Addison Group
This listing was posted on Broadbean.
Chief Information Security Officer (CISO)
Location:
Austin, TX
Description:
Chief Information Security Officer (CISO)Reporting to the CIO, the Chief Information Security Officer (CISO) is a key role on theleadership team of the IT department. This position is responsible for the securityof data and information assets. This role has purview over the operational day-to-day measures used to secure data, applications and infrastructure. This role also owns the strategicinitiatives undertaken to continually enhance information security posture.Description of Duties and Tasks1. Leading and successfully completing projects aimed at improving security posture with minimal supervision. Success means full scope of workcompleted on time, within budget and aligned with established acceptance criteria.2. Building out and maintaining an information security team that is able to satisfy thecybersecurity needs 3. Mitigating risks associated with data breaches and data leaks.4. Establishing, maintaining and continuously testing infrastructure aimed atoperational recovery from outages related to cybersecurity incidents.5. Continual testing of the environment for security vulnerabilities.6. Staying current on risks and trends in the world of cybersecurity and reporting onsuch to the leadership team.7. Providing overall day-to-day direction to a team of information securityprofessionals and 3rd party providers.8. Contributing to the development of the technology roadmap.9. Partnering with peers, both within and outside of the IT department to accomplishshared goals.10. Defining goals for the teams reporting to the CISO based on the goals of thebroader IT organization.11. Ensuring team goals are met and work is successfully completed (teams are meetingestablished operational targets)12. Defining the operating model for the information security team using the ITILframework and ITSM tools.13. Reporting data in various formats showing the performance of the informationsecurity team and making recommendations for changes/improvements as neededto enhance performance.14. Providing leadership and coaching for InfoSec team members as needed.15. Establishing and managing relationships with 3rd party product and serviceproviders as needed to accomplish defined goals.16. Acting as technical sponsor for all projects within your areas of responsibility.17. Ensuring information security project requirements, scope, budgets and timelinesare well-defined.18. Ensuring security projects are well-managed and are being executed as perestablished expectations.19. Administrative aspects of people management for the InfoSec team including, butnot limited to absence approval, performance management, hiring and termination.20. Managing the operating budget for the InfoSec team as well as budgets forcybersecurity related projects.21. Establishing and/or maturing formal standards and practices in the following areas:a. Identity & Access Management (IAM)b. Secure data capturec. Secure data storage, transfer and retrievald. Data security policy development, training and risk management22. Other related duties as assigned.Knowledge● Strong working knowledge of various data security frameworks, including NIST, ISOand SOC.● Working knowledge of a wide range of technologies and best practices in securingthem, including working knowledge of key concepts in:a. Database encryptionb. Integration securityc. Server security and patch managementd. Firewalls and network securitye. Application securityf. Mitigating common infrastructure vulnerabilities● Expert knowledge of the key concepts in user and identity access management.● Working knowledge of security governance risk and compliance (GRC).● Working knowledge of the concepts of data privacy regulations, including FERPArequirements or similar regulated data classifications.● Knowledge of best practices in security training and awareness.● Strong knowledge of tools and techniques for data security and data recovery.● Working knowledge of technology budget planning and budget managementconcepts is critical.● Knowledge of standard accounting practices.● Knowledge of formal PMI-based project management practices.● Knowledge of ITIL-based IT Service Management (ITSM) concepts.Skills● Extremely strong people management skills are required● Demonstrated expertise in IT project planning, development and implementation.Must be able to own multiple initiatives as a project sponsor and see them throughto completion.● Highly skilled at vulnerability assessment, testing and reporting.● Managing external partners in the completion of project work as well as outsourcedoperational work.● Strong business and financial acumen.● Demonstrated expertise is various aspects of data security including accessmanagement, data obfuscation and data breach avoidance.● Excellent analytical, conceptual thinking and strategic planning skills.● Influencing skill, including the ability to show the business value of technicalinitiatives or extrapolate conceptual technical solutions for business problems suchthat non-technical audiences can see that value.● Must be a self-starter who can not only operate with minimal direction, but whocan also bring new ideas to the table and successfully lead and complete approvedinitiatives with minimal supervision.● Maintaining an established work schedule.● Effectively using interpersonal and communications skills.● Effectively using organizational and planning skills with attention to detail andfollow-through.● Maintaining confidentiality of work-related information and materials.● Establishing and maintaining effective working relationships, including the ability tocoordinate the work of others.Required Work Experience● 7+ years of experience in Information Security roles of progressively increasingresponsibility.● 4+ years of related work experience leading a Cybersecurity organization.● 3+ years experience in a technology leadership role where both project andoperational budgeting was a key component of the job.Required Education● Bachelor's degree ● Experience cannot be substituted for required, applicable educational level.IND 005 009
Company:
Addison Group
Posted:
April 5 on Broadbean
Visit Our Partner Website
This listing was posted on another website. Click here to open: Go to Broadbean
Important Safety Tips
- Always meet the employer in person.
- Avoid sharing sensitive personal and financial information.
- Avoid employment offers that require a deposit or investment.
To learn more, visit the Safety Center or click here to report this listing.
More About this Listing: Chief Information Security Officer (CISO)
Chief Information Security Officer (CISO) is a Civil Service Security Officer Job at Addison Group located in Austin TX. Find other listings like Chief Information Security Officer (CISO) by searching Oodle for Civil Service Security Officer Jobs.
Chief Information Security Officer (CISO) is a Civil Service Security Officer Job at Addison Group located in Austin TX. Find other listings like Chief Information Security Officer (CISO) by searching Oodle for Civil Service Security Officer Jobs.