VP, Chief Information Security Officer | Remote, USA

This position will be fully remote and can be hired anywhere in the continental U.S.

Optiv’s VP, Chief Information Security Officer (CISO) leads the enterprise security, risk, and compliance (ESRC) team and is responsible for defining and executing the cybersecurity strategy for the corporation to manage risk, protect client data, and company resources. The CISO will drive the development of technology roadmaps and processes; ensure compliance with company policy, customer contracts, regulatory requirements, and industry best practices. The CISO will report directly to the General Counsel. The CISO will evangelize the importance of Cyber Security; speaking on the latest cyber security threats and how Optiv is mitigating those threats. The CISO will work with business and IT leaders to provide and maintain solutions which meet business and technical requirements by applying new and existing security technologies and solutions to solve business needs.

How you’ll make an impact

• Drive the development of security strategies and implementation roadmaps centered around a zero-trust philosophy and industry best practices.

• Develop and manage key security solutions in the GRC, SOC, Detection and Response, and IAM space.

• The CISO and their org will work closely with IT and the business to manage and operate all security technology.

• Ensure compliance with various industry and government regulations and standards.

• Ensure compliance with company policies and procedures.

• Coordinate and execute the development of a SOC-2 report and other elements of corporate due diligence such as PCI compliance and responding to client questionnaires.

• Coordinate and execute incident response events and support internal investigations.

• Oversee third party risk management of strategic vendors and partners.

• Engage with clients to advise on the latest cyber security threats and share best practices.

• Influence and direct security vendors to resolve issues and enhance product roadmaps to meet the needs of the company.

• Research and evaluate impact of new vulnerabilities, security alerts, threat intelligence and related standards and regulations.

• Stay informed of new security technologies and solutions to assist in the on-going development of the overall security strategy.

• Build key relationships and partner with other leaders in the business and IT, enterprise security, services, and sales teams in designing next generation customer and employee solutions.

• Look for opportunities to leverage Optiv Services and solutions to meet cybersecurity needs.

• Assist marketing with thought leadership to promote Optiv brand.

• Share best practices with strategic clients and partners to strengthen relationships.

• Share experience, knowledge, and ideas with management and co-workers to maintain a kind and respectful team-based environment.

• Lead a team utilizing experience in progressive managerial/supervisory positions including effective use of employee performance plans and evaluations, coaching, and mentoring techniques, and addressing employee conflicts and disciplinary actions required.

• Create a risk-based process for the assessment and mitigation of any information security risk in the ecosystem consisting of supply chain partners, vendors, consumers and any other third parties.

• Coordinate the development of implementation of incident response plans and procedures to ensure that business-critical services are recovered in the event of a security event; provide direction, support, and in-house consulting in these areas.

• On a continuous basis, evaluate overall IT security direction of Optiv, ensuring that all activities are secure, effective, and efficient.

• Manage the ESRC team and the cybersecurity portfolio.

• Manage the cybersecurity budget.

• Establish metrics to articulate the security posture and risk profile to executive management and the board.

• Serve as a member of the Optiv Operating Leadership Group.

• Be a talent management ambassador.

• Embrace a culture of diversity, equity and inclusion and support company core values.

• Promote a corporate culture that is committed to information security best practices.

• Balance strong security controls and practices with usability features and business needs.

• Participate in after-hours support as needed to respond to security incidents.

• Function with a high degree of integrity with an ability to keep information confidential.

• Up to 50% travel.

What we're looking for

• Bachelor’s Degree preferred, Master’s Degree a plus; CISSP or other security certifications preferred.

• Minimum of 12+ years of relevant work experience related to cybersecurity.

• Minimum of 6+ years of relevant work experience related to cybersecurity management.

• Minimum of 3+ years of relevant work experience related to executive management.

• Experience presenting to large audiences with evangelizing cyber security.

• Familiarity with multiple operating systems such as Microsoft, Apple, and Linux.

• Familiarity of network protocols and network security concepts.

• General knowledge of best practices for securing Cloud (SaaS, IaaS, PaaS) environments with experience in Azure, AWS or GCP a plus.

• Knowledge of security industry frameworks such as NIST.

• Knowledge of modern IT operational duties and software development lifecycles.

• Understanding of cybersecurity regulatory landscape and requirements.

• Detail-oriented with strong conceptual, analytical, problem solving, decision making and planning skills.

• Excellent written and oral communication skills; and demonstrated ability to interact with technical, non-technical individuals; including internal-external stakeholders and clients

• Ability to discuss security and risk topics with business leaders, strategic clients and public at large.

• Ability to accurately interpret business direction and clarify technology's alignment with stakeholder needs.

What you can expect from Optiv

• A company committed to championing Diversity, Equality, and Inclusion through our Employee Resource Groups.
• Work/life balance
• Professional training resources
• Creative problem-solving and the ability to tackle unique, complex projects
• Volunteer Opportunities. “Optiv Chips In” encourages employees to volunteer and engage with their teams and communities.
• The ability and technology necessary to productively work remotely/from home (where applicable)

EEO Statement

Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.

Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv’s selection and recruitment activities. For additional details on how Optiv uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice. If you sign up to receive notifications of job postings, you may unsubscribe at any time.