IT Security Director

This IT Security Director will play a critical role in advancing the strategy, capability, and maturity of IT cybersecurity and risk management. The IT Security Director will be responsible for creating long-term strategy, development, implementation, and ongoing monitoring of a comprehensive enterprise cybersecurity program. The program is intended to maintain the integrity, confidentiality, and availability of BIC’s IT systems, data, and assets.

IT Security Director responsibilities:

• Responsible for creating a long-term global security strategy and annual roadmaps to guide maturation of the security function
• Responsible for directly managing several 3rd party security service providers
• Responsible for hiring and managing a team of highly skilled security professionals
• Responsible for planning and implementing security safeguards and standards
• Ensure access control, endpoint management, and vulnerability management are current and implemented with enterprise grade solutions
• Protect unauthorized use and access to corporate and personal data; enforce adherence to compliance standards (GDPR, PII, PCI)
• Lead incident response team to contain, investigate, remediate, and prevent cybersecurity incidents
• Help create enterprise-wide security awareness and security training to educate our workforce against potential security threats
• Determine annual global pen testing requirements, selection of pent testing vendor(s), and remediation of critical and high vulnerabilities
• Lead research and evaluation of industry leading enterprise security tools
• Participate in developing a change management process and review board

Projects You’ll Work On:

• Creation of a comprehensive global security strategy with corresponding 12-18 month roadmaps
• Implementation of an enhanced endpoint protection solution (EDR)
• Completion of multi-factor authentication rollout and adoption for O365 and evaluation of MFA for other applications
• Research and selection of a SIEM tool
• ISO 27001 certification
• Creation of a security operations center (SOC)
• Lead a cybersecurity capability benchmark assessment

Qualifications

• Bachelor’s Degree in computer science, information technology, information security or engineering; Master’s degree preferred
• Minimum 15 years of IT experience with a minimum of 10 years of experience in cybersecurity
• CISSP or CISM certification considered a strong plus
• Experience building and operating cybersecurity programs in a global organization
• Experience with current cyber threat landscape, attack methodologies, risk mitigations and remediation methods
• Experience with data privacy regulations (GDPR, PII) and compliance (PCI)
• Experience of security frameworks such as NIST required
• Available for occasional international travel
• Team and collaboration orientation
• Effective written/verbal communication skills

Aquinas Consulting is a woman and minority owned company headquartered in Milford, CT that provides Engineering, Information Technology (IT), and Manufacturing staffing solutions throughout the US. We take pride in 20 years of service to our clients, our hiring managers, our consultants, and our local community. Aquinas is an affirmative action, equal opportunity employer, committed to considering all qualified applications without regard to race, genetic information, sex, age, color, religion, national origin, veteran status, disability or any other characteristic protected by law. www.aquinasconsulting.com