Chief Information Security Officer (CISO)

Austin, TX


Apply Save

Type: Direct-Hire

Category: Information Technology

Salary: 195,000.00

Reference ID: 10022221

Shortcut: http://addisongroup.gosnaphop.com/EmeAPm


Chief Information Security Officer (CISO)


Reporting to the CIO, the Chief Information Security Officer (CISO) is a key role on the

leadership team of the IT department. This position is responsible for the security

of data and information assets. This role has purview over the operational day-to-day measures used to secure data, applications and infrastructure. This role also owns the strategic

initiatives undertaken to continually enhance information security posture.

The CISO will be responsible and accountable for the successful implementation of

well-defined security related projects, and the operational practices related to

information security.

Description of Duties and Tasks


1. Leading and successfully completing projects aimed at improving

security posture with minimal supervision. Success means full scope of work

completed on time, within budget and aligned with established acceptance criteria.

2. Building out and maintaining an information security team that is able to satisfy the

cybersecurity needs

3. Mitigating risks associated with data breaches and data leaks.

4. Establishing, maintaining and continuously testing infrastructure aimed at

operational recovery from outages related to cybersecurity incidents.

5. Continual testing of the environment for security vulnerabilities.

6. Staying current on risks and trends in the world of cybersecurity and reporting on

such to the leadership team.

7. Providing overall day-to-day direction to a team of information security

professionals and 3rd party providers.

8. Contributing to the development of the technology roadmap.

9. Partnering with peers, both within and outside of the IT department to accomplish

shared goals.

10. Defining goals for the teams reporting to the CISO based on the goals of the

broader IT organization.

11. Ensuring team goals are met and work is successfully completed (teams are meeting

established operational targets)

12. Defining the operating model for the information security team using the ITIL

framework and ITSM tools.

13. Reporting data in various formats showing the performance of the information

security team and making recommendations for changes/improvements as needed

to enhance performance.

14. Providing leadership and coaching for InfoSec team members as needed.

15. Establishing and managing relationships with 3rd party product and service

providers as needed to accomplish defined goals.

16. Acting as technical sponsor for all projects within your areas of responsibility.

17. Ensuring information security project requirements, scope, budgets and timelines

are well-defined.

18. Ensuring security projects are well-managed and are being executed as per

established expectations.

19. Administrative aspects of people management for the InfoSec team including, but

not limited to absence approval, performance management, hiring and termination.

20. Managing the operating budget for the InfoSec team as well as budgets for

cybersecurity related projects.

21. Establishing and/or maturing formal standards and practices in the following areas:

a. Identity & Access Management (IAM)

b. Secure data capture

c. Secure data storage, transfer and retrieval

d. Data security policy development, training and risk management

22. Other related duties as assigned.

Knowledge


 Strong working knowledge of various data security frameworks, including NIST, ISO

and SOC.

 Working knowledge of a wide range of technologies and best practices in securing

them, including working knowledge of key concepts in:

a. Database encryption

b. Integration security

c. Server security and patch management

d. Firewalls and network security

e. Application security

f. Mitigating common infrastructure vulnerabilities

 Expert knowledge of the key concepts in user and identity access management.

 Working knowledge of security governance risk and compliance (GRC).

 Working knowledge of the concepts of data privacy regulations, including FERPA

requirements or similar regulated data classifications.

 Knowledge of best practices in security training and awareness.

 Strong knowledge of tools and techniques for data security and data recovery.

 Working knowledge of technology budget planning and budget management

concepts is critical.

 Knowledge of standard accounting practices.

 Knowledge of formal PMI-based project management practices.

 Knowledge of ITIL-based IT Service Management (ITSM) concepts.

Skills


 Extremely strong people management skills are required

 Demonstrated expertise in IT project planning, development and implementation.

Must be able to own multiple initiatives as a project sponsor and see them through

to completion.

 Highly skilled at vulnerability assessment, testing and reporting.

 Managing external partners in the completion of project work as well as outsourced

operational work.

 Strong business and financial acumen.

 Demonstrated expertise is various aspects of data security including access

management, data obfuscation and data breach avoidance.

 Excellent analytical, conceptual thinking and strategic planning skills.

 Influencing skill, including the ability to show the business value of technical

initiatives or extrapolate conceptual technical solutions for business problems such

that non-technical audiences can see that value.

 Must be a self-starter who can not only operate with minimal direction, but who

can also bring new ideas to the table and successfully lead and complete approved

initiatives with minimal supervision.

 Maintaining an established work schedule.

 Effectively using interpersonal and communications skills.

 Effectively using organizational and planning skills with attention to detail and

follow-through.

 Maintaining confidentiality of work-related information and materials.

 Establishing and maintaining effective working relationships, including the ability to

coordinate the work of others.

