Lead and mentor the assigned information technology team, including the information security function.
Manage the day-to-day operation, and governance of S&C’s ISO/IEC 27001 Information Security Management System (ISMS).
Develop, monitor, and report on key performance indicators (KPIs) and risk-based metrics.
Provide recommendations for key results, initiatives, and individual goals based on gaps in ISO 27001 controls and CIS benchmarks.
Collaborate with leadership, IT teams, and S&C’s functional areas to reduce information technology risk.
Maintain thorough, organized, current, and accurate records and documentation.
Lead and participate in IT and cybersecurity projects and initiatives.

Requirements

Bachelor's degree in Information Systems, Computer Science, Business, or equivalent experience.
5+ years of experience in Information Security or a related role.
Demonstrated experience managing a security team and/or security projects.
Sound knowledge of information security and compliance principles and best practices.
Experience in using and administering OneTrust, M365 PurView, or similar platforms is preferred.
Practical knowledge of ISO 27001:2022 and related standards.
Ability to collaborate effectively with cross-functional teams and external vendors.
Possess a collaborative and risk-based mindset and great communication skills.
Ability to travel as required.

Benefits

Competitive and equitable compensation
Eligibility for annual incentive plan (AIP)

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

ISO 27001information securityrisk managementkey performance indicatorsCIS benchmarkssecurity team managementsecurity project managementcompliance principlesinformation technology risk

Soft Skills

leadershipmentoringcollaborationcommunicationorganizational skillsrisk-based mindset