- Develop and maintainthe organization's digital risk and risk appetite framework and related processes to achieve the organization's short and long term strategic, technology and cybersecurity goals. This includes a strategic, comprehensive enterprise information security program to ensure the integrity, confidentiality, and availability of data.
- Participatein strategic and long-range planning and the development of project plans, policies, procedures, and budgetary projections.
- Provide regular and consistent reporting on the current status of the information security program to senior management and the board of directors.
- Create and maintain a comprehensive set of corporate information security policies and standards. Continuously monitor information security controls, Key Risk Indicators (KRIs), Key Performance Indicators (KPIs), and the technical landscape.
- Monitor the external threat environment for emerging threats and advise relevant stakeholders and the CEO on the appropriate course of action.
- Develop a compliance and audit program to ensure the organization is in compliance with applicable cybersecurity laws, standards, frameworks, and regulations, as well as SOC 2/3 requirements. This may include regulations such as GDPR, PCI DSS, as well as industry standards like ISO
- Implement effective Governance, Risk, and Compliance (GRC) controls and measures to protect systems and data.
- Conduct and/or risk assessments to identify and prioritize cyber risks based on potential impact and likelihood of occurrence. This involves analyzing the organization's IT infrastructure, systems, and processes to identify vulnerabilities and threats.
- Manage security incidents and events to protect corporate IT assets, company clients, including intellectual property, regulated data, and the company's reputation.
- Develop and maintain incident response plans to effectively respond to and mitigate cybersecurity incidents. This involves coordinating with internal teams and external stakeholders to contain and remediate security breaches.
- Work with business, internal IT, and third-party vendor teams to promote and adopt security best practices.
- Validate IT infrastructure and reference architectures for security best practices and recommend enhancements.
- Provide regular and consistent security awareness training and education to executive team on the relevant risks and changes in the cyber landscape.
- Review monthly penetration tests and make recommendations to the CEO and CTO.
- In coordination with the internal IT team, the DCS shall be involved in the management and coordination of audits with stakeholders and third parties.
- Provide regular reports and updates to senior management and stakeholders on the organization's cyber risk posture, including identified risks, mitigation efforts, and compliance status.
- Conduct Incident Response Drills that simulate a real-world cybersecurity incident and test the organization's preparedness, response procedures, and coordination among relevant teams and stakeholders.
- Experience working in cyber security strategy, enterprise risk management, or information security.
- Proven experience in monitoring and developing policies and procedures related to data or cyber security.
- Ability to assist in audit and artifact collection and management in support of organization's SOC 2/3 certifications.
- Experience with security technologies, including IDS/IPS, vulnerability testing, and firewalls is preferred.
- Must have extensive knowledge of privacy and data protection laws, regulations, and best practices.
- Enthusiasm, a collaborative work style, an inquisitive attitude, flexibility, creativity, a focus on excellence, and an overall "great-to-work-with" demeanor.
- Excellent written and oral communications and cross functional project management skills required.
- Must be a self-starter who is able to follow projects through to completion with little supervision and meet deadlines in a fast-paced environment.
- Comprehensive understanding of information security and enterprise risk management.
- Proficiency in computer programs (e.g. Microsoft Office, Excel, and PowerPoint).
- Bachelor's degree in business, information technology, strategy, project management or related areas.
- Strong relationship builder and communicator with experience in leading diverse work teams.
- Experience working for a technology company that develops and sells software that stores and processes sensitive data is preferred.
- Competitive Pay : We know your value and we're not afraid to pay for it We offer a competitive total compensation plan including annual bonuses and a 5% contribution to your 401k.
- Time Off : Besides our competitive paid time off package, team members receive paid holidays and time off to volunteer for causes that are important to them.
- Benefits : We offer a comprehensive benefits package, including all the necessities such as medical, dental, and vision. Don't need health insurance? No problem An opt-out credit will be provided to you for waiving coverage.
- Opportunity for you to make an impact on the people we serve We're all about people helping people
-
Cyber Security Engineer
2 weeks ago
Stack Cybersecurity Livonia, United StatesAre you passionate about safeguarding critical systems and data from cyber threats? STACK Cybersecurity, a Managed Security Service Provider (MSSP) is seeking a talented Cybersecurity Engineer to join our team. As a key member of our MSSP, you'll play a vital role in maintaining ...
-
Cyber Security Specialist
5 days ago
GovCIO Garden City, United StatesGovCIO · Cyber Security Specialist (Remote) · Boise , · Idaho · Apply Now · GovCIO is currently hiring for a Cyber Security Specialist With a focus on Risk Management and Network Security, you will collaborate with developers and designers to provide the best value to our cu ...
-
Cyber Security
1 week ago
EY Detroit, MI, United StatesEY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities. At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the b ...
-
Cyber Security
2 days ago
Ernst & Young Detroit, United StatesJob Description · EY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities. At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technolo ...
-
Cyber Security
3 weeks ago
General Dynamics Land Systems Sterling Heights, United StatesJob Description · About the Role: · This role collaborates with a team of OS/BSP and Embedded Software problem solvers to te st and evaluate Ground Vehicle Combat systems for operating within internal and external Tactical Network Domains. Perform SE Linux analysis on cross-do ...
-
Cyber Security
3 weeks ago
General Dynamics Sterling Heights, United StatesResponsibilities for this Position · Job description · Job Description · About the Role: · This role collaborates with a team of OS/BSP and Embedded Software problem solvers to te st and evaluate Ground Vehicle Combat systems for operating within internal and external Tactical ...
-
Cyber Security Senior
3 weeks ago
HonorVet Technologies Dearborn, United StatesPosition : Cyber Security Senior · Location :- Dearborn , MI 48121 · Duration:-12 Months · Position Description: · The Information Security Policy (ISP) Analyst role is responsible for driving visibility, understanding and consistency of the information security policies, standa ...
