Head of Security

This is a remote position.

Director, IT Security (CISO)

Job Title: Director of Cybersecurity Operations

·         Job Summary: Oversee and coordinate cybersecurity efforts across the company in collaboration with various other departments. These efforts include security initiatives, utilizing threat intelligence, operationalize security policy/processes/procedures and standards, and performing audit reviews. Provides strong, knowledgeable cyber-security leadership and able to provide vision, strategy, broad-based planning, and hands-on responsibility.

Job Duties:

·         Responsible for establishing and maintaining an enterprise level strategy and program ensuring that our physical and digital information assets and technologies are adequately protected.

·         Accountable for the overall Information Security and Risk Management posture of the company.

·         Establish strategic direction, goals, mission, objectives, metrics, and key performance indicators consistent with a mature Cybersecurity Program.

·         Responsible for the strategic development and delivery of a comprehensive enterprise-wide cybersecurity program, including policies, standards, and procedures; confers with key management personnel, data custodians and business units in the development of such policies; and oversees the dissemination of company-wide distribution of information security policies, standards, and procedures.

·         Develop, implement, and oversee a comprehensive cybersecurity risk assessment framework that regularly assesses and reports to the senior leadership team.

·         Develop and/or maintain a cybersecurity program that aligns with industry best practices to protect the confidentiality, integrity, and availability.

·         Develop and drive security standards across the company.

·         Develop and implement mature security focused process integration points into company processes to ensure risk is identified, remediated and/or accepted.

Competencies:

·         Ability to foster teamwork.

·         Ability to develop and mentor others.

·         Problem management.

·         Strong leadership and managerial skills.

·         Ability to drive strategic direction.

·         Ability to build collaborative and productive relationships.

·         Ability to influence others to drive decision making.

·         Customer service orientated and passion for high satisfaction levels.

·         Strategic thinking skills.

·         Technical expertise.

·         Ability to meet deadlines utilizing project management skills.

Experience and Education:

·         Bachelor’s degree in Computer Science or Information Systems Management or equivalent.

·         10+ years in Information Technology or related field

·         5+ years in a senior Security IT role.

·         Hands-on experience and extensive knowledge of information security technology.

·         Strong subject matter experience in cloud and on premises environments/technologies/security, application security, vulnerability testing and development of a risk appetite.

·         Risk management experience with proven ability to effectively apply risk principles to challenging business situations.

·         Review Threat and Vulnerability reports and create detailed action plans to address risks.

·         CISSP, CISM, or other equivalent security certification required.

·         CRISC, CISA, CISM preferred.

·         ITIL Certification preferred.

·         Hands-on Technical Experience with Telecommunications, Networking, Security Solutions (Firewalls, IDS/ IPS, SIEM, Vulnerability Assessment Tools), Access Control Systems, Cryptography, Physical Security Systems, and Secure SDLC Methodologies.

·         Ability to maintain the highest standard of confidentiality is required with zero trust and tolerance.

·         Experience performing multifaceted projects in conjunction with regular position related activities.