Sorry, this listing is no longer accepting applications. Don’t worry, we have more awesome opportunities and internships for you.

CISO & AVP, INFRASTRUCTURE OPERATIONS

A

Augsitions

CISO & AVP, INFRASTRUCTURE OPERATIONS

Raleigh, NC
Full Time
Paid
Similar Jobs
  • Responsibilities

    DESCRIPTION

    AugSitions™ staffing agency seeks a dedicated CISO & AVP, INFRASTRUCTURE OPERATIONS for one of the top privately-owned specialty insurance companies in the US.  With over thirty offices across the country and a commitment to supporting their clients through innovation, stability, and profitable growth, they provide property and casualty and surety bond products for businesses and individuals all over the nation.

    The CISO & AVP, Infrastructure Operations role is a critical leadership position. You will direct the teams in charge of information security, cloud services, compute & backup services, network services, unified communications, and infrastructure monitoring.

    The ideal candidate will possess experience providing technical expertise and executive leadership to all aspects of information security and IT infrastructure operations. You will be responsible for establishing and maintaining the information security strategy, architecture, and multi-year roadmap that ensures that the company's information assets are adequately protected. The person who owns this role will also be responsible for ensuring the availability, integrity, and scalability of all IT systems and infrastructure.

    RESPONSIBILITIES CISO RESPONSIBILITIES:

    • Develop and implement a strategic, long-term information security strategy and roadmap to ensure the company's information assets are adequately protected.
    • Work with senior leaders across the business and IT to assess and communicate acceptable levels of risk.
    • Chair the company's security steering committee.
    • Identify, evaluate, and report information security risks to the Security Committee and Board. Provide subject matter expertise regarding security standards and best practices (e.g., NY DFS Cybersecurity Regulations).
    • Lead the development of up-to-date information security policies, procedures, standards, and guidelines, and oversee their approval, dissemination, and maintenance.
    • Monitor the industry and external environment for emerging threats and advise relevant stakeholders on appropriate courses of action.
    • Champion the enterprise information security program and foster a security-aware culture.
    • Oversee the evaluation, selection, and implementation of information security solutions that are innovative, cost-effective, and minimally disruptive.
    • Partner with enterprise architects, infrastructure, and applications teams to ensure that technologies are developed and maintained according to security policies and guidelines.
    • Manage regular intrusion detection and vulnerability reporting, internal and external IT audit group reviews, and coordinate all necessary fixes.
    • Develop business metrics to measure the security management program's effectiveness and increase the cybersecurity program's maturity over time.
    • Lead the periodic automated and manual security vulnerability assessments to identify patch, configuration, and code-related security vulnerabilities.
    • Liaise with external auditing agencies to ensure that the organization maintains a strong security posture.
    • Oversee incident response planning and investigate security breaches and assist with any associated disciplinary and legal matters.
    • Oversee and lead the creation, communication, and implementation of a process for managing vendor risk and other third-party risks.
    • Lead due diligence and post-integration activities related to information security for all M&A activity.
    • Lead or commission activities relating to contingency planning, business continuity management, and IT disaster recovery in conjunction with relevant functions and third parties.

    INFRASTRUCTURE OPERATIONS RESPONSIBILITIES:

    • Accountable for a high-performing computing infrastructure companywide. This includes, but is not limited to, planning and management of computer operations and production support, business continuity, network operations, telecom, and cloud services.
    • Collaborate with the VP of Infrastructure and the Platform Engineering Director to help develop strategic and tactical solution plans for IT, especially future technology infrastructure.
    • Conduct strategic and tactical level planning in partnership with peers in IT Infrastructure to develop a technical roadmap and ensure delivery of supportable technology solutions that meet business needs.
    • Partner with the VP of Infrastructure and the Platform Engineering Director to build and modernize the organizational structure and business processes to support our growth in an increasingly digital world.
    • Manage the evaluation and adoption of emerging technologies, including cloud, software-defined networking, high-performance computing, and the latest collaboration technologies.
    • Develop and lead a high-performing infrastructure operations team to ensure the reliable delivery of IT services and operations.
    • Establish, maintain and execute operations procedures that leverage efficiencies and best practices.
    • Oversee infrastructure service management activities, including incident, change, and request management.
    • Oversee the direction of infrastructure investments in collaboration with team members, VP of Infrastructure, and the Platform Engineering Director.
    • Oversee cybersecurity protections on all IT infrastructure resources according to policies and standards.
    • Work with the Delivery team to help drive significant technology and infrastructure projects and service management improvements.
    • Implement and maintain controls and monitoring procedures to ensure availability of critical systems and minimal service interruptions.

    QUALIFICATIONS AND REQUIREMENTS

    • Bachelor's Degree in computer science, engineering, or a related field
    • Certifications such as CISSP, CISM, CISA
    • Minimum 15 years of IT Infrastructure and IT Development leadership experience
    • 10+ years of information security/cybersecurity experience.
    • A background in technical IT roles such as IT architecture, development, or infrastructure operations, with a clear and abiding interest in information security, is preferred.
    • A proven track record in developing information security policies and procedures and successful execution.
    • Extensive knowledge of business risk, risk assessment, and risk-based decision-making.
    • Able to communicate security and risk-related concepts to technical and non-technical audiences (in business terms), including board level.
    • Ability to evangelize IT security to make it a critical part of business operations; build trust and respect for the security function.
    • Ability to effectively prioritize and execute tasks in high-pressure situations.
    • Knowledge of security, risk, and control frameworks and standards such as NIST, Center for Internet Security Critical Security Controls, and ITIL.
    • Security technology acumen and experience including but not limited to: firewall, intrusion detection, cyber-attack tools and defenses, encryption, certificate authority, web filtering, anti-malware, anti-phishing, identity and access management, multi-factor authentication.
    • Substantial experience leading, directing, and controlling a complex, highly technical operational organization.
    • Understanding of cloud, IaaS, PaaS, and SaaS architectures, and their implications on information security strategy.
    • Extensive knowledge of infrastructure systems and operations, cloud computing and cloud operations, networking, virtualization, disaster recovery, business continuity, Unified Communications, and infrastructure monitoring.
    • A track record of working collaboratively and productively with business partners.
    • Trustworthy with high standards of personal integrity.
    • Demonstrate excellent written and verbal communication, interpersonal and collaborative skills.
    • Contract and vendor negotiations experience.

    TRAVEL REQUIREMENTS

    • TBD

    POSITION TYPE: Full-Time

    JOB FUNCTION: Information Security Specialist

    LOCATION: Raleigh, North Carolina

    BENEFITS: Our client offers generous benefits and a highly competitive compensation package.

    ADDITIONAL NOTE: VISA SPONSORSHIP IS NOT OFFERED FOR THIS POSITION.

    YOUR SUCCESS IS OUR PRIORITY!

    AugSitions™ specializes in recruiting and staffing premier Healthcare Informatics, Financial Services, and InfoTech professionals.   Focus, Clarity, Passion, Purpose, and Drive are our core values and the foundation of everything we stand for as your trusted partner, advisor, and capable human resource.  Our staffing solutions bring top-tier employers and candidates together to support their mutual efforts toward success.

    Questions? Please contact our corporate headquarters at 1-972-316-9718. All applicants applying for U.S. job openings must be authorized to work in the United States. Benefits are available to temporary professionals. Visit www.Augsitions.com for more information.

    © 2021 AugSitions.  An Equal Opportunity Employer. M/F/Disability/Veterans.