Director Information Security

As a highly skilled and experienced Director of Information Security, your role will be pivotal in leading and managing the comprehensive Information Security Program for our company. Reporting directly to the Chief Technology Officer (CTO), you will be responsible for establishing, maintaining, and overseeing information security strategies, policies, and programs across all departments. Your expertise will be crucial in ensuring compliance with key regulatory standards such as PCI-DSS, SOC 1, and SOC 2 audits while fostering a culture of security throughout the organization. Your deep understanding of risk management, incident response, cybersecurity, IT compliance, and business continuity planning will be essential for success in this role. **Primary Responsibilities:** - Lead the development, implementation, and maintenance of organization-wide IT information security policies, procedures, and Standard Operating Procedures (SOPs) to mitigate risks across informational, financial, physical, and reputational assets. - Collaborate with executive leadership to define and implement information security strategies aligned with business goals and risk management priorities. - Manage the organization's Information Security Program, ensuring adherence to industry standards, best practices, and compliance requirements (e.g., PCI, SOC 1, SOC 2). - Define and track security metrics to measure the success of the security program and communicate these to the CTO, executive leadership, and other stakeholders. - Provide status reports on the progress of information security, compliance, business continuity planning (BCP), and disaster recovery initiatives. **Qualification Required:** - 15+ years of relevant experience in Information Technology. - 10+ years directly related to IT information security (at least five years in a senior leadership role). - 5+ years of management and leadership experience in Information Security or a related field. - Experienced and proficient in PCI-DSS AOC/ROC and SOC 2 Type 2 compliance audits. - Hands-on experience in leading incident response activities for security events. If you are looking for a challenging yet rewarding opportunity to lead and shape the Information Security Program of a dynamic and innovative organization like Vervent, this role could be the perfect fit for you.,