Director of Information Security - US Remote

The Director of Information Security will oversee the security of all information systems, applications, and data of the organization. They will collaborate with other executives to define and implement security strategies, policies, and procedures, and ensure that they align with the organization's goals and objectives. The successful candidate will be a hands-on, results-driven leader who is able to navigate complex technical and business challenges. The role requires 2+ years of experience in an information security management position and 5+ years of experience working in an information security role, as well as strong technical knowledge of information security technologies, protocols, and standards. Experience in securing AWS infrastructure and services is also required.

• Develop and implement a comprehensive information security program that encompasses people, processes, and technology.
• Manage the information security team and provide leadership, direction, and guidance.
• Evaluate and recommend security technologies and services to safeguard the organization's information systems, applications, and data.
• Develop, maintain, and enforce security policies, standards, and procedures.
• Conduct risk assessments and vulnerability assessments and develop plans to mitigate identified risks.
• Monitor and investigate security incidents and breaches, and take appropriate action to prevent future incidents.
• Ensure compliance with relevant laws, regulations, and industry standards such as SOC 2, ISO 27001, ISO 27701, GDPR, and CCPA, etc.
• Collaborate with other executives and departments to develop and implement security-related policies and procedures.
• Provide security awareness training to employees and ensure that they understand and adhere to security policies and procedures.
• Manage relationships with external security partners and vendors.

• 2+ years of experience in an information security management position
• 5+ years of experience working in an information security role
• Strong technical knowledge of information security technologies, protocols, and standards
• Experience in securing AWS infrastructure and services
• Deep understanding of risk management, threat intelligence, and incident response
• Proven ability to develop and implement effective information security strategies and programs
• Excellent communication and interpersonal skills
• Strong leadership and management skills, with the ability to motivate and manage a team
• Familiarity with compliance frameworks such as SOC 2, ISO 27001, etc
• Industry certifications such as CISSP or CISM are preferred