Chief Information Security Officer

Job Title : Chief Information Security Officer

Location : Charlotte, NC

Duration : Full Time/Permanent

Responsibilities:

• Build and maintain effective relationships with business and technology stakeholders. Partner with the stakeholders across the company to raise awareness of risk management concerns.
• Develop and enhance an information security management framework (such as ISO, SOC2, etc.)
• Assist with the overall business technology planning by providing a current knowledge and future vision of technology and systems.
• Mitigate the risks various security threats pose to the organization's mission and goals.
• Developing secure business and communication practices, objectives, and metrics.
• Ability to develop and interpret standards, policies, and procedures and analyze systems and procedures, write and review standards and procedures, handle multiple projects.
• Work with external audit firms to achieve and maintain compliance accreditations.
• Manage client security assessments and develop internal security training programs and maintain materials for end-users.
• Stay current on security practices, threat landscape, laws, and regulations.
• Knowledge of network security threats and ability to implement preventative controls including firewalls, access controls, authentication systems, intrusion detection systems, VPNs, cryptography, etc.
• Ability to resolve advanced security issues in diverse and fast-paced environments.
• The ability to build good relationships at all levels and across all business units and organizations, and the ability to influence stakeholders of all levels.

Requirements:

• Minimum of 10 years of experience in a combination of risk management, information security, and IT jobs.
• 2 to 4 years of CISO experience at any bank with over $20B in asset size. OCC expertise is preferred.
• Advanced knowledge in the information security domain.
• Experience implementing an internal information security program preferred.
• Knowledge of common information security management frameworks, such as ISO/IEC 27001/27002, and NIST.
• Experience with Zero Trust Security tools like Zscaler is desirable.
• Familiarity with security tools such as SecureFrame and KnowBe4 is a plus.
• Excellent written and verbal communication skills and high level of personal integrity
• Innovative thinking and leadership with an ability to lead and motivate cross-functional teams.
• Specific experience in Agile (scaled) software development practices.
• Experience with cloud hosting environments such as AWS, Azure, etc.
• Experience in implementing SOC2 compliance is an added advantage. Specific experience in Agile (scaled) software development practices.
• Experience with cloud hosting environments such as AWS and Azure.
• Experience in implementing SOC2 compliance is an added advantage.

Qualifications:

• Bachelor s degree in information systems, business administration or a technology-related field is required.
• Professional security management certification is essential.