The Chief Information Security Officer (CISO) is responsible for shaping and implementing our cybersecurity vision & strategy. This role manages the enterprise’s information security program, identifies, and evaluates IT and cybersecurity risks, and ensures the protection of information assets and associated technology.
Requirements
- Developing, implementing, and monitoring a strategic, comprehensive enterprise information security and IT risk management program.
- Developing and enhancing an information security management framework.
- Providing leadership to the enterprise’s information security organization.
- Develop, mentor, and manage a motivated staff of information security professionals, including hiring, training, development, and performance management.
- Collaborate with the CIO, executive leadership & IT business partners to align security initiatives with business objectives.
- Lead the secure adoption and integration of emerging technologies, including artificial intelligence (AI), machine learning (ML), and automation, to enhance threat detection, response, and operational efficiency.
- Develop and maintain a comprehensive metrics and reporting framework for Board-level visibility into the effectiveness of the information security program.
- Maintain relationships and connectivity with industry peers, relevant threat intelligence sources, and regulatory agencies to collaborate and stay abreast of cyber events or topics.
- Identify, assess, and prioritize information security risks.
- Implement effective risk management strategies and controls to mitigate potential threats.
- Conduct routine security assessments and audits to identify vulnerabilities.
- Implement corrective actions to address identified weaknesses.
- Direct the implementation of security automation and orchestration initiatives to streamline incident response, vulnerability management, and compliance monitoring.
- Design, implement, and maintain a robust and scalable information security architecture, including policies, tools, and governance.
- Manage and contain information security incidents and events to protect corporate IT assets, intellectual property, regulated data, and the company's reputation.
- Develop and maintain an incident response plan to address security incidents promptly and efficiently.
- Coordinates the development and implementation of incident response plans and procedures to ensure that business-critical services are recovered in the event of a security event;
Benefits
- Generous Paid Time Off
- 401k Matching
- Retirement Plan
- Bonus
