Chief Information Security Officer

Job Description

The Chief Information Security Officer (CISO) is responsible for establishing and maintaining a corporate-wide information security management program to ensure that information assets are adequately protected.

This position requires a strong background in and technical knowledge of information security, excellent communication skills, and the ability to understand complex business and technical processes.

The ideal candidate will develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program.

Key responsibilities include

• Developing and publishing up-to-date information security policies, standards, and guidelines
• Managing security incidents and events to protect corporate IT assets
• Providing direction, support, and consulting for development and implementation plans and procedures for business continuity and disaster recovery
• Defining and facilitating the information security risk assessment process
• Creating, communicating, and implementing a risk-based process for vendor risk management
• Providing strategic risk guidance for IT projects from a security standpoint

The CISO will report into the General Counsel of the company and work closely with other leads to implement practices that meet defined policies and standards for information security.