Chief Information Security Officer - Boston, United States - The Cypress Group

    The Cypress Group
    The Cypress Group Boston, United States

    2 weeks ago

    Default job background
    Description
    Chief Information Security Officer – Burlington or Norwell

    Job Type
    permanent
    Location
    $150-200K % Bonus
    Description
    Chief Information Security Officer


    COMPANY OVERVIEW

    Our client is the retail energy industry's leading provider of transaction management (EDI), billing and CIS, pricing, demand scheduling, and wholesale energy software services.

    Offering the industry's only end-to-end business process solution, they provide comprehensive and proven solutions for the unique business process needs of start-up retail suppliers and established global suppliers of natural gas and electricity – and to everyone in between.

    Their 300 plus retail supplier clients support over 15 million residential, commercial and industrial customers in production behind over 130 electric and gas utilities in the US, Canada, Mexico, UK, Australia and Japan.

    This is an exciting opportunity to join a growing company in an exciting evolving industry. They are seeking a Chief Information Security Officer to join their team.

    POSITION SUMMARY

    The Chief Information Security Offices will be responsible for the information security across the organization globally and will shape the overall security strategy.

    The CISO is responsible for providing the vision and leadership for developing, supporting and implementing all security initiatives including risk management, risk assessment, vulnerability assessments, threat monitoring, compliance, audit and certification.


    POSITION RESPONSIBILITIES
    Develop and revise existing information security policies, guidelines, standards and concepts
    Support the development of a long term strategic roadmap which aligns to the future needs of the organization which includes the prioritization of critical cybersecurity initiatives with data security informational security advancements
    Protect corporate cyber security information day to day
    Implement and achieve key quality and productivity metrics for data security and management
    Identify deficiencies and provide achievable solutions to accomplish short and long-term security goals
    Facilitate and conduct periodic security audits using all aspects of the control policy, including internally and externally managed applications
    Monitor business continuity and recovery procedures to ensure security architecture and features are functioning properly following system failures or outages
    Facilitate and perform vulnerability testing with application development and infrastructure/network teams
    Contribute to annual security budget planning
    Serve as an escalation point for resolving issues, conflicts of priority and obtaining decisions for managing the impact of change
    Work cross-functionally and with Leadership team to ensure successful adoption and enforcement of security awareness, policies and training

    POSITION QUALIFICATIONS
    Experience
    10+ years of experience working in IT Security, with 5+ years holding a leadership role
    Past hands-on experience in multiple security knowledge areas (i.e. identity and access management, endpoint and mobile security, network security, incident response, compliance, and application security)
    Ability to manage multiple projects spanning a range of geographic and international locations
    Excellent understanding of the Information Security industry, including architecture, incident management and technical analysis of threats
    Strong knowledge of all security frameworks (ISO/IEC 27001, SOC1, SOC2, ITIL COBIT, etc). Experience with GDPR a plus
    Strong background communicating IT security issues and risk to non-technical audiences
    Proven experience in planning, organizing and developing IT security and facility security system technologies
    Must be a proven leader with superior communications skills, well-developed management and interpersonal skills.
    Exceptional strategic thinker, creative, problem solving and analytical skills
    Knowledge with some experience in security control with monitoring in Windows, Linux, database, Cisco, telecomm and virtual network/computing environments
    Experience in the energy industry is a plus.
    Must be willing to travel 25-30% within the U.S and internationally
    Education
    Bachelor's degree in telecommunications, information technology or a related discipline required, Master's degree preferred
    Certification preferred in CISM, ITIL, CISSP

    COMPENSATION
    They offer an attractive compensation package with competitive pay, unlimited paid time off, health insurance coverage, paid parental leave, educational assistance, 401k retirement plan, and more

    #J-18808-Ljbffr