Required Work Experience

 7+ years of experience in Information Security roles of progressively increasing

responsibility.

 4+ years of related work experience leading a Cybersecurity organization.

 3+ years experience in a technology leadership role where both project and

operational budgeting was a key component of the job.



Required Education

 Bachelor's degree

 Experience cannot be substituted for required, applicable educational level.

  • Deputy CIo

    Austin, TX

    Deputy CIO Austin TX Hybrid Schedule Essential duties and responsibilities include the following. Other duties may be assigned. 1. Contributing to technology roadmap. 2. Leading and successfully completing technology transformation projects aimed at im...

    Recommended

  • Chief Enterprise Architect CEA

    Austin, TX

    Chief Enterprise Architect Direct Hire/Full Time Austin, TX $180K-$190K The Chief Enterprise Architect (CEA) is responsible for the organization's overall Enterprise Architecture. This role is typically engaged as the highest-level technology expert ac...

    Recommended

  • IT Financial Services Legal Data Team

    Chicago, IL

    Title: IT Financial Services Legal Data Team Advisor Location: Chicago, IL (2 days onsite and 3 days remote). Salary: $125K + 15% Bonus No sponsorship This role is responsible for supporting the development and implementation of our financial services ...

    Recommended

  • Mid-Level Analytics Engineer

    ,

    Position: Mid-Level Analytics Engineer Location: 100% Remote within Continental United States Are you looking for a growth opportunity for a reputable company with a positive work environment? Our client is looking for a Mid-Level Analytics Engineer to...

    Recommended

  • Senior Cloud Security Engineer

    Alameda, CA

    Senior Cloud Security Engineer Alameda, CA $200K-$220K/year Visa Transfer for those that have 1 year or more remaining on an H1B Visa Job Description: The Senior Cloud Security Engineer will be a member of the Information Security & Compliance team. Th...

    Recommended

  • Sr. Systems Administrator

    Pennsauken, NJ

    Sr. System Administrator Direct Hire Pay: up to $100K Our client is looking for a jack of all trades system administrator to join their team. They need a candidate that is comfortable working with Azure, Intune, legacy and Azure Active Directory (creat...

    Recommended

  • IT Site Manager - Roseville, CA

    ,

    IT Site Manager Roseville, CA (Sacramento, CA AREA) Onsite 5X weekly Annual Base Salary Range: $120,000 - $160,000 / year Visa Transfer for Visa's with 1 year or more left on them. We offer a competitive compensation package plus a benefits and equity ...

    Recommended

  • Data Governance Professional

    Oklahoma City, OK

    Data Governance Professional Direct Hire Oklahoma City, OK – remote a few days a week Pay: up to $115K DOE ** Must be authorized to work in the United States, now and in the future, without assistance! ** Our client is looking to add to their data gove...

    Recommended

  • Technical Alliance Manager - Remote - 50% travel

    ,

    Technical Alliance Manager Remote, 50% travel Base pay up to $160k plus bonus Direct Hire We are working with a global organization that is looking to add a Technical Alliance Manager to their Information Security Division. This is a newly created posi...

    Recommended

  • Senior Azure Data Architect

    Frederick, MD

    Our client is looking for a Senior Data Architect to help design, build, and expand a leading technology platform in the financial services industry. As a Sr. Data Architect, you will be pivotal in shaping the organization's data strategy and infrastru...

    Recommended

  • Dynamics365 Consultant

    Seattle, WA

    Working with us, you will: · Work with business and technical personnel to provide application architecture, design, configuration, and support with respect to Microsoft Dynamics 365 platform · Serve as a Subject Matter Expert (SME) within all aspects ...

    Recommended

  • Senior Data Architect

    Northbrook, IL

    Title: Senior Data Architect - NO DATA SCIENTISTS MUSTS: 15+ years of data architecture, excellent communication, C-level presence Location: Northern Chicago Suburbs - 2X onsite weekly Salary: $125-150K + Bonus NO sponsorship available We are seeking a...

    Recommended

  • Sr. Software Developer

    ,

    Position: Sr. Software Developer Location: District of Columbia Are you looking for a growth opportunity for a reputable company with a positive work environment? Our client is looking for a Sr. Software Developer to join their team. Please contact us ...

    Recommended

  • Mech Project Senior Project Manager

    Austin, TX

    Senior Project Manager Summary: In this role, you will be responsible for technical, schedule, and cost performance of complex projects in accordance with contract requirements. The Senior Project Manager drives project teams to successfully meet these...

    Recommended

  • IT Security GRC Program Manager

    ,

    IT Security GRC Compliance Program Manager Alameda, CA Starting Base Salary Is: $120,000-$145,000 Visa Transfer for those that have 1 year or more on an active H1B Visa Individual compensation will vary based on factors such as qualifications, skill le...

    Recommended