Director of Information Security & Technology
Boston
Applications have closed
SimpliSafe
Shop award-winning home security systems from SimpliSafe. Professional monitoring, protection from break-ins and hazards, and no contracts.SimpliSafe has an immediate opening for a Director of Information Security & Technology. In this role you will be charged with orchestrating and implementing company-wide information technology policies and programs to both foster employees’s productivity and safeguard all systems from internal and external cybersecurity threats. This is a high visibility role reporting directly to the Chief Technology and Operations Officer - with regular strategic & on-demand tactical touch points with senior leaders and board members.
In this role you will:
- Lead, mentor and build teams, all the while growing leaders
- Orchestrate the entire hardware architecture and roadmap for our global workforce
- Build upon our Information Security & Technology vision and strategy, while taking in real-time company and industry-wide gaps and risks
- Balance the organization's business objectives and ensure senior stakeholder buy-i
- Understand the end-user and deliver innovative Technical solutions to keep SimpliSafe moving quickly
- Translate standards, incorporate best practices & unpack current risks to drive an improvement to security posture, while maintaining employee productivity
- Lead, along with stakeholders, business continuity plans to ensure continuous service through infrastructure/systems changes, security breach or if disaster recovery plan is triggered
- Serve as primary control point during significant Information Technology incidents, convening a Security Incident Response Team (SIRT) as needed, and preparing situational reports (SITREP)
- Partner with financial and legal officers and engineering personnel in conducting investigations, preparing situational reports and remediation plans in connection with information security incidents and breaches
- Own company-wide risk and compliance programs including PCI, GDPR, Internal SDLC and the like
- Regularly report to the Chief Technology and Operations Officer and other senior company leadership on the strategy and state of the IT & Security program (e.g. infrastructure, project portfolio, and team)
- Manage relationships with external IT vendors, security experts and advisors
- Champion and educate the organization and its employees about the latest IT changes and security risks, and run training and real-world test campaigns as needed
To Be Successful you will:
- Bachelor's degree in Computer Science, Information Systems, Information Technology, Information Security or a related field
- Certified Information Security Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Global Information Assurance Certification (GIAC), or related certification is required.
- 4+ years managerial experience in Information Technology and/or Information Security
- 10+ years IT security experience, including some experience in highly sensitive financial data (PCI) and the European Data Protection and Privacy Directive (GDPR)
- Direct experience in the areas of systems architecture, administration, applications development, database administration, network operations, and data center operations
- Experience securing various Cloud architectures and deployment strategies such as Software-as-a-service, Infrastructure-as-a-service (AWS), Platform as a service etc
- Experience developing and administering information security policies and procedures in a complex environment
- Experience deploying and managing various MDM, endpoint, network, vulnerability and threat detection tools, policies and programs
- Complete information system auditing including computer security reviews, control selection, and evaluation of systems using a risk-based approach
- Expertise in computer forensic investigation methodology and investigation tools to collect, analyze and preserve electronic evidence
Tags: Audits AWS CISM CISSP Cloud Compliance Computer Science GDPR GIAC Incident response Privacy SDLC Strategy Threat detection
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs