Vacancy expired!
- Attract, develop and retain a highly talented information security team/function.
- Conduct a thorough evaluation of company security posture, identify gaps, and create/execute a comprehensive security roadmap/program.
- Assess opportunities and vulnerabilities to develop a comprehensive information security roadmap/strategy that enables and facilitates the organization's business objectives.
- Set the vison and strategic direction of the corporation’s security program and align to the appropriate best practice standards.
- Evaluate and lead appropriate new certifications such as (SOC2, HIPAA, ISO 27K, GDPR, etc.).
- Lead regular security assessments to include internal & 3rd party audits, certification, penetration testing, vulnerability management, and incident response capability testing.
- Implementation of corrective actions resulting from vulnerability/penetration testing and audits.
- Create and manage a targeted information security awareness training program for all employees, contractors.
- Ensure that security program remains continuously up-to-date to face both an ever-changing security threat landscape and evolving regulatory landscape.
- Requires a bachelor’s degree in Information Systems, IT Security, Computer Science or a related discipline or the equivalent combination of training and experience.
- 10+ years of relevant experience in the Information Technology space. 10+ years must be directly related to information security (at least five must be in a senior leadership role).
- Security/Consulting industry experience working in a customer facing role with customer relationship management at the senior level.
- Hands on experience leading incident response activities for security events.
- Experience with security on cloud platforms. This includes a deep understanding of offerings from key cloud providers (i.e. AWS, Azure).
- Experience in the evaluation and implementation of industry standard enterprise offerings from leading information security platforms such as Crowdstrike, Carbon Black, Okta, Forescout, Elastic, Rapid 7, etc.
- Expertise in a variety of multifactor authentication platforms and other relevant access management technologies.
- Significant experience in the application and integration of globally accepted security standards (GDPR, FISMA, NIST 800-53, ISO/IEC 27001, ISO 27018, and GDPR etc.).
- Professional security management certification is required. Acceptable certifications include: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials.
Vacancy expired!