Director, Information Security

About The Position

Requirements

• A level of education that when combined with your professional experience will adequately show you have the capability to lead information security at HRW.
• We anticipate that successful candidates will have around 10 years of experience in the Information Security field, and around 5 years of management experience, but are eager to hear from candidates who feel confident that they can perform well in this role even if they do not have this level of experience, and particularly if they are from backgrounds underrepresented in the field.
• 3-5 years experience in managing a team.
• Extensive knowledge of information security and risk management, ideally in the context of an international organization or in journalism with practical experience in high risk and complex operating environments.
• Security management experience and/or prior director level role in a related field is required.
• Working knowledge of the risks associated with human rights and/or civil society activism and/or journalism globally is required
• Experience securing a Windows Azure Active Directory environment.
• Strong experience and practice in practical security issues and solutions
• Strong technical understanding of the digital threats faced by HRDs, and digital security tools and tactics for targeted and vulnerable populations, including encryption, circumvention, and anonymization technologies and secure configuration and use of devices.
• Excellent oral and written communication skills in English are required, particularly relating technical topics to lay audiences and persons from a variety of cultural and educational backgrounds. Ability to apply strong analytical skills to interpret and translate complex terms, concepts, and issues into language easily comprehensible to non-experts.
• Creativity with excellent analytical skills, ability to multi-task and strong project management skills are required.
• A high level of resilience and drive, able to be flexible, adapt to change as required, choose a course of action, developing appropriate solutions and/or reaching conclusions.
• Ability to cope well under pressure and demonstrate excellent judgment.
• Demonstrated ability to work with diverse and cross-cultural teams to achieve common objectives; collaborative and team-oriented with an “enabling” mindset.
• Willingness to partake in extensive global travel is required.

Nice To Haves

• Candidates who have relevant academic degrees or security certifications are encouraged to apply, but this is a plus - not a requirement.

Responsibilities

• Design, manage, and supervise all aspects of the Information Security program including work plan development and implementation, priority and objective development, monitoring and evaluation, budget monitoring and management, reporting, and collaboration with donors and other partners;
• Implement and maintain an information security risk management program, and work closely with the Director of Physical Security to implement cohesive security risk management frameworks within Departments across HRW;
• Advise on technical security concepts pertaining to network security, email security, remote data and third party security;
• Develop and manage global information security policies, standards, guidelines and procedures to assess, balance, and minimize risk and ensure the confidentiality, integrity, and availability of systems and data.
• Lead information security planning processes and implementation to establish and/or enhance an inclusive and comprehensive information security program in support of all information systems and technologies;
• Provide operational security and safety advice as required to managers and staff on the preparation and execution of higher-risk projects and activities, including direct digital security support and advice during the travel or other deployment/presence in higher risk contexts or conducting higher risk activities in coordination with the Director of Physical Security;
• Provide security incident response in coordination with the Director of Physical Security;
• Work with the Director of Physical Security to advise on operational security measures and measures for all HRW staff;
• Proactively work with all HRW departments to craft policies and solutions that mesh well with how HRW staff work; Implement practices that will ensure the highest levels of protection of organizational assets;
• Serve as a resource for staff and partners on technology issues as they pertain to programmatic research especially around HRW’s particularly sensitive work on net freedom issues including surveillance and global internet technology;
• Proactively identify and analyze attempts at compromise and offer solutions to prevent future compromise;
• Lead, motivate, and mentor direct-reports, including communicating clear expectations, setting performance objectives, providing regular and timely constructive feedback, ensuring balanced workload, providing guidance on professional growth, and monitoring staff well-being as it pertains to stress and resilience. issues and self-care;
• In collaboration with the Director of Physical Security, prepare and present reports on security matters to senior leadership, internal stakeholders, and the HRW Board of Directors as required;
• Establish and maintain information networks and relationships globally with relevant civil society counterparts, security contacts, government, intelligence, and/or law enforcement contacts, as well as corporate and third party resources, to inform both changing strategy requirements, and ensure HRW and its counterparts are responsive to near and far term risks;
• Stay informed of and recommend leading, innovative solutions for applicable information security applications, as well as keeping up with industry trends and changes;
• Be an ambassador for HRW and security best practices in the fields of Human Rights and technology and build relationships with people, organizations, and within sectors that may serve to advance the goals above;
• Perform other duties as necessary.

Benefits

• HRW seeks exceptional applicants and offers competitive compensation and employer-paid benefits including medical, dental, vision, disability and life insurance.
• HRW offers a relocation assistance package and will assist employees in obtaining necessary work authorization, if required; people of all nationalities are encouraged to apply.
• The salary range for this position if based in the US is USD 150,000 – 165,000 plus benefits.
• Salary ranges outside of the US vary based on location, and you will receive specific salary ranges based on your location early during the recruitment process.