Job Openings vCISO

About the job vCISO

Description

Socium Security is searching for cybersecurity leaders who want to aid clients in a fractional model as a virtual Chief Information Security Officer. Organizations are struggling to organize their internal technology and security teams, communicate crucial information to executives, and keep up with the changing threats and compliance obligations. Positions are contracted and can be located anywhere in the United States. Engagements are full and part-time, across all industries (technology, healthcare, finance, manufacturing, defense, bio-medical, and others), around the United States.

Responsibilities

  • Communicate the state of cybersecurity to the steering committee and counsel management on associated business risks.
  • Develop an annual strategic roadmap, with project priority and risk to the business
  • Work closely with executive and technology management - the Chief Information Officer, Chief Legal Counsel Chief Compliance Officer, the Compliance Department, and the Privacy Office – to ensure clients are in compliance with regulations and best practices.
  • Ensure that security initiatives are executed effectively, work closely with IT, Security Operations, Legal, Human Resources, Product Management, Product Development, Operations, and the Executive Leadership team.
  • Reviewing current processes, methods, and technology to ensure that the client's operational environment is sound, sustainable, and compatible with rules and standards.
  • Review control and vulnerability assessments to identify weaknesses and assess the effectiveness of existing controls.
  • Serves as the subject matter expert on all security documentation matters and consistently delivers the highest quality advisory services.
  • Establishes, develops, and grows information security, risk, and compliance operational security architecture and security policies, principles, and standards.
  • Ability to consider alternative technology solutions possibilities in relation to complicated business problems and make recommendations to the team leader and/or client.
  • Coach and mentor team members.

Requirements

  • Bachelor’s Degree
  • 15 years of combined cybersecurity, information technology, and governance experience
  • 3 years of experience as a CISO
  • 3 years of experience in applying and interpreting Government regulations related to Cybersecurity
  • CISSP, CISM, CISA, CCISO or other relevant certificate(s)

Other Desired Skills

  • Experience with Cloud computing security best practices
  • Ability to communicate with and present to senior leadership and regulatory bodies
  • Security policy development experience
  • Data protection and privacy experience
  • Strategic management
  • Incident response and management
  • Knowledge of regulation and standards compliance. (NIST CSF/800-53/800-171, ISO 27000, HITRUST, HIPAA, PCI DSS.

Or refer someone