the smart solution for New England jobs

VP of Information Security

Company: Insurance, Norwalk, CT
Location: Norwalk
Posted on: March 14, 2018

Job Description:


We’re seeking a Vice President, Information Security who is a hands-on leader and who will be responsible for all of our business’ information security, risk, and compliance activities. In this role, you’ll report to the Chief Technology Officer, with visibility and accountability to our executive leadership team as well as our customers. Constant collaboration with the larger technology organization is crucial, and uphold proper compliance and separation of concerns.

Key to this role is the assessment and oversight of all technology-related compliance issues across the organization including information security, privacy, business continuity, identity management, user access and data integrity. This includes providing objective risk assessments of the company's compliance with regulatory, organizational and commercial requirements governing the organization's information technology systems.

This role will also direct and/or influence the development and implementation of policies, procedures and controls to ensure that the organization's security and audit compliance remain in line with US laws, industry standards, and Company PLC Audit recommendations. In this role, you will work directly with non-IT compliance professionals such as finance, marketing, legal, audit and corporate compliance to ensure organizational alignment. Assess our development and operation environments to identify risks and gaps related to information security, including potential data breach risks Define, champion, and execute the overall corporate IT security strategy, roadmap and governance structure with the buy-in from operational and business stakeholder Implement all IT security, data breach, and regulatory compliance programs including legal requirements, industry regulations, and best practices. Develop corporate information security and risk policies, training and education. Provide managerial and technical guidance on the development of information security policies, guidelines, standards, procedures, and responsibility designations Ensure business requirements include security requirements, and are aligned with and support security mission, policies and procedures and their relationship to security, privacy and compliance requirements. Oversees security incident response planning and participates in the investigation and reporting of security breaches. Report the levels of IT compliance risk and control effectiveness to key stakeholders such as IT-business unit management, senior management, legal management, internal/external auditors, etc. Coordinate security readiness activities in concert with the Director of IT Infrastructure to include penetration testing (internal and external), communications networks, voice and voice recording systems, etc. Coordinate audit-related tasks such as ensuring the readiness of IT Directors and their organizations for audit testing and facilitating the timely resolution of any audit findings. Manage the overall IT compliance-related budget/financial spend in accordance with the desired IT compliance risk appetite of the organization. Assist business and IT Directors with the acquisition of tools and expertise to assist with IT compliance-related projects and initiatives. Conduct vendor assessments and audits for evaluation and tracking of risk Work collaboratively and consult with the Group CISO with regard to the responsibilities and activities of the role. Contribute to the Group governance regime, providing update to maintain visibility of information and cyber security risk management and mitigation as well as improvement activity. Contribute to the definition of Company Group Information and Cyber Security Strategy and work to identify and deliver roadmaps for its delivery. Advise and recommend on the evolution and continuous improvement of Information and Cyber Security frameworks across the Company Group, bringing subject matter expertise as well as providing a wider perspective of the operation and requirements of Company USA. Attend the Group CISO forum meetings. Present annually before the Board Ensure all patches and upgrades to security are monitored and implemented Develop and management of the CISO team Regulatory Compliance Activities Work with corporate legal and compliance representatives to identify all related IT compliance requirements (i.e., security, user access, privacy, data integrity, etc.) associated with the laws and regulations within all relevant jurisdictions. Ensure all related IT compliance policies are updated, based on any relevant regulatory changes or new laws. Create a regulatory change management process that identifies and coordinates the modification of related technological functions, business processes and/or compliance controls. Conduct necessary IT compliance control monitoring and testing activities to determine the effectiveness of the controls. Remediate IT compliance control deficiencies. Coordinate the investigation of any potential unlawful or fraudulent action related to IT compliance, such as the intentional release of privileged information or a related security breach. Requirements Bachelor's degree in business administration or a technology-related field, or equivalent work or education-related experience. Certification as a Certified Information Systems Security Professional (CISSP) and/or Systems Security Certified Practitioner (SSCP) is desirable. Minimum of 15 years of experience in a combination of risk management, information security and Engineering roles. At least 4 years in a senior leadership role. Relevant experience managing security for companies that leverage cloud technologies and / or offer platform as a service (PaaS) with security commitments to customers and partners. Relevant experience working in the payment industry with a deep understanding of regulatory frameworks such as ISO, PCI DSS, NIST, COBIT, etc. Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and non-technical audiences. Must be able to effectively liaise with internal direct reports and senior management as well as internal customers, clients, partners and stakeholders. Proven track record and experience in developing information security policies and procedures. Must be a critical thinker, with strong problem-solving skills. Strong project management, financial/budget management, scheduling and resource management skills. Ability to lead and motivate cross-functional, interdisciplinary teams to achieve tactical and strategic goals.

Keywords: Insurance, Norwalk, CT, New England, VP of Information Security, Executive, Norwalk, Northeast

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Other Executive Jobs

Sales Manager
Description: Job DescriptionThe Andersen Corporation is the oldest, largest and most trusted name in the window and door industry. Since 1903 we have been dedicated to providing superior products and service to discerning (more...)
Company: Renewal by Andersen
Location: Stamford
Posted on: 03/19/2018

Description: Company OverviewAt Dollar General, our customer is at the center of everything we do We are a fast-moving Fortune 200 publicly-traded company with more than 14,000 stores and 14 distribution centers (more...)
Company: Dollar General
Location: Auburn
Posted on: 03/19/2018

Restaurant Manager
Description: Job ID33812BRAddress5
Company: Longhorn Steakhouse
Location: Nashua
Posted on: 03/19/2018

Sales Management Trainee Summer Internship
Description: Equal Opportunity Employer/Disability/Veterans--Our paid Internships play an integral role in the success of Enterprise and are a comprehensive introduction to our Management Training Program. For a college (more...)
Company: Enterprise
Location: Manchester
Posted on: 03/19/2018

Sales Manager - Insurance
Description: Are you an experienced Customer Service representative with excellent communication skills and a drive to advance your career Do you want a work/life balance Take advantage of our globally-ranked training (more...)
Company: Bankers Life
Location: Stonington
Posted on: 03/19/2018

IT Manager
Description: If you're looking for a meaningful career, you'll find it here at Webster. Founded in 1935 by Harold Webster Smith, our focus has always been to put people first--doing whatever we can to help individuals, (more...)
Company: Webster Bank
Location: New Britain
Posted on: 03/19/2018

Sales Management Trainee Auburn
Description: Equal Opportunity Employer - Minorities/Women/Veterans/Disabled--If you---re looking to jump-start your career with a clear path to advancement, then the Enterprise Management Training Program is for (more...)
Company: Enterprise
Location: Auburn
Posted on: 03/19/2018

Product Marketing Manager
Description: As a Product Marketing Manager, you are responsible for the br br marketing activities for your products. You will help craft the br br messaging and positioning for products. You'll conceive (more...)
Company: Evariant
Location: Farmington
Posted on: 03/19/2018

Workday - Solution Manager - USDC with Security Clearance
Description: Workday - Solution Manager - USDC Are you an experienced, passionate pioneer in technology --- a solutions builder, a roll-up-your-sleeves technologist who wants a daily collaborative environment, think-tank (more...)
Company: Deloitte
Location: Hartford
Posted on: 03/19/2018

Sales Manager - Insurance
Description: Are you an experienced Customer Service representative with excellent communication skills and a drive to advance your career Do you want a work/life balance Take advantage of our globally-ranked training (more...)
Company: Bankers Life
Location: Andover
Posted on: 03/19/2018

Log In or Create An Account


Forgot password?

Find us on Facebook

Find us on LinkedIn