VP Information Security

Recruiter
Gradstem
Location
Los Angeles
Salary
Competitive
Posted
30 Sep 2024
Closes
28 Oct 2024
Employer Sector
Technology, IT & Telecoms
Contract Type
Permanent
Hours
Full Time

Responsibilities:

  1. Develop, maintain, and implement a comprehensive company–wide cybersecurity strategy that aligns with the company's business objectives and industry best practices.
  2. Drive the product and enterprise security to protect services and presence, customer data, and corporate data.
  3. Adopt a hands–on approach to app security and enterprise security, delegating when necessary.
  4. Oversee security governance, risk management, and compliance programs to ensure adherence to relevant regulations and standards.
  5. Ensure compliance for SOC 2/3, State/Federal RAMP authorizations, along with other compliance standards as required.
  6. Develop, implement, and maintain company–wide information security policies and procedures taking into account security operations, applications security, and information security.
  7. Ensure the highest level of data security and privacy for customer and corporate data, including encryption, access controls, and data classification.
  8. Develop and maintain a robust security architecture that encompasses network security, application security, cloud security, and endpoint protection.
  9. Manage relationships with vendors, external partners, and stakeholders to ensure the security of third–party solutions and services.
  10. Communicate effectively with other executives and board members about information security–related matters.
  11. Recruit, manage, and mentor a high–performing information security team. Promote a culture of continuous learning and adaptation to emerging security threats and technologies.

Profiencies:

  1. Define and effectively deliver the cybersecurity roadmap aligned with organizational goals and industry best practices.
  2. Provide leadership and guidance to the cybersecurity team, ensuring a proactive and risk–based approach to cybersecurity.
  3. Conduct regular risk assessments to identify potential threats and vulnerabilities.
  4. Implement and maintain effective risk mitigation strategies to protect sensitive information.
  5. Design, implement, and maintain a robust cybersecurity architecture that aligns with industry standards and regulatory requirements.
  6. Oversee the deployment and management of security and compliance technologies, ensuring optimal performance and effectiveness.
  7. Develop and maintain an incident response plan to address cybersecurity incidents promptly and effectively.
  8. Lead and coordinate response efforts during cybersecurity incidents, working closely with relevant stakeholders.
  9. Implement a comprehensive security awareness and training program for employees, ensuring a strong cybersecurity culture across the organization.
  10. Evaluate third–party vendors and their cybersecurity practices to mitigate potential risks to the organization.

Education and Experience:

  1. 15 years of experience with 4 years of experience in a lead role with increasing levels of responsibilities.
  2. Experience scaling a security program in a fast–paced environment.
  3. Ideal experience includes working at a start–up or a technology company that has gone through a period of fast growth.
  4. Experience in developing security functions and maturity in a fast–paced global organization, mitigating critical security risks and implementing security technologies.
  5. Strong knowledge in the area of operational risk management in the financial industry.
  6. Experience leading security for a global enterprise company.

Salary:

$165,500 – $197,300/Annually, depending upon experience and location.

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities.