Director Information Security – Hybrid

The Director of Information Security is responsible for providing vision, leadership and expertise to develop and support information security management, operation, and security controls. The Director also has responsibility for building an accountable, information security-conscious culture and a system security infrastructure built on best-in-class standards and effective operational procedures. This role will primarily oversee: Firewalls, Proxy Servers, Cloud Access Security Broker (CASB), Active Directory Security, Security Information and Event Management (SIEM), and Managed Security Service Provider (MSSP). 

Essential Functions of this Position

• Responsible for the strategic leadership of the information security program and operational activities
• Develops, implements, and monitors a strategic, comprehensive enterprise information security program to ensure that the integrity, confidentiality, and availability of information that is owned, controlled, or processed by the organization
• Facilitate the identification of risks and integration of those risks into the information security risk assessment, providing direction on appropriate controls and guidance on control testing
• Establishes annual security and compliance goals, defines security strategies, metrics, reporting mechanisms and program services
• Develops and maintains a roadmap for continual program improvements
• Develops and enhances an information security management and control framework based on appropriate information security industry standards to measure the efficiency and effectiveness of the program, facilitates appropriate resource allocation, and increases the maturity of the security
• Lead the identification and definition of the organization’s information security risk appetite and mitigate information security risks based on level of tolerance
• Maintenance of information security policies and procedures
• Ensure compliance and direct the security component of internal, external, and third-party audits
• Lead the Incident Response Team through the handling of any security related incidents
• Other duties as assigned

Minimum Education and Work Experience

• Bachelor’s Degree from an accredited institution in Information Systems, Information Security, or related field or related experience preferred; some experience may be substituted for some of the above education
• 15+ years of experience in a field related to information security
• 8+ years of supervisory/management experience
• One or more of the following certifications required: CISSP, CRISC, Cjobs-near-me.orgCISCO, CISM, CISA

Knowledge, Skills, and Abilities Requirements

• Proven experience with current IT security technologies and information security frameworks
• Ability to successfully manage and execute multiple projects using established project management tools and processes
• Expertise in Firewall Security, Proxy Servers, Active Directory Security, SIEM, and MSSP

Acosta and Mosaic are the sales and marketing powerhouses behind the most recognized and proven brands with top retailers in the United States and Canada. We offer flexible services that maximize efficiency. Acosta has the talent and technology to build data-, reach- and relationship-driven strategies to execute those strategies, and the tools to monitor, track and optimize metrics-based results for customers and retailers.

The Acosta Group, in good faith, believes that this posted range of compensation is the accurate range for this role at the time of this posting. The Acosta Group may ultimately pay more or less than the posted range depending on candidate qualifications and locations. This range may be modified in the future.

The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. The Acosta Group reserves the right to modify all or part of any job descriptions at its discretion in order to meet and or exceed the needs of the business.

The Acosta Group, in good faith, believes that this posted range of compensation is the accurate range for this role at the time of this posting. The Acosta Group may ultimately pay more or less than the posted range depending on candidate qualifications and locations. This range may be modified in the future.

The Acosta Group utilizes E-Verify for validating the ability to work in the United States for all job candidates. If you want more information on what this entails and your rights as a job applicant, please use the link provided to access information on our use of E-Verify and your right to work. Employer Resources (e-verify.gov) 

The Acosta Group is an Equal Opportunity Employer.

We are committed to providing accommodations for persons with disabilities. If you require accommodation, please contact [email protected], we will work with you to meet your needs, to the extent required by law.

By submitting your application, you agree with and accept the Acosta Privacy Statement and Terms of Conditions.

Read Full Description