Vice President, Chief Information Security Officer - CISO | Remote, USA
Kansas City, MO
Optiv
Optiv manages cyber risk so you can secure your full potential. Cybersecurity advisory services and solutions. Powered by the best minds in cyber.Optiv’s Chief Information Security Officer (CISO) leads the enterprise security, risk, and compliance (ESRC) team and is responsible for defining and executing the cybersecurity strategy for the corporation to manage risk, protect client data, and company resources. The CISO will drive the development of technology roadmaps and processes; ensure compliance with company policy, customer contracts, regulatory requirements, and industry best practices. The CISO will report directly to the General Counsel. The CISO will evangelize the importance of Cyber Security; speaking on the latest cyber security threats and how Optiv is mitigating those threats. The CISO will work with business and IT leaders to provide and maintain solutions which meet business and technical requirements by applying new and existing security technologies and solutions to solve business needs.
This role is able to be virtual/remote anywhere within the United States (#LI-Remote)
Responsibilities
- Drive the development of security strategies and implementation roadmaps centered around a zero-trust philosophy and industry best practices.
- Develop and manage key security solutions in the GRC, SOC, Detection and Response, and IAM space.
- The CISO and their org will work closely with IT and the business to manage and operate all security technology.
- Ensure compliance with various industry and government regulations and standards.
- Ensure compliance with company policies and procedures.
- Coordinate and execute the development of a SOC-2 report and other elements of corporate due diligence such as PCI compliance and responding to client questionnaires.
- Coordinate and execute incident response events and support internal investigations.
- Oversee third party risk management of strategic vendors and partners.
- Engage with clients to advise on the latest cyber security threats and share best practices.
- Influence and direct security vendors to resolve issues and enhance product roadmaps to meet the needs of the company.
- Research and evaluate impact of new vulnerabilities, security alerts, threat intelligence and related standards and regulations.
- Stay informed of new security technologies and solutions to assist in the on-going development of the overall security strategy.
- Build key relationships and partner with other leaders in the business and IT, enterprise security, services, and sales teams in designing next generation customer and employee solutions.
- Look for opportunities to leverage Optiv Services and solutions to meet cybersecurity needs.
- Assist marketing with thought leadership to promote Optiv brand.
- Share best practices with strategic clients and partners to strengthen relationships.
- Share experience, knowledge, and ideas with management and co-workers to maintain a kind and respectful team-based environment.
- Lead a team utilizing experience in progressive managerial/supervisory positions including effective use of employee performance plans and evaluations, coaching, and mentoring techniques, and addressing employee conflicts and disciplinary actions required.
- Create a risk-based process for the assessment and mitigation of any information security risk in the ecosystem consisting of supply chain partners, vendors, consumers and any other third parties.
- Coordinate the development of implementation of incident response plans and procedures to ensure that business-critical services are recovered in the event of a security event; provide direction, support, and in-house consulting in these areas.
- On a continuous basis, evaluate overall IT security direction of Optiv, ensuring that all activities are secure, effective, and efficient.
Leadership Responsibilities
- Manage the ESRC team and the cybersecurity portfolio.
- Manage the cybersecurity budget.
- Establish metrics to articulate the security posture and risk profile to executive management and the board.
- Serve as a member of the Optiv Operating Leadership Group.
- Be a talent management ambassador.
- Embrace a culture of diversity, equity and inclusion and support company core values.
- Promote a corporate culture that is committed to information security best practices.
- Balance strong security controls and practices with usability features and business needs.
- Participate in after-hours support as needed to respond to security incidents.
- Function with a high degree of integrity with an ability to keep information confidential.
Qualifications
- Bachelor’s Degree preferred, Master’s Degree a plus; CISSP or other security certifications preferred.
- Minimum of 12+ years of relevant work experience related to cybersecurity; minimum of 6+ years of relevant work experience related to cybersecurity management; minimum of 3+ years of relevant work experience related to executive management.
- Experience presenting to large audiences with evangelizing cyber security.
- Familiarity with multiple operating systems such as Microsoft, Apple, and Linux.
- Familiarity of network protocols and network security concepts.
- General knowledge of best practices for securing Cloud (SaaS, IaaS, PaaS) environments with experience in Azure, AWS or GCP a plus.
- Knowledge of security industry frameworks such as NIST.
- Knowledge of modern IT operational duties and software development lifecycles.
- Understanding of cybersecurity regulatory landscape and requirements.
- Detail-oriented with strong conceptual, analytical, problem solving, decision making and planning skills.
- Excellent written and oral communication skills; and demonstrated ability to interact with technical, non-technical individuals; including internal-external stakeholders and clients
- Ability to discuss security and risk topics with business leaders, strategic clients and public at large.
- Ability to accurately interpret business direction and clarify technology's alignment with stakeholder needs.
- Up to 50% travel
• A company committed to championing Diversity, Equality, and Inclusion through our Affinity groups including, Black Employee Network, Disabled Employee Network, Latino Employee Network, Optiv Pride (LGBTQIA+), Veterans Support Network, and Women's Network.• Work/life balance. We offer “Recharge” a flexible, time-off program that encourages eligible employees to take the time they need to recharge • Professional training resources, including tuition reimbursement• Creative problem-solving and the ability to tackle unique, complex projects• Volunteer Opportunities. “Optiv Chips In” encourages employees to volunteer and engage with their teams and communities. • The ability and technology necessary to productively work remote/from home (where applicable)
If you are seeking a culture that supports growth, fosters success, and moves the industry forward, find your place at Optiv! As a market-leading provider of cyber security solutions, Optiv has the most comprehensive ecosystem of security products and partners to deliver unparalleled services. Our rich and successful history with our clients is based on trust, serving more than 12,000 clients of varying sizes and industries, including commercial, government, and education. We have the proven expertise to plan, build, and run successful security programs across Risk Management, Cyber Digital Transformation, Threat Management, Security Operations - Managed Services, and Identity and Data Management.
Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, status as an individual with a disability, veteran status, or any other basis protected by federal, state, or local law.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: AWS Azure CISSP Cloud Compliance GCP IaaS IAM Incident response Linux Network security NIST PaaS Risk management SaaS Security strategy Strategy Threat intelligence Vulnerabilities
Perks/benefits: Career development Flex hours Flex vacation Startup environment Team events Travel
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open DevSecOps-related jobs