Director of Information Security & Technology

Boston

Applications have closed

SimpliSafe

Shop award-winning home security systems from SimpliSafe. Professional monitoring, protection from break-ins and hazards, and no contracts.

View company page

SimpliSafe has an immediate opening for a Director of Information Security & Technology. In this role you will be charged with orchestrating and implementing company-wide information technology policies and programs to both foster employees’s productivity and safeguard all systems from internal and external cybersecurity threats. This is a high visibility role reporting directly to the Chief Technology and Operations Officer - with regular strategic & on-demand tactical touch points with senior leaders and board members.

In this role you will:

  • Lead, mentor and build teams, all the while growing leaders
  • Orchestrate the entire hardware architecture and roadmap for our global workforce
  • Build upon our Information Security & Technology vision and strategy, while taking in real-time company and industry-wide gaps and risks
  • Balance the organization's business objectives and ensure senior stakeholder buy-i
  • Understand the end-user and deliver innovative Technical solutions to keep SimpliSafe moving quickly
  • Translate standards, incorporate best practices & unpack current risks to drive an improvement to security posture, while maintaining employee productivity
  • Lead, along with stakeholders, business continuity plans to ensure continuous service through infrastructure/systems changes, security breach or if disaster recovery plan is triggered
  • Serve as primary control point during significant Information Technology incidents, convening a Security Incident Response Team (SIRT) as needed, and preparing situational reports (SITREP)
  • Partner with financial and legal officers and engineering personnel in conducting investigations, preparing situational reports and remediation plans in connection with information security incidents and breaches
  • Own company-wide risk and compliance programs including PCI, GDPR, Internal SDLC and the like
  • Regularly report to the  Chief Technology and Operations Officer and other senior company leadership on the strategy and state of the IT & Security program (e.g. infrastructure, project portfolio, and team) 
  • Manage relationships with external IT vendors, security experts and advisors
  • Champion and educate the organization and its employees about the latest IT changes and security risks, and run training and real-world test campaigns as needed

To Be Successful you will:

  • Bachelor's degree in Computer Science, Information Systems, Information Technology, Information Security or a related field
  • Certified Information Security Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Global Information Assurance Certification (GIAC), or related certification is required.
  • 4+ years managerial experience in Information Technology and/or Information Security
  • 10+ years IT security experience, including some experience in highly sensitive financial data (PCI) and the European Data Protection and Privacy Directive (GDPR)
  • Direct experience in the areas of systems architecture, administration, applications development, database administration, network operations, and data center operations
  • Experience securing various Cloud architectures and deployment strategies such as  Software-as-a-service, Infrastructure-as-a-service (AWS), Platform as a service etc
  • Experience developing and administering information security policies and procedures in a complex environment
  • Experience deploying and managing various MDM, endpoint, network, vulnerability and threat detection tools, policies and programs
  • Complete information system auditing including computer security reviews, control selection, and evaluation of systems using a risk-based approach
  • Expertise in computer forensic investigation methodology and investigation tools to collect, analyze and preserve electronic evidence

Tags: Audits AWS CISM CISSP Cloud Compliance Computer Science GDPR GIAC Incident response Privacy SDLC Strategy Threat detection

Region: North America
Country: United States
Job stats:  10  2  0
Category: Leadership Jobs

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.