Chief Information Security Officer - Boston, United States - The Cypress Group
Description
Chief Information Security Officer – Burlington or NorwellJob Type
permanent
Location
$150-200K % Bonus
Description
Chief Information Security Officer
COMPANY OVERVIEW
Our client is the retail energy industry's leading provider of transaction management (EDI), billing and CIS, pricing, demand scheduling, and wholesale energy software services.
Offering the industry's only end-to-end business process solution, they provide comprehensive and proven solutions for the unique business process needs of start-up retail suppliers and established global suppliers of natural gas and electricity – and to everyone in between.
Their 300 plus retail supplier clients support over 15 million residential, commercial and industrial customers in production behind over 130 electric and gas utilities in the US, Canada, Mexico, UK, Australia and Japan.
This is an exciting opportunity to join a growing company in an exciting evolving industry. They are seeking a Chief Information Security Officer to join their team.POSITION SUMMARY
The Chief Information Security Offices will be responsible for the information security across the organization globally and will shape the overall security strategy.
The CISO is responsible for providing the vision and leadership for developing, supporting and implementing all security initiatives including risk management, risk assessment, vulnerability assessments, threat monitoring, compliance, audit and certification.
POSITION RESPONSIBILITIES
Develop and revise existing information security policies, guidelines, standards and concepts
Support the development of a long term strategic roadmap which aligns to the future needs of the organization which includes the prioritization of critical cybersecurity initiatives with data security informational security advancements
Protect corporate cyber security information day to day
Implement and achieve key quality and productivity metrics for data security and management
Identify deficiencies and provide achievable solutions to accomplish short and long-term security goals
Facilitate and conduct periodic security audits using all aspects of the control policy, including internally and externally managed applications
Monitor business continuity and recovery procedures to ensure security architecture and features are functioning properly following system failures or outages
Facilitate and perform vulnerability testing with application development and infrastructure/network teams
Contribute to annual security budget planning
Serve as an escalation point for resolving issues, conflicts of priority and obtaining decisions for managing the impact of change
Work cross-functionally and with Leadership team to ensure successful adoption and enforcement of security awareness, policies and training
POSITION QUALIFICATIONS
Experience
10+ years of experience working in IT Security, with 5+ years holding a leadership role
Past hands-on experience in multiple security knowledge areas (i.e. identity and access management, endpoint and mobile security, network security, incident response, compliance, and application security)
Ability to manage multiple projects spanning a range of geographic and international locations
Excellent understanding of the Information Security industry, including architecture, incident management and technical analysis of threats
Strong knowledge of all security frameworks (ISO/IEC 27001, SOC1, SOC2, ITIL COBIT, etc). Experience with GDPR a plus
Strong background communicating IT security issues and risk to non-technical audiences
Proven experience in planning, organizing and developing IT security and facility security system technologies
Must be a proven leader with superior communications skills, well-developed management and interpersonal skills.
Exceptional strategic thinker, creative, problem solving and analytical skills
Knowledge with some experience in security control with monitoring in Windows, Linux, database, Cisco, telecomm and virtual network/computing environments
Experience in the energy industry is a plus.
Must be willing to travel 25-30% within the U.S and internationally
Education
Bachelor's degree in telecommunications, information technology or a related discipline required, Master's degree preferred
Certification preferred in CISM, ITIL, CISSP
COMPENSATION
They offer an attractive compensation package with competitive pay, unlimited paid time off, health insurance coverage, paid parental leave, educational assistance, 401k retirement plan, and more
#J-18808-Ljbffr