Executive Director, Security & Information Protection

Odyssey is seeking an Executive Director of Security & Information Protection to lead the recently formed Security & Information Protection group. This role carries enterprise-level responsibility for both strategic oversight and operational execution across all Security and Information Protection functions. Key areas of accountability include personnel security, physical security, compliance with classified contract requirements, information technology infrastructure, information protection, and end-user support services.

The successful candidate will bring a strong understanding of how to align operational priorities with regulatory obligations, ensuring both business enablement and compliance. A thorough knowledge of the National Industrial Security Program Operating Manual (NISPOM), 32 CFR Part 117, DoD 5205.07, Contract Security Classification Specification (DD254), Program Classification Guides, and the Cybersecurity Maturity Model Certification (CMMC) framework is required.

Duties include, but are not limited to:

• Lead and manage all aspects of security and information technology operations, including personnel security, physical security, contract compliance, IT Infrastructure, and helpdesk support.
• Develop and implement integrated strategies that support business objectives while maintaining strict adherence to regulatory requirements.
• Develop and maintain a comprehensive information protection program to secure the confidentiality, integrity, and availability of the organization’s systems and data. This includes overseeing risk assessments, implementing appropriate safeguards, and ensuring compliance with applicable federal and Department of Defense standards.
• Establish and maintain service level expectations to ensure consistent, high-quality internal and external support.
• Collaborate across departments to ensure security and technology initiatives are effectively supporting organizational goals.
• Oversee the development, implementation, and maintenance of secure, reliable IT systems, and infrastructure.
• Integrate information protection principles into IT and security processes, ensuring alignment with CMMC requirements and maintaining readiness for assessments and audits.
• Act as the senior point of contact for security, information technology, and information protection audits, inspections, and incident response.
• Identify emerging risks and recommend effective mitigation strategies.
• Foster a customer service-oriented culture of accountability, responsiveness, and continuous improvement within the Security & Technology group.

• Deep familiarity with the regulatory landscape applicable to DoD contractors, including NISPOM, 32 CFR Part 117, DoD 5205.07, DD254s, and Program Classification Guides.
• Demonstrated experience implementing and sustaining cybersecurity compliance programs, particularly CMMC or comparable frameworks.
• Strong leadership, communication, and organizational skills with the ability to build trust across technical and non-technical teams.
• Proven track record of developing and leading high-performing teams.
• Excellent oral and written communication skills.
• Superior organizational skills.
• Proficient in MS Office Suite.

Preferred Experience:

• Background in a defense contracting environment, especially in advisory and assistance services (A&AS) or systems engineering and technical assistance (SETA) roles.
• Experience managing the security requirements of classified contracts, including coordination with government security representatives.
• Familiarity with IT governance, risk management, and compliance frameworks.