The Vice President of Information Security will be responsible for leading and managing all aspects of our information security program. Reporting directly to our Chief Legal Officer and General Counsel, and sitting on the staff of the SVP Engineering, the VP of Information Security will play a key role in evolving and implementing our strategic vision for corporate information security, to ensure the confidentiality, integrity, and availability of our information assets.

Responsibilities:

  1. Develop and implement a comprehensive information security strategy and roadmap aligned with business objectives and regulatory requirements.
  2. Establish, develop and maintain policies, standards, procedures, and guidelines to ensure effective information security management across the organization.
  3. Lead a team of cybersecurity professionals, providing guidance, mentoring, and professional development opportunities to ensure a high-performing and motivated team.
  4. Oversee the design, implementation, and maintenance of security controls, technologies, and processes to protect against threats, vulnerabilities, and cyber attacks.
  5. Collaborate with cross-functional teams, including Engineering, Compliance, IT, Legal and business units, to integrate security into the overall enterprise architecture and business processes.
  6. Conduct regular risk assessments, vulnerability scans, and penetration tests to identify and mitigate security risks and compliance gaps.
  7. Monitor and analyze security events and incidents, leading incident response and investigation efforts to minimize the impact and prevent recurrence.
  8. Stay abreast of emerging cybersecurity threats, trends, and best practices, and evaluate new technologies and solutions to enhance our security posture.
  9. Serve as the primary point of contact for internal and external stakeholders on information security matters, including executive leadership, board of directors, customers, partners, and regulators.
  10. Prepare and present regular reports and updates on the status of information security initiatives, key metrics, and performance indicators to senior management and relevant committees.

Required Skills:

  • Bachelor’s degree in Computer Science, Information Technology, or a related field; Master’s degree preferred.
  • Industry-recognized certifications such as CISSP, CISM, or CISA required; additional certifications such as CCISO or CEH preferred.
  • Proven track record of at least 10 years in progressively responsible roles in information security in the cloud computing industry, with at least 5 years of experience in a leadership capacity.
  • Deep understanding of cybersecurity and data privacy principles, technologies, and frameworks, including ISO 27000 series, AICPA Trust Services Criteria / SOC 2, and GDPR.
  • Strong knowledge of regulatory requirements and industry standards related to information security, privacy, and data protection.
  • Excellent leadership, communication, and interpersonal skills, with the ability to influence and collaborate effectively at all levels of the organization.
  • Demonstrated ability to think strategically, solve complex problems, and make data-driven decisions in a fast-paced and dynamic environment.
  • Experience in developing and managing budgets, vendor relationships, and third-party service providers related to information security.
  • Proven ability to build and maintain a positive security culture, fostering awareness, accountability, and continuous improvement throughout the organization.
  • Experience assessing and achieving FedRAMP authorization preferred.
Job Overview
Job alerts

Subscribe to our weekly job alerts below and never miss the latest jobs

Sign in

Sign Up

Forgotten Password

Job Quick Search

Cart

Basket

Share