Director, Information Security
The Investment Diversity Exchange (TIDE)
CloudCyber Security
Director, Information Security
CCS
full-time
Posted on:
Origin: • 🇺🇸 United States
Visit company websiteSalary
💰 $149,100 - $248,500 per year
Job Level
Lead
Tech Stack
CloudCyber Security
About the role
- Drive deployment and adoption of cybersecurity operations, tooling configurations, security architecture patterns, threat modeling, DevSecOps program and community, secure CI/CD, data protection, third party penetration testing, and vulnerability management
- Identify security trends to achieve and maintain a holistic security posture, including risk analysis, security architecture and design, and systems security engineering
- Manage daily operational integration between CCS Technology/Engineering teams and the CCS MDR Vendor; produce weekly cybersecurity activity reports and drive technology configuration updates
- Ensure ongoing protection of confidential data including classification, access controls, encryption, key management, storage and resource allocation
- Establish and lead a technical/engineering DevSecOps Champions program and Community, including training and offensive testing
- Establish norms for security architecture and implementation pattern authorship and reuse across engineering
- Define recurring and long-range security and compliance goals, KPIs, metrics, reporting mechanisms, maturity models and roadmaps for program improvements
- Liaise with business, technology and product engineering to influence adoption of enterprise-wide security architecture
- Maintain compliance with CCS policies, procedures and mission; fulfill additional duties to achieve operational and financial success
- Uphold responsibilities relative to separation of duties for applicable processes and procedures
Requirements
- Minimum 10 years of progressive experience performing technology and security related duties with at least 4 of the years in cybersecurity and systems security
- Ability to communicate with and influence all levels within a dynamic fast past organization
- Demonstrated experience in managing a team, as well as, coaching and motivating employees
- Knowledge of applicable NIST, ISO, HIPAA, SOC, HITRUST, CIS and data privacy practices and laws
- Strong leadership skills and excellent cross functional relationship building skills
- Strong interpersonal and oral communication skills, highly self-motivated and directed
- Experience in a national or international company with a geographically dispersed workforce
- Knowledge of State and Federal laws governing public companies as related to Information Security
- Knowledge of current landscape and future trends in information security, compliance, and risk management
- Familiarity with cloud security alliance preferred
- CISSP, CISA, OSCP or other information security certifications are preferred
- Bachelor’s degree in Information Technology related field and or equivalent work experience required
- Adhere to all confidentiality and HIPAA requirements
- Willingness to travel locally less than 5% for training purposes
