Chief Information Security Officer (CISO)
Denver, Colorado, United States
Ntirety
Winner of three Global InfoSec Awards, Ntirety is the leader in Data Security and Regulatory Compliance, providing compliant, pervasive data protection across your entire IT stack.POSITION PURPOSE:
The Chief Information Security Officer (CISO) serves as the process owner of all assurance activities related to the availability, integrity and confidentiality of customer, business partner, employee and business information in compliance with relevant information security policies. The CISO is the face of Ntirety’s security products to its customers, as well as the guiding force behind the development of the Ntirety security services suite. The CISO oversees the compliance/security function of Ntirety, sets the strategic direction of this function, and evangelizes it to Ntirety’s customers, prospects, partners, and employees. A key element of the CISO's role is working with executive management to determine acceptable levels of risk for the organization, as well as working with customers and partners on the same. This position is responsible for establishing and maintaining information security management programs to ensure that information assets, as well Ntirety services are effectively protected. The CISO is responsible for continuously evaluating the security threat landscape and defining the appropriate services, process and technology changes required to minimize risk from these threats. The CISO is an executive-level manager with primary responsibility to maintaining security of internal systems as well as responsibility to driving revenue growth of managed security services provided to Ntirety’s customers.
ESSENTIAL JOB DUTIES AND RESPONSIBILITIES:
· Evangelize NTIRETY’s security technology and managed services through blogging, webinars and speaking engagements at applicable industry events
· Serve as the primary thought leader in the design, development and launch of managed security services provided to NTIRETY’s customers
· Maintain a current understanding of the security threat landscape
· Provide a monthly risk assessment report to the senior executive team quantifying and prioritizing risks and action plans to remediate these risks. Develop a read out of the same to the board of directors on a quarterly basis.
· Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program
· Work directly with the business units and customers to facilitate risk assessment and risk management processes
· Develop and enhance an information security management framework
· Provide guidance and mentorship to the enterprise's information security organization
· Partner with business stakeholders across the company to raise awareness of risk management concerns
· Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems
· Lead the design and seek funding approval of security systems required to reduce security risks
· Review and approve security policies, controls and security incident response plans
· Ensure that disaster recovery and business continuity plans are in place and tested
· Review and monitor identity and access management program
· Schedule periodic audits
· Ensure security policies and procedures are communicated to all personnel and that compliance is enforced
· Communicate best practices and risks to all parts of the business, outside IT
· Partner with the Operation team executives to ensure that security procedures, and compliance protocols are delivered internally and externally
· Partner with external and internal providers including executives and managers across different departments, third party vendors, and thought leaders in academia and the wider industry.
· Attend and present at channel and industry events, while representing Ntirety.
· Must possess excellent customer-facing skills
Requirements
DESIRED MINIMUM QUALIFICATIONS:
· Minimum of ten years of experience in a combination of risk management, information security and IT jobs
· Current Certified Information Systems Security Professional (CISSP) Certification or equivalent
· Current Certified Information Systems Manager (CISM) Certificate or equivalent
· Excellent written and verbal communication skills and high level of personal integrity
· Knowledge of common information security management frameworks, such as ISO/IEC
· 27001, CMMC and NIST.
· Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams
· Experience with contract and vendor negotiations and management including managed services.
· Understanding of software development or other best in class development practices.
· Experience with Cloud computing/Elastic computing across virtualized environments.
· Ability to learn and translate technical issues in a business risk context
· Must have excellent oral and written communications skills
· Must possess strong interpersonal skills in order to work in a dynamic and fast-paced environment
· Bachelor’s degree or equivalent work experience
· Requires prior 10 + years supervisory experience
· Will be required to travel up to 50% of the time
Benefits
Ntirety is an Equal Employment Opportunity / Affirmative Action Employer (EEO/AA).
Ntirety offers a competitive salary and benefits including Paid Time Off, FREE Medical to Employees, Dental, retirement plan with 401(k) match, and much more. If you are interested in joining a profitable, growing, and dynamic company, we want to hear from you! Ntirety is an Equal Opportunity Employer and does not discriminate on the basis of race, color, religion, sex, age, national origin, disability, veteran status, sexual orientation, or any other classification protected by Federal, State or local law.
Ntirety thanks all candidates for their interest; however, only shortlisted candidates will be contacted.
Tags: Audits CISM CISSP Cloud CMMC Compliance Incident response NIST Risk assessment Risk Assessment Report Risk management
Perks/benefits: 401(k) matching Career development Competitive pay Health care Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs