Overview
Full Time
Skills
Managed Services
IT Infrastructure
Product Engineering
Cloud Computing
ServiceNow
Service Delivery
Knowledge Base
IT Transformation
FOCUS
Productivity
Partnership
Reporting
Collaboration
Leadership
Investments
Budget
Return On Investment
Incident Management
Security Policy
Vulnerability Management
IT Architecture
Payment Card Industry
System On A Chip
Privacy
Testing
Auditing
Mentorship
IT Security
Regulatory Compliance
Strategic Management
Risk Management
Management
Sarbanes-Oxley
PCI DSS
HIPAA
Gramm-Leach-Bliley Act
Information Security Management
ISO 9000
NIST 800-53
Training
Internal Auditing
Legal
Artificial Intelligence
Communication
Information Systems
CISSP
Information Security
CISM
SAP BASIS
Law
Innovation
Recruiting
Job Details
Company Overview
Milestone Technologies is a global IT managed services firm that partners with organizations to scale their technology, infrastructure and services to drive specific business outcomes such as digital transformation, innovation, and operational agility. Milestone is focused on building an employee-first, performance-based culture and for over 25 years, we have a demonstrated history of supporting category-defining enterprise clients that are growing ahead of the market. The company specializes in providing solutions across Application Services and Consulting, Digital Product Engineering, Digital Workplace Services, Private Cloud Services, AI/Automation, and ServiceNow. Milestone culture is built to provide a collaborative, inclusive environment that supports employees and empowers them to reach their full potential.
Our seasoned professionals deliver services based on Milestone's best practices and service delivery framework. By leveraging our vast knowledge base to execute initiatives, we deliver both short-term and long-term value to our clients and apply continuous service improvement to deliver transformational benefits to IT. With Intelligent Automation, Milestone helps businesses further accelerate their IT transformation. The result is a sharper focus on business objectives and a dramatic improvement in employee productivity. Through our key technology partnerships and our people-first approach, Milestone continues to deliver industry-leading innovation to our clients. With more than 3,000 employees serving over 200 companies worldwide, we are following our mission of revolutionizing the way IT is deployed.
Job Overview
Reporting to the Chief Operating Officer (COO), with a matrix reporting relationship to the India-based Development Centre Leader and Regional General Manager, this role serves as the focal point for Information Security policy and internal operations for Milestone globally.
Define, implement, and manage a comprehensive IT security program that supports corporate business objectives, ensures adherence to regulatory requirements, and continually focuses on improving our security posture
Collaborate with global, cross-functional teams and senior business leaders to provide the corporate vision and define the Information Security strategy; effectively balance the business needs of our internal stakeholders and customers in addition to focusing on adherence to regulatory and compliance needs
Use a risk-based approach to provide leadership, direction, and prioritization in assessing and evaluating information security risks across the organization with a high level of integrity and discretion, positioning the identified risks with executives and ensuring the execution of the agreed upon mitigation/remediation steps
Socialize the resulting strategy to create alignment and support for these goals and initiatives, communicating regularly to ensure that leadership at all levels is informed about efforts and trends impacting the overall effectiveness of the information security programs; determine critical performance criteria and metrics
Identify and advocate for investments to achieve the security strategy by aggressively managing capital and operating budgets and providing thorough ROI analyses to recommended new IT spending, as appropriate
Assume responsibility for the ongoing development and implementation of the information security project portfolio, incident response and security policy frameworks, security compliance activities, threat and vulnerability management, as well as administration of the Milestone information security training and awareness program, providing specialized triaging in areas of high sensitivity
Define, drive, and manage the corporate information security technology architecture spanning security solutions across the enterprise, continually keeping abreast of new solutions and positioning them within the enterprise
Define security requirements to allow for corporate and external service compliance to industry standards, including HIPAA, PCI, SOC2, SOX, Privacy Shield, GDPR, and other regulatory data handling
Evangelize compliance requirements across the enterprise, partnering with cross-functional teams to ensure compliance across the enterprise and, when required, lead these teams in cross-functional efforts
Ensure execution of required testing and auditing activities by internal and external parties, leading to the successful certification of the company on an ongoing basis
Lead, recruit, mentor and develop an IT Compliance Analyst (Hyderabad) to assist with IT Security and Compliance tasks
Requirements
Bachelor's Degree
15+ years of relevant industry experience
Seasoned information security expert with a solid external reputation who has built/led a broad security organization, set strategic direction at the executive level, engaged with senior leaders, influenced/gained consensus on critical initiatives, and has a record of measurable results
Technically conversant and able to be hands-on with a demonstrated track record of success in an organization of similar size and scale that influenced growth, strategic direction, and change
Experience implementing risk management programs that can effectively identify, prioritize, and manage security-related risks for the business; e.g., SOX, PCI-DSS, HIPAA, and GLBA
Experience implementing information security management frameworks (e.g., ISO/IEC 27001, ISO/IEC 27017/27018, CIS, NIST 800-53, etc.)
