Houghton Mifflin Harcourt: Director, Information Security
125 High Street
Boston, MA 02110


Employee Testimonials

David - Employee Testimonial
Jeanette - Employee Testimonial
Chris - Employee Testimonial

The Information Technology organization is transforming to realize our mission: Become a leader in HMH’s digital transformation, and as a strategic partner, innovate and deliver highest value, competitive advantage solutions across all corporate and business functions. Our ambition is to be a digital leader through innovation and develop and deliver leading edge technology such as robotic process automation and artificial intelligence to solve some of HMH’s greatest operational business challenges.  Our professionals will have business relevant skills to connect our HMH partners to technologies that propel the businesses to deliver the greatest value for HMH and our customers.  We are building a team of IT professionals with an insatiable appetite to learn, a relentless focus on customer service, a technological curiosity toward future possibilities, and a creativity in solving business challenges with leading technologies.  Our team will find ways to work together, create a sense of community where it’s safe to take risks and learn together, develop our careers, and all have an opportunity to work on new technologies.  We will work together, learn together and have fun together. As a team, we will lead HMH’s digital transformation.


The Opportunity – Director, Information Security

Our security team works to provide continuous improvements through prevention, detection, processes, and policies for customer and company information to maintain privacy and security. The Director will report to HMH’s Chief Information Security Office and will work closely with the other leads from Security, IT, legal and other business units to implement practices that meet defined policies and standards for information security.  The ideal candidate will have a strong background and technical knowledge of information security and the capability to understand complex business and technical processes.


Duties & Responsibilities:

  • Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization.
  • Cross-department collaboration and communication to ensure appropriate security processes, procedures and tools are installed, monitored, and effectively operating and alerting.
  • Strategic, planning, and operational excellence through continuous improvement and automation.
  • Manages service levels, control effectiveness, control failure remediation, operational automation and oversight of information security team
  • Oversee the administration of all information security technology platforms, ensuring that technologies are optimally configured and maintained to provide maximum uptime and protection to the organizations’ information systems.
  • Play a primary role in the selection of new information security technologies.
  • Conduct regular technical risk assessments/audits of systems and infrastructure.
  • Oversee and directly participate in the installation, configuration, and monitoring of new information security technologies.
  • Manage the IT security organization, consisting of direct reports and indirect reports including hiring, training, staff development, performance management and annual performance review.
  • Liaise with corporate compliance, audit, legal and HR management teams as required, including overseeing annual audits and reporting as required.
  • Develop, maintain and publish up-to-date security policies, standards and guidelines, and oversee training and dissemination of security policies and practices.
  • Provide technical leadership for all information security platforms.
  • Serve as the escalation point for technical issues related to information security platforms.
  • Take the lead role in responding to and containing information security related incidents.
  • Take a lead role in developing and managing information security programs, including, but not limited to; information security awareness, vulnerability management, vendor risk management and risk management.
  • Conduct regular technical risk assessments/audits of systems and infrastructure.
  • Engage proactively in risk management activities.
  • Assist in the development and knowledge transfer to IT team members, as well as other enterprise groups.
  • Promote a culture of information security across all business units.


Required Education and Experience

  • Bachelor’s or Master’s Degree in Information Technology, Computer Science, Engineering or related field.
  • CISA, CISM, CISSP or similar certification required.
  • In-depth knowledge of applications, systems, network and data security, telecommunications, security operations, and associated hardware, software and protocols.
  • 10+ years of full time experience in dedicated, technical information security roles.


Additional Technical Requirements

  • Background in information technology in an area such as; networking, programming, database management or systems administration.
  • Strong knowledge of information security principles and practices.
  • Experience with incident response and analysis, preferably in a leadership role.
  • Experience performing packet analysis.
  • Strong knowledge of IDS/IPS, firewalls, proxies and other network security technologies.
  • Strong knowledge of host-based information security technologies.
  • Strong knowledge of Incident Analysis and response concepts and techniques.
  • Strong knowledge of security implications involving a variety of technologies including but not limited to; Microsoft, Cisco, Unix/Linux, EMC, and other market leaders in technology solutions, including mobile devices.


Physical Requirements:

  • Might be in a stationary position for a considerable time (sitting and/or standing)
  • The person in this position needs to move about inside office to access file cabinets, office machinery, etc
  • Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine, and computer printer
  • Must be able to collaborate with colleagues via face to face, conference calls, and online meetings


Houghton Mifflin Harcourt (NASDAQ:HMHC) is a global learning company dedicated to changing people’s lives by fostering passionate, curious learners. As a leading provider of pre-K–12 education content, services, and cutting-edge technology solutions across a variety of media, HMH enables learning in a changing landscape. HMH is uniquely positioned to create engaging and effective educational content and experiences from early childhood to beyond the classroom.  HMH serves more than 50 million students in over 150 countries worldwide, while its award-winning children's books, novels, non-fiction, and reference titles are enjoyed by readers throughout the world.

For more information, visit http://careers.hmhco.com  

Houghton Mifflin Harcourt is an equal employment opportunity employer and participates in E-Verify. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of gender, race/ethnicity, gender identity, sexual orientation, protected veteran status, disability, or other protected group status.


Employee Testimonials

David - Employee Testimonial


"Working at HMH is interesting, challenging, and gratifying at the same time. The people I interact with daily are dedicated professionals. At HMH, our main focus is providing meaningful content to educate students of all ages. Who can argue with that?! I'm proud to be part of HMH and am excited about the future of our company."

Jeanette - Employee Testimonial


"I've stayed at HMH 13+ years-my longest tenure at any company in my life-for two main reasons: 1) the amazing products and services we provide to help educate, inform, and entertain children and adults, and 2) the people who work here are passionate about what they do, interesting, collaborative, and all around good people."

Chris - Employee Testimonial


"There are 2 major benefits to working within the HMH community. First, the level of support during on-boarding is phenomenal. There are so many people and resources available to help you be successful as soon as possible. Second, HMH wants you to grow. Consequently, there are real opportunities to learn, to explore new challenges, and advance. My first 10 months on the job have been fulfilling and I feel as though I'm contributing significantly, with a bright future ahead."