Director of Information Security
Role details
Job location
Tech stack
Job description
An employer is seeking a Director of Information Security for an onsite role in Cincinnati.
The Director of Information Security is responsible for developing, implementing and monitoring a
strategic, comprehensive enterprise cybersecurity program. The Director will provide the leadership
necessary to manage the risk to the organization and will ensure business alignment, effective governance
and system and product availability.
Overall Responsibilities
- Develop and implement comprehensive cyber security strategies to protect the firm's digital
assets
- Oversight of IT Security program, work with team to build program and make recommendations
to leadership to improve security
-
Collaborates with IT and administrative teams as needed
-
Conduct regular risk assessments and vulnerability analysis to identify potential threats and
weaknesses
-
Oversee incident response and recovery efforts in the event of a security breach
-
Effectively represent the IT Department's positions and advocate internal and external
cybersecurity policies
-
Manage Security personnel to build professional skills and provide increased benefit to firm
-
Manage security and compliance events
-
Review and recommend security solutions with security team
-
Champion security campaign and education on both client assessment program and engagement
reviews with both stakeholders and end users
- Identify regulatory compliance issues (PCI DSS, GDPR, privacy) and work with stakeholders to
build appropriate compliance procedures and policies
-
Implementation, review, and revision of Information Security Program Manual
-
Advance and maintain ISO 27001 certification
-
Understand firm wide practices and profile and work to manage continuity, collaboration and
compliance from remote offices
-
Coordinate responses to client audit assessments
-
Creation and maintenance of robust Incident Response plan
-
Develop strategic vision for Zero Trust Network Architecture (ZTNA)
-
Other duties as assigned
Requirements
-
Exceptional customer service skills
-
Demonstrated ability to work collaboratively and constructively with employees, supervisors, and
management in a team environment
-
Strong leadership and project management skills
-
Strong analytical and problem solving skills
-
Ability to handle multiple ongoing projects while meeting deadlines and keeping leadership
notified of progress or conflicts
- Experience with cloud security, network security, and application security, 10+ years in IT industry
5+ years in Security leadership or management roles
Knowledge of ISO principals and audits
CISSP certification (heavily preferred)
Understanding of AI impacts on security