Quanta Services, Inc.
Director of Cyber Security
Quanta Services, Inc. is seeking a Director, Cybersecurity to lead our enterprise‑wide security posture across more than 40 operating companies. This role is about building trusted relationships, influencing through expertise, and protecting what powers the world.
What Makes This Role Unique Federated Model, Central Impact
Our businesses operate independently—but cybersecurity is a shared responsibility. You’ll set enterprise standards and help teams across Quanta adopt and adapt them in practical ways.
Our operating units and enterprise technology teams deliver the technology that powers our business. Your team will define the frameworks, partner with architecture and engineering to build secure platforms and applications, and provide a core set of capabilities to protect the enterprise.
Growth as a Security Challenge
With constant M&A activity and digital transformation underway, you’ll play a critical role in helping the business scale securely.
What You’ll Do Understand and Prioritize Key Risks
Develop an enterprise‑wide view of the most consequential cyber and operational risks, then translate that insight into a quantifiable framework that drives clear, prioritized action and executive/board‑level accountability—from the job site to the C‑suite.
Quantify and Narrate Cyber Risk
Transform real‑time telemetry into a leadership‑ready scorecard that links cyber exposure to financial and operational impact, guiding swift, data‑driven decisions across every level of the business. Partner with Legal and Compliance to ensure Quanta is audit‑ready for evolving SEC cybersecurity disclosure rules, utility sector regulations, and insurance requirements.
Champion Enterprise Security Standards
Set a clear, business‑aligned security baseline for every operating company and inspire teams to adapt and elevate it, making the “why it matters” as compelling as the “what to do.” Define and maintain the Quanta security standards and a clear exceptions process, so every operating company understands “how secure is secure enough.”
Enable Secure Solutions
Define guardrails, reference architectures and decision records so platform and application teams can design the ‘how’ that best fits their stack.
Accelerate Next‑Gen Threat Detection & Response
Set the vision and success metrics for an automation‑first detection capability, partnering with platform engineering teams to deliver it. Leverage managed services for commodity alerting, allowing your team to focus on advanced detection logic, purple‑team experimentation, and self‑healing response pipelines. Own the enterprise cyber incident response playbook, ensuring rapid, coordinated responses to major threats. Conduct quarterly tabletop exercises with IT and business leadership to test readiness and maturity.
Build Relationships Across the Business
Work with CIOs, IT leaders, and business leaders to shape a culture of shared responsibility for cybersecurity. Influence by educating—not just enforcing. Publish a quarterly “Cyber Risk in Business Terms” scorecard that links exposure to economic impact and drive remediation planning in partnership with accountable leaders.
Embed Security into the M&A Playbook
Facilitate due‑diligence “cyber gates” in our M&A playbook—focusing on critical controls and residual risk aligned to the maturity and operational realities of newly acquired organizations. (We acquire and integrate 3‑12 companies a year).
Create a roadmap to recruit, retain, and grow top‑tier cyber talent, especially in cloud security, detection engineering, and operational technology environments.
What You’ll Bring
20+ years of progressive experience in technology and information security, with at least 5 in a senior leadership role – preferably at a publicly traded Fortune 500 company.
Experience in consulting, as engineering and construction mirrors professional services, and understand how the fundamentals and economics of our business work.
Proven ability to lead cybersecurity in a federated enterprise—balancing central strategy with local autonomy.
A track record of leading through influence in federated environments—your best work happens when you’re convening cross‑functional engineers to invent the solution together.
Experience designing and implementing enterprise security controls aligned to frameworks including ISO 27001 and SOC 2 Type II as well as utility and federal‑sector frameworks, including NERC CIP and CMMC. Demonstrated experience translating these frameworks into practical implementation roadmaps for Quanta and its operating companies.
Demonstrated ability to quantify investment business cases.
Hands‑on M&A security experience—leading cyber due diligence and post‑close integration for cyber; right‑sizing controls to acquired firms’ maturity and guiding them toward enterprise standards.
Exceptional communication and relationship‑building skills—you influence through credibility, not control.
A collaborative mindset: you look for ways to say “yes, if…” rather than default to “no.”
Experience building risk frameworks that bridge operations, cybersecurity, and executive oversight.
Active certifications such as CISSP, CISM, or GIAC are required.
Benefits
Medical insurance
Vision insurance
401(k)
Paid maternity leave
Paid paternity leave
Equal Opportunity Employer All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, national origin or ancestry, sex (including gender, pregnancy, sexual orientation, and/or gender identity), age, disability, genetic information, veteran status, and/or any other basis protected by applicable federal, state or local law.
We are an Equal Opportunity Employer, including disability and protected veteran status.
We prohibit all types of discrimination and are committed to providing access and equal opportunity for individuals with disabilities. For additional information or if reasonable accommodation is needed to participate in the job application, interview, or hiring processes or to perform the essential functions of a position, please contact the Company’s Human Resources department.
