Chief Information Security Officer (CISO)

Baker Tilly Advisory Group, LP - Washington, DC

posted 11 days ago

Full-time - Executive
Washington, DC
10,001+ employees

About the position

The Chief Information Security Officer (CISO) at Baker Tilly Advisory Group, LP is a newly created executive role responsible for developing and implementing an enterprise-wide cybersecurity strategy. This position is crucial for protecting the organization's digital assets, intellectual property, and sensitive information. The CISO will lead the information security function, manage cybersecurity risks, and ensure compliance with regulatory and industry standards while aligning security initiatives with business goals.

Responsibilities

  • Develop, implement, and maintain a comprehensive cybersecurity strategy that supports business objectives and reduces risk across the organization.
  • Serve as the executive leader responsible for information security, guiding senior leadership on cybersecurity issues, governance, and risk management.
  • Lead the security incident response program, including planning, detection, response, and recovery to cyber threats.
  • Identify, assess, and mitigate security risks to the organization's information systems and data.
  • Lead the cybersecurity operations committee, providing input into the enterprise risk management process.
  • Inform the risk committee and board of directors on cybersecurity risks, initiatives, and material incidents.
  • Measure and maintain compliance with relevant regulations, standards, and legal requirements (e.g., GDPR, HIPAA, SOX, PCI-DSS).
  • Collaborate with legal, privacy, audit, information technology, compliance, and other teams to ensure alignment between security practices, regulatory expectations, and risk tolerance.
  • Oversee the day-to-day operations of the information security team, including monitoring, threat intelligence, incident response, and vulnerability management.
  • Ensure the continuous improvement of security tools, technologies, and processes.
  • Manage and oversee risk assessments, penetration testing, red teaming, and audits to validate the organization's security posture.
  • Collaborate with IT and engineering teams to integrate security into all system designs, architectures, and software development lifecycles.
  • Build and lead a high-performing information security team, fostering a culture of accountability, transparency, and innovation.
  • Act as the spokesperson for cybersecurity within the organization, ensuring clear communication with executive leadership, the board of directors, and employees.
  • Select and manage security technology vendors and third-party service providers.

Requirements

  • Bachelor's degree with a preferred emphasis in information technology, computer science, cybersecurity, privacy or related field.
  • 10+ years of experience in cybersecurity, including at least 3 years as a chief information security officer.
  • Strong understanding of risk management, cybersecurity governance, and regulatory compliance.
  • Proven experience with incident response, disaster recovery, and business continuity planning.
  • Expertise in security technologies, including cloud, data security, monitoring, and identity/access management.
  • Excellent communication and presentation skills, with the ability to convey complex security issues to non-technical stakeholders.

Nice-to-haves

  • Experience working with business leaders and board directors on cybersecurity matters.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service