Discovery Education is seeking an experienced and strategic VP, Chief Information Security Officer to lead the continued maturation, implementation, and continuous improvement of our enterprise-wide information security and compliance programs. The person in this role will be responsible for protecting our corporate systems, customer-facing products, data assets, and brand reputation in an increasingly complex global environment.

The ideal candidate will bring a balanced blend of strategic leadership, technical expertise, and business acumen, ensuring security is both a foundation of trust and an enabler of innovation at Discovery Education.

Hiring Manager: Travis Barrs

In This Role You Will:

Security Strategy & Governance

• Develop and execute a comprehensive information security strategy aligned with business goals and regulatory requirements.
• Establish governance frameworks and policies to ensure consistent and effective security practices.

Enterprise & Product Security

• Oversee IT security operations, including network security, endpoint protection, identity and access management, and disaster recovery.
• Integrate security principles across the product development lifecycle, including secure coding, vulnerability management, and incident response.

Risk & Compliance Management

• Lead programs to achieve and maintain compliance with ISO 27001, SOC 2, FERPA, COPPA, GDPR, and other relevant standards.
• Conduct risk assessments and implement mitigation strategies across the organization.

Vendor & Third-Party Management

• Oversee third-party risk assessments and ensure vendors meet security requirements.
• Collaborate with Legal, IT, and Business Systems teams to manage vendor relationships.

Incident Response & Crisis Management

• Lead proactive incident response planning and real-time management of security events.
• Develop and maintain crisis communication protocols.

Data Privacy & Protection

• Partner with Legal, Product, Engineering, and Data teams to uphold global data privacy standards.
• Implement governance practices for data protection.

Security Awareness & Education

• Promote a strong security culture through training, simulations, and executive tabletop exercises.

Leadership & Collaboration

• Lead and develop a high-performing security team.
• Partner with IT, Engineering, Legal, and Product Management to embed security into business operations.

Customer & Stakeholder Engagement

• Respond to customer security inquiries and support audits and contract reviews.
• Provide clear, actionable updates to executives and board-level stakeholders

Core Competencies for Success:

• Strategic Mindset
• Drives Results
• Collaborates
• Manages Complexity
• Builds Effective Teams
• Communicates Effectively
• Instills Trust
• Tech Savvy

Credentials and Experience:

• 10+ years of experience in information security leadership roles.
• Proven expertise in cloud-native environments (AWS preferred), SaaS security, and modern software development.
• Deep understanding of regulatory frameworks relevant to the education and technology sectors.
• Strong communication skills with the ability to translate technical issues into business impacts.
• Experience leading audits and certifications (ISO 27001, SOC 2 Type II).
• Bachelor’s degree in Computer Science, Information Security, or related field; advanced degree or certifications (CISSP, CISM, CISA) preferred.
• Legal right to work in the United States
• Experience in K-12, EdTech, SaaS, or regulated industries.
• Familiarity with Microsoft Security Stack (Defender, Sentinel) and Hyperproof or similar compliance tools.
• Knowledge of AI-related security threats and mitigation strategies.
• M&A analysis experience.
• High integrity, ownership, and accountability.

This role will sit in our Charlotte HQs with a hybrid work schedule.