Seniority Level Director
Employment Type Full-time
Job Function Information Technology
Industries Construction, Utilities, and Telecommunications
#J-18808-Ljbffr
What Makes This Role Unique Federated Model, Central Impact
Our businesses operate independently—but cybersecurity is a shared responsibility. You’ll set enterprise standards and help teams across Quanta adopt and adapt them in practical ways.
Our operating units and enterprise technology teams deliver the technology that powers our business. Your team will define the frameworks, partner with architecture and engineering to build secure platforms and applications, and provide a core set of capabilities to protect the enterprise.
Growth as a Security Challenge
With constant M&A activity and digital transformation underway, you’ll play a critical role in helping the business scale securely.
What You’ll Do Understand and Prioritize Key Risks
Develop an enterprise‑wide view of the most consequential cyber and operational risks, then translate that insight into a quantifiable framework that drives clear, prioritized action and executive/board‑level accountability—from the job site to the C‑suite.
Quantify and Narrate Cyber Risk
Transform real‑time telemetry into a leadership‑ready scorecard that links cyber exposure to financial and operational impact, guiding swift, data‑driven decisions across every level of the business. Partner with Legal and Compliance to ensure Quanta is audit‑ready for evolving SEC cybersecurity disclosure rules, utility sector regulations, and insurance requirements.
Champion Enterprise Security Standards
Set a clear, business‑aligned security baseline for every operating company and inspire teams to adapt and elevate it, making the “why it matters” as compelling as the “what to do.” Define and maintain the Quanta security standards and a clear exceptions process, so every operating company understands “how secure is secure enough.”
Enable Secure Solutions
Define guardrails, reference architectures and decision records so platform and application teams can design the ‘how’ that best fits their stack.
Accelerate Next‑Gen Threat Detection & Response
Set the vision and success metrics for an automation‑first detection capability, partnering with platform engineering teams to deliver it. Leverage managed services for commodity alerting, allowing your team to focus on advanced detection logic, purple‑team experimentation, and self‑healing response pipelines. Own the enterprise cyber incident response playbook, ensuring rapid, coordinated responses to major threats. Conduct quarterly tabletop exercises with IT and business leadership to test readiness and maturity.
Build Relationships Across the Business
Work with CIOs, IT leaders, and business leaders to shape a culture of shared responsibility for cybersecurity. Influence by educating—not just enforcing. Publish a quarterly “Cyber Risk in Business Terms” scorecard that links exposure to economic impact and drive remediation planning in partnership with accountable leaders.
Embed Security into the M&A Playbook
Facilitate due‑diligence “cyber gates” in our M&A playbook—focusing on critical controls and residual risk aligned to the maturity and operational realities of newly acquired organizations. (We acquire and integrate 3‑12 companies a year).
Create a roadmap to recruit, retain, and grow top‑tier cyber talent, especially in cloud security, detection engineering, and operational technology environments.
What You’ll Bring
20+ years of progressive experience in technology and information security, with at least 5 in a senior leadership role – preferably at a publicly traded Fortune 500 company.
Experience in consulting, as engineering and construction mirrors professional services, and understand how the fundamentals and economics of our business work.
Proven ability to lead cybersecurity in a federated enterprise—balancing central strategy with local autonomy.
A track record of leading through influence in federated environments—your best work happens when you’re convening cross‑functional engineers to invent the solution together.
Experience designing and implementing enterprise security controls aligned to frameworks including ISO 27001 and SOC 2 Type II as well as utility and federal‑sector frameworks, including NERC CIP and CMMC. Demonstrated experience translating these frameworks into practical implementation roadmaps for Quanta and its operating companies.
Demonstrated ability to quantify investment business cases.
Hands‑on M&A security experience—leading cyber due diligence and post‑close integration for cyber; right‑sizing controls to acquired firms’ maturity and guiding them toward enterprise standards.
Exceptional communication and relationship‑building skills—you influence through credibility, not control.
A collaborative mindset: you look for ways to say “yes, if…” rather than default to “no.”
Experience building risk frameworks that bridge operations, cybersecurity, and executive oversight.
Active certifications such as CISSP, CISM, or GIAC are required.
Benefits
Medical insurance
Vision insurance
401(k)
Paid maternity leave
Paid paternity leave
Equal Opportunity Employer All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, national origin or ancestry, sex (including gender, pregnancy, sexual orientation, and/or gender identity), age, disability, genetic information, veteran status, and/or any other basis protected by applicable federal, state or local law.
We are an Equal Opportunity Employer, including disability and protected veteran status.
We prohibit all types of discrimination and are committed to providing access and equal opportunity for individuals with disabilities. For additional information or if reasonable accommodation is needed to participate in the job application, interview, or hiring processes or to perform the essential functions of a position, please contact the Company’s Human Resources department.
Seniority Level Director
Employment Type Full-time
Job Function Information Technology
Industries Construction, Utilities, and Telecommunications
#J-18808-Ljbffr