Share this Job

Senior Director, Information Security

Apply now

Apply for Job

Date: Dec 8, 2022

Location: New York, NY, US, 10281

Company: Associated Press

The Associated Press is an independent global news organization dedicated to factual reporting. Founded in 1846, AP today remains the most trusted source of fast, accurate, unbiased news in all formats and the essential provider of the technology and services vital to the news business. More than half the world's population sees AP journalism every day.



The Associated Press is seeking a Senior-Director to lead its Information Security operations in New York, New York.


This leadership role within the AP Technology team will be responsible for the overall cybersecurity posture of the organization, including vision, strategy, and execution of protecting the organization’s employees, it’s news gathering operations, content systems and services. The Senior-Director is responsible for budgeting, roadmap, recruiting and retaining talent, and metrics and is ultimately accountable for enabling the organization to operate as securely as possible as it pursues its strategic initiatives.



  • Lead the cybersecurity team to achieve the cybersecurity strategy; proactively influence peers and senior leaders in other business units to build a strong cybersecurity culture
  • Keep abreast of developing cybersecurity threats, and help the board understand potential cybersecurity problems that might arise from strategic decisions
  • Experience with contract and vendor negotiations and management including managed services
  • Coordinate and communicate root cause analysis in breaches, outages, and disruptions related to cybersecurity, and direct continuous improvements to avoid similar issues in the future
  • Plan, purchase, and implement cybersecurity hardware and software; oversee that AP Technology and network infrastructure is designed to adhere to relevant cybersecurity frameworks and architectural principles
  • Oversee cybersecurity audits and due diligence during the process for onboarding new partners and vendors
  • Collaborate with executive stakeholders to understand and translate company strategies into near- and long-term cybersecurity roadmaps
  • Attract and retain the right cybersecurity talent, and nurture the professional growth of employees
  • Drive organizational strategic decision-making, system implementations, and the adoption of new processes and procedures as part of continuous evaluation and improvement of the cybersecurity and robustness of the organization’s infrastructure, cybersecurity technologies projects, and enterprise systems
  • Lead the cybersecurity incident response teams in areas such as planning and execution of necessary vulnerability audits, penetration testing, or forensic audits and investigations
  • Manage the budget allocations and associated financial forecasts relating to cybersecurity; include estimates staff, hardware, software, and service providers
  • Plan, design, and execute to a target operating model that provides the necessary cybersecurity competencies to protect how the organization chooses to operate and in line with the company’s values



  • Bachelor’s degree in management information systems (MIS), IT, computer science, or engineering. Master’s degree is a plus
  • CISSP, CISM, or CISA certification is a plus
  • Minimum of ten to twelve years of experience in a combination of information security and IT jobs within the technology or media industry
  • Knowledge of common information security management frameworks such as SOC 2, NIST Cybersecurity Framework, and privacy frameworks (CCPA and GDPR)
  • Demonstrated ability to effectively communicate complex security technology matters in an easy-to-understand manner to executives, teams and individual contributors across the organization
  • Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams


Advanced-level professional competency in written and spoken English language is required.  Authorization to work in the US for any employer is mandatory.


The anticipated salary range for this position is $225,000 - $250,000, contingent on experience and other job-related factors.  Employees are eligible to participate, according to the terms of the official plan documents, in a 401(k) plan, employer-sponsored health insurance plan, and are eligible for paid time off and holidays in accordance with AP policy.


The application period will expire at 11:59pm on December 31, 2022.


AP seeks to build an inclusive organization grounded in respect for differences. We support all aspects of diversity and provide equal employment opportunity to all employees and applicants without regard to race, color, religion, sex, marital status, national origin, age, sexual orientation, gender identity, disability or status as a veteran. We encourage members of traditionally underrepresented communities to apply.

Nearest Major Market: New York City

Job Segment: Information Security, Cyber Security, Testing, Computer Science, Technology, Security