platforms.
3. Innovation Integration: Successful deployment of at least two profitable revenue-enhancing technological differentiators per fiscal year.
4. Compliance: 100% adherence to SOP-FIN-400 series and related financial data controls.
5. Audit Readiness: Maintenance of an audit-defensible log of all security patches, vulnerability scans, and vendor risk assessments. Enforced IT governance policies aligned with internal control requirements.
6. Other IT and software duties as required.

• Management of firewall configurations and endpoint protection software.
• Execution of recurring vulnerability scanning and immediate patch deployment.
• Implementation of multi-layered email security and anti-phishing protocols.
• Enterprise-wide data encryption standards and their enforcement for stationary and mobile devices.
• Conduct of formal risk assessments for all third-party technology vendors.
• Incident response documentation

• Internal security audit scores.
• Mean time to detect (MTTD) and mean time to remediate (MTTR) vulnerabilities.
• Incident response documentation
• External security assessment results

• Researching and vetting industry-specific technologies that provide competitive advantages.
• Integrating advanced client-facing tools (e.g., IoT monitoring, automated reporting) into the service delivery model.
• Collaborating with Sales and Operations to ensure technical tools are utilized as a value-add for clients.
• Monitoring market trends to prevent technological obsolescence in service offerings.

• Revenue growth attributed to tech-enhanced service contracts.
• Client adoption rates of digital platforms.
• Net promoter score related to technology-driven revenue streams.

• Network performance management
• Server hosting environment
• Cloud backup systems
• Endpoint device security
• Field technician mobile device management
• Hardware lifecycle replacement planning

• Infrastructure uptime
• Backup validation logs
• Recovery time during outage events

• Role-based access provisioning after documented authorization
• Immediate deactivation upon HR clearance
• Multi-factor authentication enforcement
• Quarterly access audits
• Removal of dormant accounts
• Documentation of access approvals

• Zero unauthorized active accounts
• Deactivation within 24 hours of separation
• Audit completion documentation

• IT security policy maintenance
• Acceptable use policy enforcement
• Disaster recovery plan documentation
• Data retention controls
• IT asset inventory tracking
• Audit readiness documentation

• Policy acknowledgment completion
• Audit findings
• Disaster recovery test validation