Head of Cybersecurity
Newark, CA
Full Time Executive-level / Director USD 240K - 315K
Lucid Motors
Lucid is the future of sustainable mobility, designing electric cars that further reimagines the driving experience.Lucid Motors is seeking a security executive who can help establish a world-class security program globally to reduce company risk and increase efficiencies company-wide.
The Role:
- Develop the strategy and roadmap for managing technology, risk, information security, and the compliance environment contributing to Lucid's continued growth
- Establish security measures to detect, prevent, and mitigate cyber attacks
- Continuously evaluate the state of Lucid's security and risk profile and develop a risk-based gap analysis in order to implement and maintain a best-in-class security program
- Partner closely with executives and business leaders, providing guidance and ensuring information security strategy aligns with business and product roadmap goals.
- Identify risks and prevent vulnerabilities, including the evaluation and recommendation of all technical and business controls.
- Effectively manage all enterprise cyber, data protection, data retention and insider threat programs, including establishing incident response, 24x7 security operations center, and security engineering, architecture and intelligence teams.
- Lead the development, training and dissemination of security policies, standards, and guidelines. Create and implement security awareness training programs.
- Own the investigation process for all security incidents and ensure corrective actions are completed promptly. Additionally, oversee the development of all security contingency plans.
- Ensure compliance to critical standards as company expands into new markets that require new security measures such as PCI and others.
- Models and reinforces ethical behavior in self and others, adheres to organizational policies and guidelines, supports compliance initiatives, maintains confidences, conducts business with honesty, shows consistency in words and actions.
Qualifications:
- Deep expertise across security, privacy, IT audit, and legal security standards, guidelines, and principles within a large, highly-distributed, complex organization
- Proficient in information security management frameworks, such as NIST and ISO/IEC 27001
- Track record of building, growing, and maintaining high-performing security teams, driving transformation in a growth environment.
- You are a hands on executive who leads by example.
- Demonstrated ability to leverage advanced knowledge of a business structure and components of a product or service to evaluate business needs, analyze gaps caused by change initiatives, determine potential opportunities and drive transformation.
- Experience leading technical security scanning, penetration testing, application security testing, mobile device security analysis, network security analysis, business continuity and disaster recovery.
- Strong experience with state-of-the-art security technology and technical concepts.
- Expert in enterprise risk management and defining and applying a risk management framework for a large global organization
- In-depth understanding of data protection laws and regulations, including PDPL, GDPR and other relevant legislation in regional jurisdiction.
- Deep knowledge of cloud security, network security, data protection, as well as OT security or security in a manufacturing environment.
- Experience with enforcing secure coding practices, threat modeling, identity and access management, and security incident response and recovery.
- Strategic problem solver who is analytically driven and an effective communicator who can present complex analysis to business leaders and executive leadership.
- Minimum of 10 years of experience in enterprise risk and information security for a global company.
- Bachelor’s degree in related field strongly preferred.
- CISSP certification strongly preferred.
- Successfully led organizations to obtain and maintain required security certifications.
Salary Range: The compensation range for this position is specific to the locations listed below and is the range Lucid reasonably and in good faith expects to pay for the position taking into account the wide variety of factors that are considered in making compensation decisions, including job-related knowledge; skillset; experience, education and training; certifications; and other relevant business and organizational factors. Additional Compensation and Benefits: Lucid offers a wide range of competitive benefits, including medical, dental, vision, life insurance, disability insurance, vacation, and 401k. The successful candidate may also be eligible to participate in Lucid’s equity program and/or a discretionary annual incentive program, subject to the rules governing such programs. (Cash or equity incentive awards, if any, will depend on various factors, including, without limitation, individual and company performance.)Base Pay Range (Annual)$240,000—$315,000 USD
By Submitting your application, you understand and agree that your personal data will be processed in accordance with our Candidate Privacy Notice. If you are a California resident, please refer to our California Candidate Privacy Notice.
To all recruitment agencies: Lucid Motors does not accept agency resumes. Please do not forward resumes to our careers alias or other Lucid Motors employees. Lucid Motors is not responsible for any fees related to unsolicited resumes.Tags: Application security Audits CISSP Cloud Compliance GDPR IAM Incident response Network security NIST Pentesting Privacy Risk management RMF Security analysis Security strategy SOC Strategy Vulnerabilities
Perks/benefits: 401(k) matching Career development Competitive pay Equity / stock options Health care Insurance Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Cybersecurity Engineer jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Information Security Architect jobs
- Open Information System Security Officer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Analytics-related jobs
- Open Network security-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs