Director, Information Security - Network Security Governance & Standards

About The Position

Requirements

• Bachelor of Computer Science/Engineering or Information Technology or experience in related fields
• Ability to lead oneself and a team independently with minimal guidance and effectively leverage diverse ideas, experiences, and perspectives to the benefit of the organization
• Experience with agile development/program management methodologies
• Knowledge of business concepts and information security tools and processes that are needed for making sound decisions in the context of the company's business
• Demonstrated network security related experience
• Ability to learn new skills and knowledge on an on-going basis through self-initiative and tackling challenges
• Excellent problem solving, communication, and collaboration skills
• Demonstrated knowledge, inclusive of development experience, of change/network security request systems (e.g., Service Now)
• Significant experience and/or deep expertise with several of the following: Information Security Policy, Standards, Procedures, and Engineering Specifications
• Network security tooling and design experience
• Information Security Risk Assessment processes
• Information Security governance and control processes
• Metrics creation and reporting
• Management of developer teams to drive security/process related outcomes
• ServiceNow administration/development/process creation
• Management of exceptions to security standards
• NIST and ISO 27000 Standards

Nice To Haves

• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Applicable SANS Certifications
• Industry and tool certifications related to network security tooling/processes/governance

Responsibilities

• Oversee project and operational work, while guiding and transferring knowledge to more junior team members
• Function as an escalation point for operational work handled by more junior staff on the team, managing and resolving issues independently
• Leverage network security and tool/process specific knowledge as well as organizational and industry knowledge to resolve complex technical/process/people problems.
• Partner with leadership to set direction for the future of network security program, while ensuring an accurate understanding and in-depth knowledge of daily operations to enhance and improve information security processes and controls
• Drive the development and reporting of network security related metrics
• Drive the modernization of network security request processes, including overseeing the development of the request process/flows
• Oversee the team handling day-to-day network security interactions, inclusive of questions and requests inbound to the ISO from business partners and other stake holders
• Bring a deep understanding of network security, cybersecurity governance frameworks, and emerging risks to guide team members and embed learning and innovation in the day-to-day of the network security governance team

Benefits

• Market competitive base salaries, with a yearly bonus potential at every level.
• Medical, dental, vision, life insurance, disability insurance, Paid Time Off (PTO), and leave of absences, such as parental and military leave.
• 401(k) plan with company match (up to 4%).
• Company-funded pension plan.
• Wellness Programs including up to $1,600 a year for reimbursement of items purchased to support personal wellbeing needs.
• Work/Life Resources to help support topics such as parenting, housing, senior care, finances, pets, legal matters, education, emotional and mental health, and career development.
• Education Benefit to help finance traditional college enrollment toward obtaining an approved degree and many accredited certificate programs.
• Employee Stock Purchase Plan: Shares can be purchased at 85% of the lower of two prices (Beginning or End of the purchase period), after one year of service.