Responsibilities of the Role

• Assist the CISO in developing and implementing the overall security strategy
• Lead long-term planning efforts to ensure the security organization evolves with the threat landscape and business needs
• Collaborate with leadership to ensure security initiatives support overall business goals
• Identify emerging security trends and technologies, assessing their potential impact on the organization
• Develop and implement change management strategies to support the adoption of new security initiatives across the organization
• Lead cultural transformation efforts to cultivate a security-first mindset among all employees
• Collaborate with business units to integrate security considerations into business processes and decision-making
• Establish governance models that balance security requirements with business agility
• Develop metrics and KPIs to measure the effectiveness of security integration efforts
• Assess and redesign the security organization structure to optimize efficiency and effectiveness
• Build, lead, and mentor a high-performing information security team
• Define roles, responsibilities, and reporting lines within the security team and across relevant business units
• Develop career paths and growth opportunities for security professionals within the organization
• Foster a culture of continuous learning and improvement within the security team
• Build strong relationships with C-suite executives, board members, and key business leaders
• Communicate security concepts and initiatives effectively to both technical and non-technical audiences
• Facilitate cross-functional collaboration to drive security improvements
• Oversee the day-to-day operations of the information security team
• Develop, implement, and maintain security policies, procedures, and standards
• Manage security incidents and lead incident response efforts
• Conduct regular risk assessments and implement risk mitigation strategies
• Ensure compliance with relevant industry standards and regulatory requirements
• Develop and maintain a robust security metrics program to measure and report on security posture
• Evaluate and recommend security technologies and solutions
• Oversee the implementation and maintenance of security controls across the organization's IT infrastructure
• Collaborate with IT teams to ensure security is integrated into all aspects of the technology stack

Required Qualifications:

• 10+ years of experience in information security, with at least 5 years in a senior leadership role
• Deep understanding of information security principles, best practices, and emerging trends
• Strong knowledge of relevant security frameworks (e.g., NIST, ISO 27001) and regulatory requirements
• Experience in developing and implementing information security strategies and programs
• Proven track record in managing security operations and incident response
• Excellent leadership, communication, and interpersonal skills
• Relevant certifications such as CISSP, CISM, or equivalent
• Bachelor's degree in Computer Science, Information Security, or related field

Preferred Qualifications:

• Master's degree preferred
• Strategic thinker with the ability to align security initiatives with business objectives
• Strong decision-maker, capable of making tough calls under pressure
• Change agent comfortable with driving transformation in complex environments
• Collaborative leader who can work effectively across all levels of the organization
• Excellent communicator, able to articulate complex security concepts to diverse audiences
• Adaptable and resilient, with the ability to thrive in a fast-paced, changing environment
• Resilient problem-solver capable of navigating organizational challenges
• Continuous learner committed to staying ahead of emerging security trends

NA