Demonstrated experience with developing and implementing an information security awareness and training program
Demonstrated success working with internal audit, external auditors, outside consultants, and legal affairs in a lead capacity
Demonstrated experience with large-scale projects and transformational initiatives
Self-starter who can effectively function with minimal day-to-day oversight and who thrives on a dynamic and aggressive business challenge
Strong intellectual curiosity to learn about relevant emerging IT trends, such as Artificial Intelligence, and solve customer problems in innovative ways
Effective verbal and written communication skills required
Certified Information Systems Security Professional (CISSP) and Certified Information Security Manager (CISM) or related certifications strongly desired
Compensation
Estimated Pay Range:
Exact compensation and offers of employment are dependent on circumstances of each case and will be determined based on job-related knowledge, skills, experience, licenses or certifications, and location.
Our Commitment to Diversity & Inclusion
At Milestone we strive to create a workplace that reflects the communities we serve and work with, where we all feel empowered to bring our full, authentic selves to work. We know creating a diverse and inclusive culture that champions equity and belonging is not only the right thing to do for our employees but is also critical to our continued success.
Milestone Technologies provides equal employment opportunity for all applicants and employees. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, gender, gender identity, marital status, age, disability, veteran status, sexual orientation, national origin, or any other category protected by applicable federal and state law, or local ordinance. Milestone also makes reasonable accommodations for disabled applicants and employees.
We welcome the unique background, culture, experiences, knowledge, innovation, self-expression and perspectives you can bring to our global community. Our recruitment team is looking forward to meeting you.
Milestone Technologies is a global IT managed services firm that partners with organizations to scale their technology, infrastructure and services to drive specific business outcomes such as digital transformation, innovation, and operational agility. Milestone is focused on building an employee-first, performance-based culture and for over 25 years, we have a demonstrated history of supporting category-defining enterprise clients that are growing ahead of the market. The company specializes in providing solutions across Application Services and Consulting, Digital Product Engineering, Digital Workplace Services, Private Cloud Services, AI/Automation, and ServiceNow. Milestone culture is built to provide a collaborative, inclusive environment that supports employees and empowers them to reach their full potential.
Our seasoned professionals deliver services based on Milestone's best practices and service delivery framework. By leveraging our vast knowledge base to execute initiatives, we deliver both short-term and long-term value to our clients and apply continuous service improvement to deliver transformational benefits to IT. With Intelligent Automation, Milestone helps businesses further accelerate their IT transformation. The result is a sharper focus on business objectives and a dramatic improvement in employee productivity. Through our key technology partnerships and our people-first approach, Milestone continues to deliver industry-leading innovation to our clients. With more than 3,000 employees serving over 200 companies worldwide, we are following our mission of revolutionizing the way IT is deployed.
Job Overview
Reporting to the Chief Operating Officer (COO), with a matrix reporting relationship to the India-based Development Centre Leader and Regional General Manager, this role serves as the focal point for Information Security policy and internal operations for Milestone globally.