-
Cyber Security Engineer
3 days ago
Solutions , LLC Sterling, United StatesCyber Engineer - Senior II - SCE04 · Solutions3 LLC is supporting a U.S. Government Prime Contractor and its customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment, including introducing ne ...
-
Cyber Security Architect
2 weeks ago
CCS Global Tech Sterling, United StatesJob Details: · Position: Cyber Security SME · Location: Dulles, VA (Hybrid) · Salary: $155,000 annually with benefits · Job Description: We are supporting a U.S. Government customer on a large mission-critical development and sustainment program. The role involves designing, buil ...
-
Cyber Security Engineer
1 week ago
Avid Technology Professionals Sterling, United StatesThe Sr Cyber Security Engineer designs, develops, documents, analyzes, tests, integrates, debugs, conducts research and/or discovers and analyzes security flaws or vulnerabilities in software, networks, systems, and applications. The Sr Cyber Security Engineer ensures system secu ...
-
Cyber Security Engineer
6 hours ago
Avid Technology Professionals Sterling, United StatesThe Sr Cyber Security Engineer designs, develops, documents, analyzes, tests, integrates, debugs, conducts research and/or discovers and analyzes security flaws or vulnerabilities in software, networks, systems, and applications. The Sr Cyber Security Engineer ensures system secu ...
-
Cyber Security Analyst
4 weeks ago
BELFOR Holdings Troy, United StatesCounter Threat Solutions (CTS), a SilverEdge Company, provides high-profile intelligence and defense community clients with strategic thinkers and technical experts with the skills, abilities, and passion to protect U.S. national security. · If you can: · Using knowledge of adve ...
-
Cyber Security Engineer
3 weeks ago
REI Systems Sterling, United StatesOverview · REI Systems' mission is to deliver innovative technology solutions for Federal Clients. The foundation of our success is an unwavering determination to surpass our client's expectations. We offer this same commitment to our employees by providing professional developme ...
-
Cyber Security Specialist
2 weeks ago
Ramtec Consulting LLC Sterling, United StatesSr. Cyber Security Subject Matter Expert (SME) · TS Required · Ramtec in partnership with SSA LLC is supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment in ...
-
Cyber Security Engineer
3 weeks ago
Leidos Sterling, United StatesWe are seeking a Cyber Security Engineer (SME). This role is responsible for protecting the customer's information systems and networks from potential cyber-attacks. The Cyber Security Engineer must display an excellent understanding of technology and utilization of Firewalls (Se ...
-
Automotive Cyber Security Architect
1 week ago
Elektrobit Automotive GmbH Farmington Hills, United StatesHi, Welcome to Elektrobit Would you like to have a job where you can influence one of the biggest industries? Do you have a vision of what the mobility of the future could look like? Then we have just the right thing for you · Before we dive right into your concrete position of ...
-
Cyber Security Manager
1 week ago
Expleo Troy, United StatesJob Description · Job DescriptionEXPLEO GROUP USA is looking for a Cyber Security Manager to join a dynamic and expanding team in Troy, MI. · Expleo is a trusted partner for end-to-end, integrated engineering, quality services and management consulting for digital transformation. ...
-
Cyber Security Engineer
2 weeks ago
REI Systems Sterling, United StatesOverview: · REI Systems mission is to deliver innovative technology solutions for Federal Clients. The foundation of our success is an unwavering determination to surpass our clients expectations. We offer this same commitment to our employees by providing professional developme ...
-
Cyber Security Engineer
1 week ago
KP Recruiting Group Detroit, United StatesJob DescriptionKP Recruiting Group is a consulting firm that provides leadership and exceptional talent to some of the world's leading companies. Headquartered in the Midwest, KP Recruiting Group has successfully completed countless engagements across the United States. We repres ...
-
Cyber Security Manager
3 days ago
Expleo Troy, United StatesJob Description · Job DescriptionEXPLEO GROUP USA is looking for a Cyber Security Manager to join a dynamic and expanding team in Troy, MI. · Expleo is a trusted partner for end-to-end, integrated engineering, quality services and management consulting for digital transformation. ...
Director of Cyber Security - Livonia, United States - CU Solutions Group
Description
Job Type
Full-time
Description
This is a remote position which may require minimal travel as needed for business needs (conferences, team/board meetings, etc.)
THE OPPORTUNITY
The Director of Cyber Security (DCS) assumes a pivotal role in safeguarding the organization's information systems and data from potential security threats and breaches. With a focus on proactive risk management, the DCS develops, oversees, and coordinates the organization's cyber and digital risk management program and policies, ensuring alignment with industry standards and regulatory requirements. The DCS is responsible for identifying, evaluating, mitigating, and reporting digital and cyber risks, thereby fostering a culture of proactive risk mitigation within the organization. The DCS will protect the organization from emerging threats and promote best practices in cybersecurity.
The DCS will collaborate with other departments to stay abreast of the latest cybersecurity trends and emerging threats. The DCS, in coordination with the internal IT department and CTO, will work towards enhancing security measures, promoting best practices, and conducting regular security assessments of vendors and solutions.
THE WORK ITSELF
The Must Haves...
CUSG is a credit union service organization offering leading edge products and services in the areas of Martech, HR Performance and Financial Empowerment. Our company's dedication to the credit union mission is reflected through service excellence to credit union clients, credit union system partners and credit union leagues spanning 48 states.
We are an equal opportunity employer committed to diversity in the workplace. We do not discriminate on the basis of race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or any other protected status. We welcome and encourage applications from all qualified individuals.