Overview
Skills
Job Details
Develop, implement, and oversee a comprehensive enterprise information security operations strategy.
Utilize security professionals and technologies to maintain a secure IT infrastructure, protect applications, and ensure data integrity.
Ensure organizational compliance with information security policies, standards, and regulatory requirements; collaborate with business units to enforce and uphold these practices.
Design and contribute to the organization s security awareness training programs.
Serve as a subject matter expert to executive leadership on information security frameworks, best practices, emerging threats, and regulatory obligations.
Collaborate with development and architecture teams to integrate security measures into the software development lifecycle.
Manage internal and external vulnerability assessments and penetration testing initiatives.
Lead organizational responses to security incidents, ensuring timely coordination and mitigation.
Oversee engagement and negotiation with external vendors supporting the information security program.
Develop and track meaningful metrics that measure the performance, efficiency, and maturity of security operations to support informed decision-making and resource allocation.
Provide leadership and accountability for the daily operations of the security team and related administrative functions.
Manage access controls across all corporate communication and IT systems, ensuring effective onboarding and offboarding procedures.
Continuously monitor the security posture of the organization, identifying and addressing potential threats.
Conduct risk assessments, gap analyses, and compliance audits to ensure infrastructure and business functions align with relevant statutory and regulatory standards.
Qualifications
Minimum of 7 years of professional experience in the information security field, including at least 5 years in a leadership capacity.
5+ years of hands-on experience managing security operations across on-premise, cloud, and hybrid environments.
Strong background in identity and privileged access management with at least 5 years of leadership in this area.
Bachelor s degree required; a Master s degree in Information Security or a related discipline is preferred.
Familiarity with compliance requirements in the financial services sector is highly desirable.
Industry certifications such as CISSP, CISM, CEH, or CHFI are preferred.
Proven experience with NIST, PCI-DSS, and SOC 2 compliance is required.
Experience working in fast-growing or entrepreneurial environments is a significant plus.
Deep understanding of modern information security technologies and evolving threat landscapes.
Strong strategic thinking skills with the ability to translate business needs into actionable security initiatives.
Demonstrated ability to drive projects forward through effective prioritization, planning, and execution.
Proven ability to build relationships across departments and influence outcomes without direct authority.
Effective communicator, capable of explaining complex technical concepts to non-technical stakeholders.
Skilled in business process improvement and IT alignment with operational goals.
Exceptional written and verbal communication skills, with the ability to tailor messaging for various audiences.
Demonstrated leadership ability, with a track record of attracting, developing, and retaining top talent.
Competent in interpreting financial and operational data to identify trends, risks, and opportunities.
This position includes supervisory duties. Prior leadership experience is required.