Chief Information Security Officer

Diligent Partners - Los Angeles, CA

posted about 1 month ago

Full-time - Senior
Los Angeles, CA
Administrative and Support Services

About the position

The Chief Information Security Officer (CISO) at NantMedia Holdings will play a pivotal role in establishing, leading, and maintaining the information security program to protect the company's information data assets and associated technology, applications, systems, infrastructure, and processes. This position is crucial in the innovative digital ecosystem in which NantMedia operates, ensuring that all information assets are adequately protected while driving and enabling the business objectives of the organization. The CISO will be responsible for identifying, evaluating, and reporting on legal and regulatory, IT, and cybersecurity risks to information assets, thereby safeguarding the integrity and confidentiality of the company's digital assets. In this role, the CISO will develop and implement a world-class information security program that aligns with NantMedia's digital objectives. This program will encompass various aspects, including governance, data collection and privacy, leadership on security issues, strategy setting, framework development, and the operation of the information security function. The CISO will facilitate an information security governance structure, ensuring that security requirements are integrated into contracts and that all employees receive targeted security awareness training. The position also involves overseeing data collection practices, partnering with legal teams to ensure compliance with data protection laws, and leading the information security function across the enterprise. The CISO will be tasked with developing an information security vision and strategy that aligns with organizational priorities, managing the budget for the information security function, and creating a risk-based process for assessing and mitigating information security risks. Additionally, the CISO will build and nurture external networks with industry peers and relevant parties to address common cybersecurity risks and trends. This role requires a strategic leader who can effectively communicate with technical staff and senior management, ensuring that the organization maintains a strong security posture and is prepared for emerging threats.

Responsibilities

  • Develop and implement a world-class information security program that enables the digital objectives of NantMedia while ensuring the confidentiality, integrity, and availability of digital assets.
  • Facilitate an information security governance structure through the implementation of a hierarchical governance program, including the formation of an information security steering committee.
  • Work with purchasing and legal to ensure that information security requirements are included in contracts.
  • Create and manage a targeted information security awareness training program for all employees, contractors, and approved system users.
  • Oversee data collection, use, sharing, management, retention, and protection practices and policies.
  • Lead the information security function across the enterprise to ensure consistent and high-quality information security management.
  • Develop an information security vision and strategy that is aligned to organizational priorities.
  • Develop and enhance an up-to-date information security management framework based on COBIT/Risk IT and NIST Cybersecurity Framework.
  • Build and nurture external networks consisting of industry peers, ecosystem partners, vendors, and other relevant parties.
  • Create a risk-based process for the assessment and mitigation of any information security risk in the ecosystem.

Requirements

  • CISSP certification required.
  • Minimum of 8 to 12 years of experience in information security and IT.
  • Bachelor's degree in a related field.
  • Experience as a strategic leader and builder of both vision and bridges.
  • Sound knowledge of business management and a working knowledge of information security risk management and cybersecurity technologies.
  • Strong communication skills with a proven ability to understand key concepts and communicate effectively with technical staff and senior management.

Nice-to-haves

  • Master's degree
  • CISM certification desired
  • Experience in Banking, Government, Financial Industry, Cyber Response or Forensics
  • Experience in managing and supporting data incidents and breaches
  • IAPP certification(s) a plus

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service