Job Searchi - jobSearchi.com

Job Details

ID #19990107
State Illinois
City Chicago
Job type Permanent
Salary USD $180,000 - $200,000 180000 - 200000
Source Solution Partners, Inc.
Showed 2021-09-21
Date 2021-09-01
Deadline 2021-10-31
Category Architect/engineer/CAD
Create resume

Ciso

Illinois, Chicago, 60290 Chicago USA

Vacancy expired!

CISO - Chicago, IL - Full time perm $180-200K plus 15% bonusJob OverviewOur client is looking for a Vice President, Chief Information Security Officer (CISO) who will be charged with maintaining and maturing the information security program to protect enterprise systems and assets from internal/external threats. This is a high visibility role involving routine meetings with senior business leaders and reports into the Chief Information Officer.The main objective for this position is to lead, develop and execute the vision and strategy for the enterprise cybersecurity organization while also managing the delivery of business relevant cyber security services. The CISO will manage the cybersecurity risk in alignment with overall business goals and strategy and will provide effective governance, operational efficiency, performance monitoring and measurement of risk and cyber capabilities.ResponsibilitiesStrategic Planning- As a leading strategic planner for cybersecurity, the CISO will be responsible for driving cybersecurity strategy and influencing architectural and development decisions.• Develop and execute cybersecurity strategy and roadmap to guide the ongoing direction of cybersecurity posture.• Identify talent and develop a highly qualified staff of cyber security professionals to meet organizational needs.• Understand sourcing models and leverage strategic partnerships, including the parent company and sister-company relationships to advance cyber capabilities in the most effective and efficient manner.Risk Management and Compliance- The CISO will be responsible for ensuring alignment and compliance with common cybersecurity management frameworks, regulatory requirements and industry leading practices.• Measure compliance with policy and effectiveness of cybersecurity controls as part of assessing the overall cyber security risk posture.• Ensure that cyber security legal, compliance and regulatory requirements are addressed and implemented as required.• Maintain a cyber-risk register to track and manage identified risks.• Lead the 3rd party risk management program, ensuring accurate and thoughtful responses to client questionnaires, as well as conducting risk assessments of existing and prospective suppliers and partners.• In collaboration with Legal, review and create language for contracts to ensure compliance with our minimum standards, as well as our compliance with the requirements of our customers.Proactive Leadership- The CISO will operate as an evangelist of cyber security internally and externally to develop, maintain and enhance relationships to drive consistency across the company and to implement innovative cyber security solutions designed to enable the business-• Serve as the figurehead for cyber security • Collaborate with the Chief Information Officer to ensure cybersecurity considerations are embedded into all IT initiatives.• Provide regular and meaningful reporting to executive leadership, including the Board of Directors, on cyber risks and cyber risk posture.Operations- The CISO is also responsible for coordinating the day-to-day functions of the cyber security function.• Create/implement a strategy for the deployment and development of information security technologies, policies and practices to secure protected and sensitive data and ensure information security and compliance with applicable laws and corporate requirements.• Build effective cyber security controls, programs, and capabilities to improve the cyber security posture of company and keep up with the evolving needs of the business • Identify and remediate security vulnerabilities.• Monitor threat intelligence for external risks to our operations.• Interpret standards, best practices & current risks to define corporate policies.• Track latest IT security innovations and keep abreast of latest cyber security technologies and risks.• Develop/implement business continuity plans to ensure continuous service through infrastructure/systems changes, security breach or if disaster recovery plan is triggered.• Conduct a continuous assessment of current IT security practices and systems and identify areas for improvement.• Conduct due diligence of external IT vendors to properly assess the strength and efficacy of their cyber security systems, policies, procedures and practices • Run security audits, penetration testing and conduct risk assessments.• Serve as primary control point during significant information security incidents, convening a Incident Response Team (IRT) as needed, and preparing situational reports.• Partnering with financial and legal officers and IT personnel in conducting investigations, preparing situational reports and remediation plans in connection with information security incidents and breaches.• Lead technical components of ediscovery and internal collections.• Regularly report to the Chief Information Officer and senior company leadership on the state of the IT security infrastructure, the portfolio of security projects and advising on best practices and information security strategies.• Managing relationships and liaising with external IT vendors, security experts and advisors.• Championing and educating the organization and its employees about the latest security risks, strategies and technologies.

EducationBachelor’s degree in Computer Science, Information Systems, Engineering, Business Administration or a related field is required.Experience• Minimum of 10 years of relevant work experience in cyber security policy, standards, architecture, technology and program delivery.• Prior experience in the insurance or financial services industry is preferred• Experience securing various architectures and deployment strategies from on premises data centers to managed/cloud hosting in AWS or Azure.• Experience in developing and administering information security policies and procedures in a startup like environment.Additional Requirements & Knowledge• Deep understanding of cyber security and the relationship between threat, vulnerability and information value in the context of risk management.• Strong ability to gather, analyze and interpret business drivers and develop practical security solutions that provide adequate security to support the business.• Hands on and entrepreneurial• Demonstrated ability to build effective, cohesive and collaborative management and operational teams.• Strong understanding of emerging technology and digital trends• Strong proficiency with common cyber security management frameworks, regulatory requirements, and industry leading practices, such as NIST and ISO• At least one of the following Industry-recognized information security management certifications is preferred; Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or Certified in Risk and Information Systems Control (CRISC)

Vacancy expired!

Subscribe Report job