Dir, Information Security (US-Remote)

About Us
CDK Global is a leading provider of cloud-based software to dealerships and Original Equipment Manufacturers (“OEMs”) across automotive and related industries. The Company’s cloud-based, software as a service (“SaaS”) platform enables dealerships to manage their end-to-end business operations including the acquisition, sale, financing, insuring, repair, and maintenance of vehicles. By automating and streamlining critical workflows, the integrated platform of modern solutions enables dealers to sell and service more vehicles by creating simple and convenient experiences for customers and improves their financial and operational performance.

The Role

Join CDK Global as we revolutionize the automotive industry's digital infrastructure. As Director, Information Security reporting to the Chief Information Security Officer, you'll be accountable for securing CDK's comprehensive infrastructure connecting thousands of CDK customers, team members, ISVs, and OEMs - including on-premises data center, user devices and identities, public cloud, and 3rd party systems.
 

At CDK Global, you'll tackle exciting challenges while leading strategic security initiatives that protect a global automotive technology leader. This role presents a unique opportunity to drive innovation in cloud security and automation while shaping the future of automotive technology security. Working with cutting-edge identity and security technologies, you'll be part of a dynamic, global technology company committed to transformation through innovation. You'll have the chance to make a significant impact on the future of automotive technology security while working alongside talented teams who share your passion for excellence and innovation. This role offers exceptional opportunities for professional growth and leadership development in a fast-paced, evolving industry landscape where your expertise will directly influence the security posture of a global enterprise.
 

As Director, Information Security, you will lead three essential security domains that are critical to CDK Global's infrastructure and operations:

• Your oversight of Network Security will encompass enterprise network protection, zero-trust architecture, and 24x7 technical operations support.
• Leading Identity Security, you'll drive our IAM strategy, privileged access governance, and comprehensive user lifecycle management.
• Owning Workplace Services Security, you will focus on securing our Microsoft 365 environment, protecting end-user computing, and enabling secure collaboration across our global organization.

These three pillars form an integrated security approach, ensuring seamless protection of CDK's diverse technology landscape while enabling business agility and innovation.
 

Essential Functions and Responsibilities:

Leadership & Strategy:

• Exemplify security principles and culture
• Develop and implement the long-term infrastructure security strategy
• Effectively partner across security, technology, and business teams
• Lead the infrastructure security team, manage infrastructure security technology and services
• Develop effective infrastructure security metrics and use them to drive improvements
   

Network Security:

• Develop network security policies, standards, and guidelines
• Measure and report on CDK’s compliance with network security standards
• Develop and implement effective zero trust network segmentation architecture and strategies to reduce security risk
• Develop and operate processes for making firewall and network security configuration changes in accordance with network security standards using automation and Infrastructure as Code methodologies
• Provide 24x7 tier 2/3 support for network security technologies
   

Identity Security:

• Develop and continuously improve Identity and Access Governance, Privileged Access Management standards and guidelines in alignment with risk and compliance requirements
• Architect, design, build, implement, and operate IAM, PAM, IGA, and Secrets Management solutions
• Collaborate with product and technology teams on developing and implementing effective secrets management solutions
• Develop and operate processes for user account lifecycle management, secrets management, and email/collaboration security.
   

Workplace Services Security:

• Architect, design, build, implement and operate Email, File Sharing, and End User Compute security solutions (Microsoft 365 environment)
• Design and implement effective SaaS application security governance
• Assure compliance of end user compute environment with CDK security standards
• Implement effective file sharing and collaboration solutions to enable secure collaboration for CDK team members, partners, and customers

Required Qualifications and Skills:

• Bachelor’s degree in Computer Science, Information Security, or a related field (Master’s degree preferred); or an equivalent experience
• Minimum of 8 years in infrastructure security, with at least 3 years in a leadership role in network security.
• Strong background in infrastructure security architecture, design, and operations – preferably in a complex SaaS environment.
• Demonstrated effective leadership of engineering teams
• Use of risk-based decision making in strategy development and work prioritization

Salary Range: $200,000 - $240,000

CDK Global is committed to fair and equitable compensation practices. Compensation packages are based on several factors, including but not limited to skills, experience, certifications, and work location.  The total compensation package for this position may also include annual performance bonus, benefits and/or other applicable incentive compensation plans.We offer Medical, dental, and vision benefits in addition to:

• Paid Time Off (PTO)

• 401K Matching Program

• Tuition Reimbursement

At CDK, we believe inclusion and diversity are essential in inspiring meaningful connections to our people, customers and communities. We are open, curious and encourage different views, so that everyone can be their best selves and make an impact.

CDK is an Equal Opportunity Employer committed to creating an inclusive workforce where everyone is valued. Qualified applicants will receive consideration for employment without regard to race, color, creed, ancestry, national origin, gender, sexual orientation, gender identity, gender expression, marital status, creed or religion, age, disability (including pregnancy), results of genetic testing, service in the military, veteran status or any other category protected by law.

Applicants for employment in the US must be authorized to work in the US.  CDK may offer employer visa sponsorship to applicants.