currently seeking a qualified senior-level executive to join our team as Chief Information Security Officer (CISO). The Chief Information Security Officer (CISO) will oversee our company's information, cyber, and technology security and will have end to end full responsibility developing, implementing, and enforcing security policies, procedures, and protocols to protect critical data.
As CISO You will work closely with our development and operations teams to identify, mitigate, and manage security risks and threats.
Responsibilities
The role will be reporting to VP, IT & Programs and will manage a team of Cyber Security Specialists, GRC Specialists and an Application Security Engineer and will be responsible for Corporate IT, Governance, Risk and Compliance, Product security (production) and Development security.
Your key responsibilities will include:
Build and execute the companys security, risk, and compliance strategy and roadmap.
Establish and maintain policies, procedures and protocols that enable our security and IT Compliance strategy.
Developing and implementing a comprehensive information security program that protects the company's data, systems, and networks.
Assessing and managing risks associated with the company's products, services, and operations.
Own day-to-day security operations, incident response, incident readiness, and business continuity. Identifying and addressing vulnerabilities in our infrastructure and applications.
Conducting regular security assessments and audits.
Oversee the evaluation, selection, and implementation of vendor services and tools that support information security and compliance.
Developing and delivering security training programs to educate employees on security best practices.
Staying up to date with the latest security trends, technologies, and best practices.
Provide leadership to the enterprise's information security organization.
Partner with business stakeholders across the company to raise awareness of risk management concerns. And lead security awareness training, information, and education to employees, contractors, and partners
Serve as Subject Matter Expert to internal and external business professionals to ensure alignment with strategies and roadmap.
Collaborate with external security experts and stakeholders.
Assist with the overall business technology planning, providing current knowledge and future vision of technology and systems.
Lead local and global Governance, Risk, and Compliance initiatives and activities.
Requirements: Minimum of 10 years of experience in information security, with at least 5 years in a leadership role.
Served as a trusted advisor to management and in the development and implementation of information security effective processes and methodologies.
Strong knowledge of security and control frameworks and standards, such as NIST, ISO, SOC, HIPPA, HITRUST, FedRAMP, GDPR or similar frameworks - their use and assessment
Excellent communication, interpersonal, and leadership skills, with the ability to interact with staff at all levels to create and maintain a security mindset across the company.
Experience working with cloud-based platforms, particularly AZURE & AWS.
Broad exposure to a range of cloud security and monitoring technologies, including WAF, DLP, IDS/IPS, IdAM, Certificate Management, SIEM, Endpoint Protection, Anti-malware, patch, and vulnerability management.
General Experience in the global technology sector required (SAAS or Apps experience preferred)
Professional security management certification, such as CISSP, CISM, or CISA.
Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams.
Excellent verbal and written English communication skills.
Strong project management skills.
Ability to think creatively, make data-driven decisions, and work effectively across different teams to get things done.
This position is open to all candidates.