Chief Information Security Officer (CISO)

POSITION PURPOSE:

The Chief Information Security Officer (CISO) serves as the process owner of all assurance activities related to the availability, integrity and confidentiality of customer, business partner, employee and business information in compliance with relevant information security policies. The CISO is the face of Ntirety’s security products to its customers, as well as the guiding force behind the development of the Ntirety security services suite. The CISO oversees the compliance/security function of Ntirety, sets the strategic direction of this function, and evangelizes it to Ntirety’s customers, prospects, partners, and employees. A key element of the CISO's role is working with executive management to determine acceptable levels of risk for the organization, as well as working with customers and partners on the same. This position is responsible for establishing and maintaining information security management programs to ensure that information assets, as well Ntirety services are effectively protected. The CISO is responsible for continuously evaluating the security threat landscape and defining the appropriate services, process and technology changes required to minimize risk from these threats. The CISO is an executive-level manager with primary responsibility to maintaining security of internal systems as well as responsibility to driving revenue growth of managed security services provided to Ntirety’s customers.

ESSENTIAL JOB DUTIES AND RESPONSIBILITIES:

· Evangelize NTIRETY’s security technology and managed services through blogging, webinars and speaking engagements at applicable industry events

· Serve as the primary thought leader in the design, development and launch of managed security services provided to NTIRETY’s customers

· Maintain a current understanding of the security threat landscape

· Provide a monthly risk assessment report to the senior executive team quantifying and prioritizing risks and action plans to remediate these risks. Develop a read out of the same to the board of directors on a quarterly basis.

· Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program

· Work directly with the business units and customers to facilitate risk assessment and risk management processes

· Develop and enhance an information security management framework

· Provide guidance and mentorship to the enterprise's information security organization

· Partner with business stakeholders across the company to raise awareness of risk management concerns

· Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems

· Lead the design and seek funding approval of security systems required to reduce security risks

· Review and approve security policies, controls and security incident response plans

· Ensure that disaster recovery and business continuity plans are in place and tested

· Review and monitor identity and access management program

· Schedule periodic audits

· Ensure security policies and procedures are communicated to all personnel and that compliance is enforced

· Communicate best practices and risks to all parts of the business, outside IT

· Partner with the Operation team executives to ensure that security procedures, and compliance protocols are delivered internally and externally

· Partner with external and internal providers including executives and managers across different departments, third party vendors, and thought leaders in academia and the wider industry.

· Attend and present at channel and industry events, while representing Ntirety.

· Must possess excellent customer-facing skills

Requirements

DESIRED MINIMUM QUALIFICATIONS:

· Minimum of ten years of experience in a combination of risk management, information security and IT jobs

· Current Certified Information Systems Security Professional (CISSP) Certification or equivalent

· Current Certified Information Systems Manager (CISM) Certificate or equivalent

· Excellent written and verbal communication skills and high level of personal integrity

· Knowledge of common information security management frameworks, such as ISO/IEC

· 27001, CMMC and NIST.

· Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams

· Experience with contract and vendor negotiations and management including managed services.

· Understanding of software development or other best in class development practices.

· Experience with Cloud computing/Elastic computing across virtualized environments.

· Ability to learn and translate technical issues in a business risk context

· Must have excellent oral and written communications skills

· Must possess strong interpersonal skills in order to work in a dynamic and fast-paced environment

· Bachelor’s degree or equivalent work experience

· Requires prior 10 + years supervisory experience

· Will be required to travel up to 50% of the time

Benefits

Ntirety is an Equal Employment Opportunity / Affirmative Action Employer (EEO/AA).

Ntirety offers a competitive salary and benefits including Paid Time Off, FREE Medical to Employees, Dental, retirement plan with 401(k) match, and much more. If you are interested in joining a profitable, growing, and dynamic company, we want to hear from you! Ntirety is an Equal Opportunity Employer and does not discriminate on the basis of race, color, religion, sex, age, national origin, disability, veteran status, sexual orientation, or any other classification protected by Federal, State or local law.

Ntirety thanks all candidates for their interest; however, only shortlisted candidates will be contacted.