Overview:
Job Role Lead, Information Security
Work Experience 6-8 years in Information Security domain
Responsibilities:
The candidate is expected to lead the information security client request group and support client security requests such as responding to RFIs / RFPs / Security Questionnaires
The candidate is expected to collaborate with global business operations and support functions to assess effectiveness of information security controls and provide recommendations for continual security enhancements
The candidate is expected to work on information security and data privacy domains such as ISO 27001, GDPR, HIPAA, and support the internal and external audits
The candidate should have good communication and presentation skills, has ability to work well independently and with inter-teams and is available to travel on need basis
The candidate works effectively with a variety of personalities and can adapt his/her approach to effectively reach and develop his/her team. Uses this skill as well as his/her functional knowledge to both earn and maintain a high level of credibility with the team.
The candidate is expected to lead, motivate and direct a workgroup, prioritize projects and/or deliverables
The candidate can think clearly and articulate security vision with the appropriate technical depth
Key areas of responsibilities
Work as a team lead to contribute towards client security enquiries by working with internal business and support functions
Leads security-related projects from inception to successful completion and is capable of effectively coaching technology staff on appropriate security protocols and needs as they implement new technology into the organization.
Be the hands-on subject matter expert (SME) for performing information security activities across business units, data centers, cloud and SaaS offerings
Support the various requirements towards compliance for ISO 27001, HIPAA, GDPR, SOC2 Type2, and any other client or 3rd party audits
Leads the team to implement secure enterprise policies, processes and identifies issues that could compromise data integrity or security.
Identify operational inefficiencies as well as best practices and drives program maturity via creation of metrics, measurements, and tools
Supports automation and orchestration to maximize team talent and reduce routine tasks.
Subject to agreed criteria, recruitment, training, set action and targets, appraise and manage performance, development, coaching and general support of all team members to ensure targets are metQualifications:
Education and Certification Requirements
Bachelor's degree with 6-8 years of direct experience in the field of information security
Practical understanding of security standards, processes and risk frameworks
Experience in internal audits, maintaining GRC platform
Certified Information Systems Auditor (CISA), ISO 27001 LA credential highly recommended.
Other:
This is a hybrid role requiring the individual to be in the office 4 days per week with the option for additional flexibility based on tenure and performance.
Consilio's True North Values
Excellence
We strive to make every client our advocate
Passion
We DO because we CARE
Collaboration
We win together through teamwork and communication
Agility
We flex, adapt and embrace change
People
We value, respect and invest in our teammates
Vision
We create clarity of purpose and a clear path forward
Consilio, LLC is an EEO/Affirmative Action Employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability or any other legally protected status.
