Chief Information Security Officer

JOB SUMMARY

The CISO is responsible for providing leadership and strategic vision across diverse teams that support global enterprise security initiatives. Regulations, compliance, privacy, business operational security, supply chain and business partner relationships fall directly under the purview of the CISO. The CISO directs the overall planning and execution of enterprise security systems, using operational and tactical expertise to direct security management reports, who oversee analysts, engineers, and architects. As a business enabler, the CISO ensures business decisions are not hampered by security but adhere to corporate security policies and are implemented with security in mind. The CISO champions a flexible, highly adaptable, and secure operating business environment.

The CISO is expected to be a master communicator who is confident but humble, and capable of speaking effectively with other C-level executives, as well as members of the board of directors and audit committees. Additionally, the CISO must possess a strong security practitioner background and the ability to effectively collaborate with technical staff. The ideal CISO is a people person who focuses on building a synergistic team where employees are valued, challenged to achieve excellence, have autonomy and enjoy working for the company. Recruitment, career development and retention of security staff are top priorities. As the leader of the information security program, the CISO establishes highly effective policies, corporate protocols and an open and collaborative team environment.

The CISO must have a strong technical background and fully understand threats, risk mitigation and technical controls to lead a team of security professionals through corporate obligations and defenses. The CISO assumes accountability for the daily tactical operations and overall strategic execution of the team under his or her leadership. The CISO reports to the chief risk officer (CRO) and chief executive officer.

ESSENTIAL DUTIES

The duties listed below may not include all responsibilities that the person in this role may be asked to perform. Incumbent may be required to perform other related duties, as assigned, including cross training across other departments, as necessary.