Director, Information Security U.S

Director, Information Security U.S.

- Stamford CT

Be a part of a revolutionary change!

At Philip Morris International (PMI), we’ve chosen to do something incredible. We’re totally transforming our business and building our future on one clear purpose – to deliver a smoke-free future.

With huge change comes huge opportunity. So, if you join us, you’ll enjoy the freedom to dream up and deliver better, brighter solutions and the space to move your career forward in endlessly different directions. Our success depends on people who are committed to our purpose and have an appetite for progress.

Our beautiful HQ in Stamford, CT is just steps away from the Stamford Metro‑North Train Station and easily accessible from NYC.

The Director, Information Security U.S. is responsible for delivering an effective information security capability that protects the confidentiality, integrity and availability of PMI U.S. data, intellectual property and IT assets across the U.S. region.

As a member of PMI’s Information Security senior leadership team, this role supports the Chief Information Security Officer by driving global security strategy and overseeing regional security operations. You will lead a team of Regional Information Security Officers and security services professionals, guide risk practices, and serve as the primary Information Security leader for the U. market.

A key focus will be harmonizing cybersecurity across the U.S. while allowing for local adaptations based on business needs and regulatory requirements. This role requires close collaboration with senior market leaders globally and strong alignment with PMI’s global Information Security teams.

PMI’s Information Security organization is a well‑established global function with a mandate to protect the company against evolving cyber threats. You will report directly to the Chief Information Security Officer and operate as part of PMI’s Global Information Security leadership team. This is an opportunity to make a significant impact within a complex, multinational environment.

• Serve as the Head of Information Security for the U.S., building strong stakeholder relationships and promoting a secure‑by‑design mindset.
• Advise senior market leadership and key stakeholders on cyber risks and priorities across regions.
• Represent regional needs and viewpoints in global security strategy discussions.

• Contribute to developing and implementing PMI’s global security strategy from a regional perspective.
• Strengthen affiliations with IT leadership, assurance teams, and the broader Information Security organization.
• Support the definition of the cyber risk program and ensure alignment with regional business needs.
• Drive continuous improvement of security governance structures across regions and report updates to global committees and regional leaders.

• Lead execution of the Global Security Program and harmonize security practices and maturity across markets.
• Partner with global teams to implement a regional security engagement strategy.
• Ensure regional adherence to PMI’s security policies and standards, incorporating local regulatory requirements.

• Manage Regional Information Security Officers and Regional Security Services teams.
• Enable markets to implement security practices that meet global standards and policies (“Build Secure”).
• Ensure completion of cyber risk and maturity assessments across all regions (“Stay Secure”).

• Oversee identification and management of cyber and information security risks in alignment with PMI’s risk appetite.
• Lead regional execution of cyberattack simulations, table‑top exercises, and crisis management activities.
• Strengthen security awareness and ownership through ongoing training and communication initiatives.

• Shape PMI’s security strategy for AI/ML technologies, working with global Info Sec and IT Engineering teams.
• Help define governance frameworks for ethical and compliant AI implementation.
• Assess emerging AI‑related…