VCISO

We are seeking a Virtual Chief Information Security Officer (vCISO) to lead our client company's cybersecurity programs. As a vCISO, you will be responsible for developing and implementing a comprehensive cybersecurity strategy to protect our client company's assets and data. You will have experience supporting Executive Leaders and Directors but also be confident directing Engineers and Analysts.

This position is remote and can be based anywhere in the world.

Job Requirements:

• Develop and implement a comprehensive cybersecurity program that includes policies, procedures, and technical controls to protect our company's assets and data.
• Conduct risk assessments to identify potential threats and vulnerabilities and develop risk mitigation strategies.
• Provide expert guidance and support to senior management and other stakeholders on cybersecurity-related issues and initiatives.
• Serve as the primary point of contact for all cybersecurity-related matters, both internal and external.
• Monitor and analyze security threats, trends, and technologies to ensure that our cybersecurity program is up-to-date and effective.
• Develop and manage incident response plans and protocols to respond to cybersecurity incidents.
• Manage the cybersecurity budget, including vendor contracts, equipment purchases, and other expenses.
• Ensure compliance with regulatory and industry standards, such as HIPAA, PCI-DSS, and GDPR.
• Develop and deliver cybersecurity awareness training and education to all employees.
• Build and maintain relationships with third-party vendors and service providers to ensure that they meet our cybersecurity standards.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, or related field.
• Minimum of 10 years of experience in cybersecurity, with at least 5 years in a leadership role.
• Experience working with large and complex organizations.
• Strong knowledge of cybersecurity frameworks, standards, and regulations, such as NIST, ISO, CIS, HIPAA, HI-Trust, PCI-DSS, CCPA and GDPR.
• Familiarity with security technologies, such as firewalls, intrusion detection systems, endpoint protection, and vulnerability scanners.
• Excellent communication, interpersonal, and presentation skills.
• Strong problem-solving and analytical skills.
• Ability to work independently and as part of a team in a fast-paced environment.
• Relevant certifications, such as CISSP, CISM, or CISA, are preferred.