We are seeking a strategic and experienced Chief Information Security Officer (CISO) to lead our information security initiatives and protect our organization’s assets from cyber threats. The CISO will be responsible for developing and implementing comprehensive security policies, managing security teams, and ensuring compliance with industry standards and regulations. This role requires a proactive leader with a deep understanding of cybersecurity, risk management, and information technology.

Responsibilities:

• Develop and implement a robust information security strategy aligned with the organization’s objectives and risk tolerance
• Oversee the design and implementation of security architectures, policies, and procedures to protect sensitive information and systems
• Lead and manage the information security team, providing guidance and support in incident response, threat detection, and vulnerability management
• Conduct regular risk assessments and audits to identify security gaps and ensure compliance with applicable laws and regulations
• Collaborate with IT and business leaders to integrate security best practices into all aspects of the organization’s operations
• Establish and maintain a security awareness program to educate employees on security risks and best practices
• Monitor security incidents, investigate breaches, and implement corrective actions to prevent future occurrences
• Liaise with external stakeholders, including regulatory agencies, law enforcement, and vendors, to address security concerns and incidents
• Stay informed about emerging threats and trends in cybersecurity, adjusting strategies as necessary to mitigate risks
• Prepare and present reports on security posture, incidents, and compliance to the executive team and board of directors

Requirements:

• Bachelor’s degree in computer science, information technology, cybersecurity, or a related field (Master’s degree preferred)
• 10+ years of experience in information security, with at least 5 years in a leadership role
• Strong understanding of information security frameworks, such as NIST, ISO 27001, and PCI DSS
• Relevant certifications, such as CISSP, CISM, or CISA, are highly desirable
• Proven experience in risk management, incident response, and vulnerability assessment
• Excellent communication and interpersonal skills, with the ability to present complex information to diverse audiences
• Strong analytical and problem-solving skills, with a proactive approach to identifying and mitigating security risks
• Ability to work collaboratively across departments and lead cross-functional teams

Work Environment:

• Office-based, with potential for remote work depending on company policies
• Fast-paced and dynamic environment that requires adaptability to evolving threats and technologies
• Regular interaction with executive leadership and cross-departmental teams