Overview
On Site
USD 194,000.00 per year
Full Time
Skills
Tier 1
Investments
Fraud
IT Risk
Legal
Auditing
Information Security Management
Information Security Management System
Internal Control
Data Processing
PCI DSS
Business Continuity Planning
Disaster Recovery
Incident Management
Testing
Security Awareness
Training
Computer Science
Information Systems
Linux
Microsoft Windows
Cloud Computing
Microsoft
Amazon Web Services
IDS
IPS
DLP
SIEM
Firewall
Privacy
Data Security
Physical Security
CISA
Network Security
Agile
Regulatory Compliance
Leadership
Information Security
Management
Managed Services
Collaboration
Partnership
Value Engineering
Effective Communication
Law
Job Details
Vice President Information Security & Data Privacy
Costa Mesa area, CA
Direct Hire
$194k - $324,493k year
Immediate hire for a VP Information Security & Data Privacy that will perform Tier-1 tasks on Information Security technologies, to maintain and manage annual updates and revision to security and privacy policies. Evaluate business activities (e.g. investments, assets, processes) to assess compliance risk to NIST CSF and company standards. Participate in building or maintaining Fraud Detection processes, including technology. Partner with IT, Risk and Legal to ensure secure development, infrastructure, and operations. Provide or coordinate with internal and external audit to advise on and remediate all gaps from reviews, audits, policies, procedures and practices as it aligns to information security and data privacy. Develop and implement an effective ISMS (Information Security Management System) and Data Privacy compliance program. Support and maintain ISMS, NIST CSF Framework, GDPR, CCPA (and additional states or country privacy laws), PCI-DSS internal controls and monitor adherence to them. Proactively document and review processes, practices and documents to identify weaknesses and risks. Identify and evaluate the organization's data processing activities for PCI-DSS. Conduct annual Data Protection Impact Assessments (DPIAs). Participate in annual Business Continuity/Disaster Recovery and Incident management testing to written plans. Manage Incident and Privacy breaches, incidents and potential incidents, including reviews of flaw remediation. Arrange or conduct training on Data Privacy and Security Awareness compliance training for employees and contractors.
Requirements:
Welcome to ConsultNet and the family of companies, Tekne, SaltClick, TechBridge, and OmniMedia. As a premier national provider of technology talent and solutions, our expertise spans across project services, contract-to-hire, direct placement, and managed services both onshore and nearshore.
Celebrating more than 25 years of partnership with a diverse client base, we've crafted rewarding opportunities for our consultants, fostering high-performing teams that deliver impactful results.
Over the last few years thousands of consultants have found their calling with us in roles that have made a meaningful impact on their lives, enhanced their career, challenged them, and propelled them towards achieving their personal and professional goals. At the ConsultNet family of companies, we believe effective communication is crucial in aligning the right job with your unique skills and professional aspirations. To us, it's all about the personal approach we take and the values we uphold.
Our comprehensive service offerings cover a wide range of technology positions across key markets nationwide. Client more at .
We champion equality and inclusivity, proudly supporting an Equal Opportunity Employer policy. We welcome applicants regardless of Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other status protected by law.
Costa Mesa area, CA
Direct Hire
$194k - $324,493k year
Immediate hire for a VP Information Security & Data Privacy that will perform Tier-1 tasks on Information Security technologies, to maintain and manage annual updates and revision to security and privacy policies. Evaluate business activities (e.g. investments, assets, processes) to assess compliance risk to NIST CSF and company standards. Participate in building or maintaining Fraud Detection processes, including technology. Partner with IT, Risk and Legal to ensure secure development, infrastructure, and operations. Provide or coordinate with internal and external audit to advise on and remediate all gaps from reviews, audits, policies, procedures and practices as it aligns to information security and data privacy. Develop and implement an effective ISMS (Information Security Management System) and Data Privacy compliance program. Support and maintain ISMS, NIST CSF Framework, GDPR, CCPA (and additional states or country privacy laws), PCI-DSS internal controls and monitor adherence to them. Proactively document and review processes, practices and documents to identify weaknesses and risks. Identify and evaluate the organization's data processing activities for PCI-DSS. Conduct annual Data Protection Impact Assessments (DPIAs). Participate in annual Business Continuity/Disaster Recovery and Incident management testing to written plans. Manage Incident and Privacy breaches, incidents and potential incidents, including reviews of flaw remediation. Arrange or conduct training on Data Privacy and Security Awareness compliance training for employees and contractors.
Requirements:
- Bachelor's degree in Computer Science, Computer Information Systems, or any relevant Business degree with additional technical & security related certifications
- 5+ years' senior leadership experience as a Information Security, Compliance Officer or Compliance Manager
- 5+ years' experience in Linux, Windows and Cloud (Microsoft, Google, AWS) technologies, as well as security tools (IDS/IPS, DLP, SIEM, EDR/MDR, Firewall)
- Knowledge of various security methodologies and processes, and technical security solutions
- Solid knowledge of Data Privacy and data protection laws
- Familiarity with physical security systems and controls
- Ability to handle and classify confidential and restricted information
- CISA certification, Network Security certification or relevant InfoSec certifications
- Agile experience
- Experience heading a security program
- Professional certification (e.g. Compliance & Ethics Professional, Leadership ) is a plus
- Broad yet mostly expert understanding of information security and the application of controls across a diverse infrastructure and management organization
Welcome to ConsultNet and the family of companies, Tekne, SaltClick, TechBridge, and OmniMedia. As a premier national provider of technology talent and solutions, our expertise spans across project services, contract-to-hire, direct placement, and managed services both onshore and nearshore.
Celebrating more than 25 years of partnership with a diverse client base, we've crafted rewarding opportunities for our consultants, fostering high-performing teams that deliver impactful results.
Over the last few years thousands of consultants have found their calling with us in roles that have made a meaningful impact on their lives, enhanced their career, challenged them, and propelled them towards achieving their personal and professional goals. At the ConsultNet family of companies, we believe effective communication is crucial in aligning the right job with your unique skills and professional aspirations. To us, it's all about the personal approach we take and the values we uphold.
Our comprehensive service offerings cover a wide range of technology positions across key markets nationwide. Client more at .
We champion equality and inclusivity, proudly supporting an Equal Opportunity Employer policy. We welcome applicants regardless of Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other status protected by law.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.