The Virtual Chief Information Security Officer serves as the process owner of all our client's activities related to the availability, integrity and confidentiality of customer, business partner, employee and business information in compliance with the organization's information security policies. A key element of the virtual CISO's role is working with executive management to determine acceptable levels of risk for the organization. This position is responsible for establishing and maintaining a corporate-wide information security management program to ensure that information assets are adequately protected.
Responsibilities:
- Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program.
- Work directly with the business units to facilitate risk assessment and risk management processes.
- Develop and enhance an information security management framework.
- Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems and services.
- Provide leadership to the enterprise's information security organization.
- Partner with business stakeholders across the company to raise awareness of risk management concerns.
- Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems.
Requirements:
- Degree in business administration or a technology-related field required.
- Professional security management certification.
- Minimum of eight to 12 years of experience in a combination of risk management, information security and IT jobs.
- Knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST.
- Excellent written and verbal communication skills and high level of personal integrity.
- Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams.
- Experience with contract and vendor negotiations and management including managed services.
- Specific experience in Agile (scaled) software development or other best in class development practices.
- Experience with Cloud computing/Elastic computing across virtualized environments.
Framework Security is an Equal Opportunity Employer
What We Do
At Framework Security, we take a proactive approach to cybersecurity, working with organizations to identify potential vulnerabilities and implementing measures to prevent attacks before they happen. In the event of a security incident, we offer rapid response services to minimize damage and get businesses back up and running as quickly as possible.
Our services include cybersecurity framework assessments, penetration testing, virtual CISO services, incident response, and more. We also offer ongoing consultation and support to ensure our client's security postures remain strong over time.
Our top priority is protecting our clients assets, bottom lines, and reputations, so they can focus on growing their businesses with confidence. Visit us at www.frameworksec.com to learn more.
Why Work With Us
Framework Security offers a dynamic and inclusive company culture that encourages innovation, creativity, and collaboration. We value diversity and strive to create an environment where all team members feel empowered to contribute their unique perspectives and ideas.
Gallery
