Chief Information Security Officer

About the position

The National Association of Insurance Commissioners (NAIC) is seeking a Chief Information Security Officer (CISO) to lead and manage the operations of the Security team. This pivotal role involves establishing strategic plans that align with the corporate strategy and inspiring team members through a compelling vision and strategic direction. The CISO will be responsible for designing, implementing, and evaluating comprehensive information security and disaster recovery programs, while also promoting a culture of information security awareness throughout the organization. In this role, the CISO will oversee the integration of security measures into the organization's broader strategic business and financial plans, ensuring that departmental financial goals are met. The position requires strong leadership skills to guide multiple teams, manage change effectively, and develop risk mitigation strategies. The CISO will also play a crucial role in attracting, developing, and retaining top talent, while fostering partnerships and networks through strategic influence. Collaboration is key, as the CISO will coordinate with various federal, state, public, and private entities, including state insurance departments, on cybersecurity matters. The CISO will participate in the assessment and acceptance of security risks, communicate these risks to senior leadership and the board, and coordinate annual testing of the organization's security defenses. Additionally, the CISO will direct the activities of the Internal Security Committee (ISC) to evaluate security risks and recommend enhancements to security measures.