Define, implement, and manage a comprehensive IT security program that supports corporate business objectives, ensures adherence to regulatory requirements, and continually focuses on improving our security posture
Collaborate with global, cross-functional teams and senior business leaders to provide the corporate vision and define the Information Security strategy; effectively balance the business needs of our internal stakeholders and customers in addition to focusing on adherence to regulatory and compliance needs
Use a risk-based approach to provide leadership, direction, and prioritization in assessing and evaluating information security risks across the organization with a high level of integrity and discretion, positioning the identified risks with executives and ensuring the execution of the agreed upon mitigation/remediation steps
Socialize the resulting strategy to create alignment and support for these goals and initiatives, communicating regularly to ensure that leadership at all levels is informed about efforts and trends impacting the overall effectiveness of the information security programs; determine critical performance criteria and metrics
Identify and advocate for investments to achieve the security strategy by aggressively managing capital and operating budgets and providing thorough ROI analyses to recommended new IT spending, as appropriate
Assume responsibility for the ongoing development and implementation of the information security project portfolio, incident response and security policy frameworks, security compliance activities, threat and vulnerability management, as well as administration of the Milestone information security training and awareness program, providing specialized triaging in areas of high sensitivity
Define, drive, and manage the corporate information security technology architecture spanning security solutions across the enterprise, continually keeping abreast of new solutions and positioning them within the enterprise
Define security requirements to allow for corporate and external service compliance to industry standards, including HIPAA, PCI, SOC2, SOX, Privacy Shield, GDPR, and other regulatory data handling
Evangelize compliance requirements across the enterprise, partnering with cross-functional teams to ensure compliance across the enterprise and, when required, lead these teams in cross-functional efforts
Ensure execution of required testing and auditing activities by internal and external parties, leading to the successful certification of the company on an ongoing basis
Lead, recruit, mentor and develop an IT Compliance Analyst (Hyderabad) to assist with IT Security and Compliance tasks
Requirements
Bachelor's Degree
15+ years of relevant industry experience
Seasoned information security expert with a solid external reputation who has built/led a broad security organization, set strategic direction at the executive level, engaged with senior leaders, influenced/gained consensus on critical initiatives, and has a record of measurable results
Technically conversant and able to be hands-on with a demonstrated track record of success in an organization of similar size and scale that influenced growth, strategic direction, and change
Experience implementing risk management programs that can effectively identify, prioritize, and manage security-related risks for the business; e.g., SOX, PCI-DSS, HIPAA, and GLBA
Experience implementing information security management frameworks (e.g., ISO/IEC 27001, ISO/IEC 27017/27018, CIS, NIST 800-53, etc.)
Demonstrated experience with developing and implementing an information security awareness and training program
Demonstrated success working with internal audit, external auditors, outside consultants, and legal affairs in a lead capacity
Demonstrated experience with large-scale projects and transformational initiatives
Self-starter who can effectively function with minimal day-to-day oversight and who thrives on a dynamic and aggressive business challenge
Strong intellectual curiosity to learn about relevant emerging IT trends, such as Artificial Intelligence, and solve customer problems in innovative ways
Effective verbal and written communication skills required
Certified Information Systems Security Professional (CISSP) and Certified Information Security Manager (CISM) or related certifications strongly desired
Compensation
Estimated Pay Range:
Exact compensation and offers of employment are dependent on circumstances of each case and will be determined based on job-related knowledge, skills, experience, licenses or certifications, and location.
Our Commitment to Diversity & Inclusion
At Milestone we strive to create a workplace that reflects the communities we serve and work with, where we all feel empowered to bring our full, authentic selves to work. We know creating a diverse and inclusive culture that champions equity and belonging is not only the right thing to do for our employees but is also critical to our continued success.
Milestone Technologies provides equal employment opportunity for all applicants and employees. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, gender, gender identity, marital status, age, disability, veteran status, sexual orientation, national origin, or any other category protected by applicable federal and state law, or local ordinance. Milestone also makes reasonable accommodations for disabled applicants and employees.
We welcome the unique background, culture, experiences, knowledge, innovation, self-expression and perspectives you can bring to our global community. Our recruitment team is looking forward to meeting you.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.