Vice President, Chief Information Security Officer - CISO | Remote, USA

Kansas City, MO /
Information Technology – Information Security /
Full-Time
At Optiv, we’re on a mission to help our clients make their businesses more secure. We’re one of the fastest-growing companies in a truly essential industry. Join us.

Optiv’s Chief Information Security Officer (CISO) leads the enterprise security, risk, and compliance (ESRC) team and is responsible for defining and executing the cybersecurity strategy for the corporation to manage risk, protect client data, and company resources. The CISO will drive the development of technology roadmaps and processes; ensure compliance with company policy, customer contracts, regulatory requirements, and industry best practices. The CISO will report directly to the General Counsel. The CISO will evangelize the importance of Cyber Security; speaking on the latest cyber security threats and how Optiv is mitigating those threats. The CISO will work with business and IT leaders to provide and maintain solutions which meet business and technical requirements by applying new and existing security technologies and solutions to solve business needs.

This role is able to be virtual/remote anywhere within the United States (#LI-Remote)

Responsibilities

    • Drive the development of security strategies and implementation roadmaps centered around a zero-trust philosophy and industry best practices.
    • Develop and manage key security solutions in the GRC, SOC, Detection and Response, and IAM space.
    • The CISO and their org will work closely with IT and the business to manage and operate all security technology.
    • Ensure compliance with various industry and government regulations and standards.
    • Ensure compliance with company policies and procedures.
    • Coordinate and execute the development of a SOC-2 report and other elements of corporate due diligence such as PCI compliance and responding to client questionnaires.
    • Coordinate and execute incident response events and support internal investigations.
    • Oversee third party risk management of strategic vendors and partners.
    • Engage with clients to advise on the latest cyber security threats and share best practices.
    • Influence and direct security vendors to resolve issues and enhance product roadmaps to meet the needs of the company.
    • Research and evaluate impact of new vulnerabilities, security alerts, threat intelligence and related standards and regulations.
    • Stay informed of new security technologies and solutions to assist in the on-going development of the overall security strategy.
    • Build key relationships and partner with other leaders in the business and IT, enterprise security, services, and sales teams in designing next generation customer and employee solutions.
    • Look for opportunities to leverage Optiv Services and solutions to meet cybersecurity needs.
    • Assist marketing with thought leadership to promote Optiv brand.
    • Share best practices with strategic clients and partners to strengthen relationships.
    • Share experience, knowledge, and ideas with management and co-workers to maintain a kind and respectful team-based environment.
    • Lead a team utilizing experience in progressive managerial/supervisory positions including effective use of employee performance plans and evaluations, coaching, and mentoring techniques, and addressing employee conflicts and disciplinary actions required.
    • Create a risk-based process for the assessment and mitigation of any information security risk in the ecosystem consisting of supply chain partners, vendors, consumers and any other third parties.
    • Coordinate the development of implementation of incident response plans and procedures to ensure that business-critical services are recovered in the event of a security event; provide direction, support, and in-house consulting in these areas.
    • On a continuous basis, evaluate overall IT security direction of Optiv, ensuring that all activities are secure, effective, and efficient.

Leadership Responsibilities

    • Manage the ESRC team and the cybersecurity portfolio.
    • Manage the cybersecurity budget.
    • Establish metrics to articulate the security posture and risk profile to executive management and the board.
    • Serve as a member of the Optiv Operating Leadership Group.
    • Be a talent management ambassador.
    • Embrace a culture of diversity, equity and inclusion and support company core values.
    • Promote a corporate culture that is committed to information security best practices.
    • Balance strong security controls and practices with usability features and business needs.
    • Participate in after-hours support as needed to respond to security incidents.
    • Function with a high degree of integrity with an ability to keep information confidential.

Qualifications

    • Bachelor’s Degree preferred, Master’s Degree a plus; CISSP or other security certifications preferred.
    • Minimum of 12+ years of relevant work experience related to cybersecurity; minimum of 6+ years of relevant work experience related to cybersecurity management; minimum of 3+ years of relevant work experience related to executive management.
    • Experience presenting to large audiences with evangelizing cyber security.
    • Familiarity with multiple operating systems such as Microsoft, Apple, and Linux.
    • Familiarity of network protocols and network security concepts.
    • General knowledge of best practices for securing Cloud (SaaS, IaaS, PaaS) environments with experience in Azure, AWS or GCP a plus.
    • Knowledge of security industry frameworks such as NIST.
    • Knowledge of modern IT operational duties and software development lifecycles.
    • Understanding of cybersecurity regulatory landscape and requirements.
    • Detail-oriented with strong conceptual, analytical, problem solving, decision making and planning skills.
    • Excellent written and oral communication skills; and demonstrated ability to interact with technical, non-technical individuals; including internal-external stakeholders and clients
    • Ability to discuss security and risk topics with business leaders, strategic clients and public at large.
    • Ability to accurately interpret business direction and clarify technology's alignment with stakeholder needs.
    • Up to 50% travel
With Optiv you can expect:

• A company committed to championing Diversity, Equality, and Inclusion through our Affinity groups including, Black Employee Network, Disabled Employee Network, Latino Employee Network, Optiv Pride (LGBTQIA+), Veterans Support Network, and Women's Network.
• Work/life balance. We offer “Recharge” a flexible, time-off program that encourages eligible employees to take the time they need to recharge
• Professional training resources, including tuition reimbursement
• Creative problem-solving and the ability to tackle unique, complex projects
• Volunteer Opportunities. “Optiv Chips In” encourages employees to volunteer and engage with their teams and communities.
• The ability and technology necessary to productively work remote/from home (where applicable)

If you are seeking a culture that supports growth, fosters success, and moves the industry forward, find your place at Optiv! As a market-leading provider of cyber security solutions, Optiv has the most comprehensive ecosystem of security products and partners to deliver unparalleled services. Our rich and successful history with our clients is based on trust, serving more than 12,000 clients of varying sizes and industries, including commercial, government, and education. We have the proven expertise to plan, build, and run successful security programs across Risk Management, Cyber Digital Transformation, Threat Management, Security Operations - Managed Services, and Identity and Data Management.

Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, status as an individual with a disability, veteran status, or any other basis protected by federal, state, or local law.