Director of Cybersecurity & Information Technology

The Director of Cybersecurity and Information Technology will report directly to the CFO and will be responsible for establishing, building, and implementing all Cybersecurity and Information Technology practices, policies, and support across Fervo

Fervo’s Mission is to use innovation in geoscience to accelerate the world’s transition to sustainable energy. To accomplish that goal, Fervo has developed groundbreaking technology solutions that have advanced the state-of-the-art of geothermal energy decades ahead of schedule, including the world’s most successful commercial enhanced geothermal system completed in 2023. Fervo has raised over $400 million from leading investors and has secured a multi-billion dollar project pipeline to meet the world’s growing need for 24/7 carbon free energy. Join us and work alongside world-class engineers, researchers, investors, and developers in making geothermal a key pillar of our climate-friendly energy future.

Description

The Director of Cybersecurity and Information Technology will report directly to the CFO and will be responsible for establishing, building, and implementing all Cybersecurity and Information Technology practices, policies, and support across Fervo. This position will be the first cybersecurity/IT hire at Fervo and will be expected to grow a multi-faceted team capable of building world-class cybersecurity practices to protect Fervo’s assets, operations, and people while also providing IT support to users across the Company.

The successful candidate will have a demonstrated ability to i) create and communicate a vision and strategy for cybersecurity and information technology, ii) build a team, and iii) effect organizational change in a high-growth, fast-paced environment. This role requires a true self-starter with the drive to turn ambiguity into action.  

Responsibilities

  • Develop & Implement IT and Cybersecurity Strategies: Analyze, assess, and prioritize Fervo’s immediate, medium, and long-term needs pertaining to cybersecurity, asset connectivity, and information technology support.
  • Manage Security Operations: Supervise security operations, including incident response, vulnerability assessments, and security audits to ensure timely detection and resolution of security issues.
  • Lead the IT Function: Build and manage a team capable of implementing and managing a broad set of services across the company, including cybersecurity, NERC compliance, operational support, end-user support, protection of critical infrastructure, and other information technology support. Serve as the senior authority in the organization, managing a team of technical experts that advise on all matters related to cybersecurity and information technology.
  • Oversee network and system security: Direct the planning, implementation, and monitoring of all information technology systems and processes, including both hardware and applications.
  • Lead Security Awareness Initiatives: Assist with training and spreading technology risk and control awareness within the company while building strong relationships and becoming a trusted risk and controls ambassador. Support requests from control functions such as internal and external IT audit in line with regulatory expectations as well as company-wide standards.
  • Helpdesk Management: Oversee support to end users and ensure that service level objectives are met.

Qualifications

  • 10+ years of relevant experience in risk management, cybersecurity, and/or information technology.
  • Bachelor and/or master’s degree in computer science, programming, engineering, or a relevant technical field
  • Broad and deep understanding of technical security concepts and familiarity with related technologies and infrastructure
  • Proficiency in information security domains, including policies and standards, risk and control assessments (including pen tests, vulnerability scans, etc.), disaster recovery plans, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management, and data protection.
  • Expert level experience of cyber security; ability to set and drive the company’s strategic direction to deliver technology that meets internal and external needs, including protecting critical networks and data and preventing, detecting, and mitigating cyber-attacks and response and recovery planning following an incident
  • Experience leveraging IT risk frameworks such as COBIT5, COSO, ISO27001, NIST and/or data management frameworks i.e., DCAM/CMM-DMM
  • Ability to stay up to date with the latest security trends and best practices and provide training to staff, ensuring continuing education.
  • Ability to perform root cause analyses of incidents and to develop frameworks to prevent similar incidents in the future.
  • Strong written and verbal communication skills with ability to effectively communicate and present security risk concepts with non-technical stakeholders and cross-functional teams
  • High degree of initiative, dependability, and ability to work with little supervision

About Fervo Energy

Fervo Energy commercializes technology to own, develop, and operate geothermal assets as the dispatchable foundation to a 100% clean energy future. As a 24/7, reliable clean energy resource, geothermal energy has a major role to play in the future electric grid and Fervo Energy’s key innovations bring a full suite of modern technology to make geothermal cost competitive. Fervo’s innovations include technologies such as advanced computational models, horizontal drilling, and distributed fiber optic sensing that we have developed with partners including Schlumberger, ARPA-E, and the Lawrence Berkeley National Lab. Fervo is supported through Cyclotron Road, the Department of Energy, Stanford University, and Breakthrough Energy Ventures.

Fervo Energy is an Equal Opportunity Employer and does not discriminate on the basis of race, color, creed, gender, religion, marital status, registered domestic partner status, age, national origin, ancestry, physical or mental disability, medical condition, sex, genetic information, sexual orientation, military and veteran status or any other consideration made unlawful by federal, state, or local laws. It also prohibits unlawful discrimination based on the perception that anyone has any of those characteristics or is associated with a person who has or is perceived as having any of those characteristics.