VerTALENTS - Atlanta, GA
posted 27 days ago
Full-time - Senior
Atlanta, GA
About the position
The Director of Information Security is a key leadership role responsible for overseeing all aspects of cybersecurity, governance, risk management, and data privacy within the organization. This position is designed for a seasoned leader aiming for a Chief Information Security Officer (CISO) role, focusing on developing and implementing security strategies, managing risks, and ensuring compliance with industry regulations. The role requires a blend of technical expertise, leadership skills, and a strategic mindset to protect the organization's information assets and support its technology initiatives.
Responsibilities
- Develop and own the organization-wide Information Security strategy, policies & procedures (GRC).
- Identify, assess, and prioritize cybersecurity risks to the organization's information assets.
- Lead incident response efforts and investigations to resolve security incidents.
- Support the sales team during RFPs and presales discussions, conducting vendor risk evaluations.
- Manage Managed Service Providers (MSPs) in various security capabilities including EDR, NDR, and IAM.
- Develop and execute a strategic cybersecurity roadmap to protect SaaS products and data assets.
- Establish and enforce security policies and procedures to ensure compliance with industry regulations.
- Design, evaluate, and architect modern security systems for both colocation and public cloud environments.
- Coordinate with external and internal partners on security workflows and playbooks.
- Function as the leader of the cyber response team supporting investigations of cyber events.
- Analyze and assess cyber threats and conduct regular risk assessments.
- Coordinate with vendors for penetration tests and application security evaluations.
- Implement employee training to enhance cybersecurity awareness.
- Protect customer and intellectual property data by developing Data Access and Data Privacy standards.
- Maintain a comprehensive library of security policies and procedures.
- Provide regular reports on the organization's cybersecurity posture to executive leadership.
- Coordinate and conduct regular security audits and assessments.
Requirements
- 5+ years of progressive experience with security technology management and operations.
- Experience with managing and operating endpoint security platforms and intrusion detection/protection systems.
- One or more industry certifications such as CISSP, CISM, or CISA are required.
- Strong knowledge of HIPAA, NIST CSF, PCI, and CIS frameworks.
- Prior experience planning and developing security processes and procedures.
- Strong knowledge of secure cloud practices, specifically in AWS and Azure.
- Effectiveness in incident response and threat intelligence programs.
- Excellent troubleshooting skills and self-motivated.
- Effective verbal and written communication skills.
Nice-to-haves
- Experience with change and incident management processes.
- Proven organization planning and transformational leadership abilities.
- Demonstrated experience with commercial security technologies such as Microsoft, AWS, and Palo Alto.
Benefits
- Competitive salary range of $119K - $150K per year.
- Opportunity for career advancement towards a CISO position.
- Flexible work location options between Atlanta, GA and Boca Raton, FL.
