Chief Information Security Officer

About The Position

Requirements

• Bachelor's degree in Information Security, Computer Science, or a related field; advanced degree strongly preferred.
• Minimum of 15 years of information security leadership experience, with at least 5 years in a senior leadership role.
• Proven experience developing and implementing security strategies in a retail environment.
• Strong knowledge of security frameworks, standards, and regulations (e.g., PCI, NIST, EUCC, ENISA).
• Relevant certifications (e.g., CISSP, CISM, CISA) are highly desirable.
• Excellent communication and interpersonal skills.
• Experience attracting, developing and challenging world class security engineering and operations talents.
• Deep information security and privacy experience for digital forward customer centric organizations.
• Elevated risk assessment and management experience in large scale digital organizations.
• Experienced change agent to drive innovation and transformational change within organizations.
• Experience developing, planning and implementing the company's technology strategy.

Nice To Haves

• Possesses a thoughtful point of view on industry trends impacting commerce, customer and employee experience.
• Has an informed perspective on best-in-class experiences and technologies.

Responsibilities

• Develop and implement a comprehensive information security strategy aligned with the co-op business goals.
• Collaborate with IT and business leaders to integrate security measures into all aspects of the organization.
• Direct the development, recommendations and championing of IT policy, strategy, standards and procedures for information and system security.
• Oversee the IT Disaster Recovery and Business Continuity program.
• Lead architecture and engineering, vulnerability management, security operations, compliance, and risk management.
• Direct the Identity and Access Management organization.
• Accountable for identifying and assessing IT security-related issues impacting IT and business performance.
• Oversee IT security architecture including roadmaps, assessments, principles, standards and security development lifecycle.
• Set, monitor, and enforce security elements within application, infrastructure and data architectures.
• Oversee the Security Operations Center and ensure effective intrusion detection, incident response and threat management.
• Oversee vulnerability management including scanning, testing, remediation, and reporting.
• Accountable for consistent compliance with all applicable regulations, standards and controls.
• Conduct regular security assessments and audits to identify risks.
• Lead and champion efforts to educate the organization on security threats.
• Report to leadership on information security effectiveness and make recommendations.
• Actively participate in Technology strategic planning.
• Develop budgets and forecasts, including staffing needs, tools and equipment, services, maintenance, and future projects.
• Ensure the team is properly skilled and staffed to handle the demand.
• Perform vendor management and play a lead role on vendor selection, performance management, and contracting.
• Provide accurate, timely and relevant information about the status of information security projects.

Benefits

• Medical, dental, and vision insurance
• 401(k) with generous company match
• Paid time off
• 10 Paid Holidays
• Tuition Reimbursement
• Parental Leave