AVP, Cybersecurity

We seek an AVP of Cybersecurity to join the Cox Communications and RapidScale family. This role will report directly to the SVP/CISO of Cox Communications and will serve the RapidScale business on a daily basis with a dotted line report to the SVP/President of RapidScale. The AVP will be responsible for providing leadership and management of the cyber security program across RapidScale and aligning with Cox Communications cybersecurity strategy using industry best practice, shared security tools, standards and processes. This role includes responsibility for executing the cyber security program across RapidScale's internal enterprise, products and customer-facing portfolio. The role with leverage a combination of direct team, shared services team and influence/work through other RapidScale technical teams to achieve program objectives. This leader will also have a key role in supporting customer inquiries about the state of internal controls at RapidScale and will also represent RapidScale in external customer and industry forums. Key decisions are reviewed by the CCI CISO to ensure alignment with broader organizational goals.
PRIMARY RESPONSIBILITIES AND ESSENTIAL FUNCTIONS:

• Serve as the primary security champion for all cyber functions to the RapidScale leadership team and bring accurate information back to the broader CCI team for integration into the strategic security plan to align with RapidScale business objectives.
• Represent the company's security posture during sales/renewal cycles to build customer trust and engagement. Be a trusted partner and resource to existing customers in understanding their cyber requirements and needs.
• Work with a cross-functional set of stakeholders to ensure comprehensive cybersecurity risk management for RapidScale aligned with CCI standards and industry's best practices. Ensure visibility of risk status is presented to RapidScale senior leaders to gain approval on remediation timeframes and items for risk acceptance.
• Ensure the maintenance of all existing RapidScale compliance certifications, regulatory requirements, and annual audits.
• Manage the RapidScale components of the comprehensive communication and reporting framework for Cox Communications' and Cox Enterprises' Enterprise Risk Management process.
• Deliver RapidScale objectives within Cox Communications' information risk management program.
• Facilitate remediation of incident related items under the direction of the CCI incident response team. Participate in customer interactions.
• Utilize Cox Communications' security strategy to develop and manage the information security project portfolio projects specific to RapidScale.
• Integrate incident response, security operations center and threat intelligence into the CCI core team.
• Leverage Cox Communication's information security training and awareness program adding relevant content as needed for RapidScale specific nuanced requirements.
• Serve as the liaison for RapidScale security delivery, coordinating with RapidScale business leaders and other Cox-related security functions on necessary committees and programs.
• Ensure technical teams are implementing and maintaining critical cyber controls such as patching, PAM, etc into their platforms and environments and provide them visibility to the status on an ongoing basis.
• Provide high level consultation and leadership to systems, design engineers, and implementation teams within RapidScale ecosystem.
• Provide guidance to RapidScale internal technical security functions (platform, infrastructure), ensuring alignment with technology architecture peer groups and Cox Communications core security teams.
• Ensure RapidScale delivery aligns with Cox Communications' overall risk program, providing oversight and direction to short-term initiatives.
• Decision-Making Authority - Recommends strategies and solutions to achieve business outcomes in alignment with Cox Communications' strategic plans, policies, and guidelines. Proposes changes to plans or goals within the respective business unit, after ensuring alignment with core CCI security functions.
• Financial Management - Develop and manage an operating plan and budget of small size and complexity. Accountable for the short- and long-term financial performance of a business segment or the efficiency and effectiveness (ROI) of a function.

QUALIFICATIONS AND EXPERIENCE:
Minimum

• Bachelor's degree in a related discipline (i.e. Cybersecurity, Computer Science, IT Management) and 14 years' experience in a related field with at least 7 years' experience in a leadership role.
  • The right candidate could also have a different combination, such as a master's degree and 12 years' experience; or 18 years' experience in a related field in lieu of degree
• At least one relevant and current industry professional certification - CRISC, CISA, CISSP, etc.
• Demonstrated ability to execute an information security strategy and mission for moderately complex organizations.
• Proven capability to leverage internal teams or outsourced providers to achieve complex security and business objectives.
• Experience with SSAE 18 SOC II or similar frameworks.
• Successful track record in leading security initiatives that require collaboration with technical groups, business units, and industry partners.
• Expertise in implementing and managing communication frameworks that effectively deliver security messages across all levels of management.
• Ability to develop security plans that integrate seamlessly with product and system development lifecycles.
• Experience in managing the development of security architectures for both large enterprise and customer-centric environments.
• Skill in developing and implementing security policy frameworks, standards, procedures, and benchmarks.
• Competence in developing risk management programs that effectively identify, prioritize, and manage security-related risks for the business.
• Working knowledge of strategic planning, operations planning, business analysis, and general business consulting principles.
• Experience and understanding in the managed cloud technology space a plus.

USD 212,000.00 - 353,400.00
Compensation:
Compensation includes a base salary of $212,000.00 - $353,400.00. The base salary may vary within the anticipated base pay range based on factors such as the ultimate location of the position and the selected candidate's knowledge, skills, and abilities. Position may be eligible for additional compensation that may include an incentive program.
Benefits:
The Company offers eligible employees the flexibility to take as much vacation with pay as they deem consistent with their duties, the company's needs, and its obligations; seven paid holidays throughout the calendar year; and up to 160 hours of paid wellness annually for their own wellness or that of family members. Employees are also eligible for additional paid time off in the form of bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, and parental leave.
Applicants must currently be authorized to work in the United States for any employer without current or future sponsorship.