• Advises senior management on risk levels and security posture.
• Advises and assists client internal resources in defining and managing a company-wide, information security and risk management process
• Assists clients in the development of long-term security and compliance goals, articulate strategies, define metrics, and provide necessary updates to executive leadership and Board of Directors, as requested by the client
• Communicates the value of information security throughout all levels of the organization stakeholders
• Advises cybersecurity requirements to be integrated into the continuity planning for that system and/or organization(s)
• Facilitates overall enterprise information security architecture with the organization’s overall security strategy
• Evaluates cost/benefit, economic, and risk analysis as defined by contract with the client(s)
• Advises senior management (e.g., CIO) on cost/benefit analysis of information security programs, policies, processes, systems, and elements
• Identifies alternative information security strategies to address organizational security objectives while supporting business goals
• Evolves and drives Client’s information security & privacy strategy covering products (on-prem & cloud), corporate IT systems and third-party SaaS applications
• Provides a visible face of our client’s security and privacy as a highly credible voice working with customers, partners, and other stakeholders
• Promotes awareness of security issues among management and ensure sound security principles are reflected in the organization's vision and goals
• Ensures projects stay within scope, schedule, and budget
• Manages project communications, negotiations, and solutions
• Addresses client feedback as directed by Sr. Leadership
• Is open to new ideas and ensures best practices are implemented
• Communicates departmental goals and ensure individual goals align with the overall goals
• Ensures adherence to business processes to ensure operational efficiency and help identify infrastructure requirements to meet the business needs
• Tracks lesson learned from previous projects and ensure playbooks and training materials are reviewed and updated regularly
• Manages project assignment and hand off processes
• Ensures client satisfaction among internal and external stakeholders
• Updates metrics indicating client satisfaction among internal and external stakeholders
• Provides oversight of client satisfaction among internal and external stakeholders
• Monitors and reports metrics indicating client satisfaction among internal and external stakeholders
• Supports the development of strategic partnerships to maintain profitable and long-lasting relationships with key clients
• May perform other duties as assigned by management.

Required Qualifications

• Bachelor's Degree and 10+ years of Cyber security experience or Master's Degree and 8+ years related experience or J.D. and 6+ years related experience
• 5 years of leadership experience, preferably at a senior level including experience as a CISO
• Subject matter expert on the threat landscape and state-of-the-art protection strategies and products; subject matter expert on product security and development practices and features for developing secure software and cloud services
• Proven experience building successful security, risk, and compliance programs
• Current experience creating or adopting new strategies that take into consideration the changing security landscape
• Subject matter expert on enterprise security controls and control frameworks, particularly CIS Critical Security Controls and other NIST-based control frameworks
• Certification as a Certified Information Security Systems Security Professional (CISSP) or CRISC, preferred. Information Systems Security Management Professional (ISSMP) or CISM, preferred.

NA