CISO
City of Cary, NC - Cary, NC
posted 4 days ago
About the position
Come join the local government that continues to inspire its citizens, employees, and others! Cary's award-winning Information Technology team remains at the cutting edge of technology, integration, and innovation. Transforming the Town into a Smart City is representative of our commitment to better serving Cary's citizens and surrounding communities. As we evolve, we also need to grow our team to ensure a continuation of quality service. Therefore, we are seeking an experienced CISO, a security expert who understands the challenges and complexities of securing information technology systems that utilize emerging technologies such as Internet of Things (IoT), Artificial Intelligence (AI), and Machine Learning (ML). The CISO will lead the development, implementation, and management of our organization information security program and will play a critical role in protecting our organization sensitive data and critical infrastructure from cyber threats and other security risks. This role will be vital in supporting Cary to remain at the top of the arc. At Cary, we believe in placing a special emphasis on hiring the best and therefore cultivating a culture that allows everyone to be their best. With an incredibly talented and gifted workforce that embodies the OneCary Values, People First, Working Smart, Evolution, and Anyone Can Lead, we are constantly working towards creating the local government that doesn't exist! Cary's support of our diverse workforce and providing employees with choice is representative of our amazing benefits package and competitive salaries! Our highly comprehensive total compensation package is unprecedented, allowing Cary to value and support our employees' whole selves, and sets us apart as an employer of choice. If you are a motivated and experienced information security professional looking for a challenging and rewarding opportunity, we encourage you to apply!
Responsibilities
- Develop, implement, and maintain comprehensive information security policies, procedures, and guidelines, considering the security implications of emerging technologies and operational requirements.
- Manage the creation and regular updates of business continuity plans (BCP), incident response plans (IRP) and disaster recovery plans (DRP) to ensure organizational resilience.
- Provide strategic direction for the organization's security program, ensuring alignment with broader operational and organizational goals.
- Lead and manage the Security and Network and Operations teams, integrating network performance, reliability, and security into the organization's overall IT strategy.
- Provide leadership for the organization's security operations, ensuring collaboration between security, network, and operational teams for a unified approach to IT management.
- Develop and execute a robust security awareness and training program for all employees.
- Provide mentorship and training opportunities for Network and Operations team members to enhance their knowledge of security best practices.
- Collaborate with departments and stakeholders to ensure the security of municipal systems and data, including coordinating security assessments and penetration testing.
- Manage the integration of operational security measures into network management and IT operations.
- Monitor and respond to security incidents and operational disruptions, leading investigations and recommending remediation actions.
- Implement proactive measures to mitigate emerging threats while ensuring network and operational uptime.
- Establish and maintain relationships with external stakeholders, including vendors, partners, and regulatory bodies.
- Ensure compliance with all relevant legal and regulatory requirements related to information security, network operations, and IT management.
- Stay current on emerging threats, security technologies, and advancements in network management. Recommend and implement actions to enhance the security and efficiency of municipal systems.
- Provide regular reports and updates to senior leadership on the status of the security and network operations program, including identified risks and incidents.
Requirements
- Graduation from an accredited college or university with a Bachelor's degree in Computer Science or Information Security.
- Extensive progressive experience in Information Security.
- Minimum of 5 years of experience in leadership and management roles within Information Security.
Nice-to-haves
- Relevant certification such as Certified Information Systems Security Professional (CISSP) or CompTIA Security+.
- Experience in a Municipal or Government IT Environment.
Benefits
- Comprehensive total compensation package.
- Support for a diverse workforce.
- Competitive salaries.
