- Company Name
- Passion Dental
- Job Title
- Vice President Chief Information Security Office
- Job Description
-
**Job title:** Vice President Chief Information Security Officer (CISO)
**Role Summary:**
Executive leader responsible for defining, implementing, and overseeing the organization’s information security strategy. Drives protection of data, IT infrastructure, and business continuity while ensuring compliance with regulatory frameworks and aligning security initiatives with corporate goals.
**Expectations:**
- Establish and evolve a comprehensive cybersecurity strategy that supports business objectives.
- Maintain a robust risk management, incident response, and compliance posture.
- Build and mentor a high‑performance security team.
- Communicate security status and risk mitigation to senior leadership, the Board, and non‑technical stakeholders.
**Key Responsibilities:**
- **Cybersecurity strategy & governance:** develop strategy, policies, and controls; implement risk management program; ensure compliance with GDPR, HIPAA, PCI‑DSS, NIST, ISO/IEC 27001, COBIT; report to Board.
- **Leadership & team management:** recruit, train, and manage the security team; foster collaboration across C‑suite and business units.
- **Incident response & crisis management:** lead incident response, disaster recovery, and business continuity; conduct post‑incident root‑cause analyses.
- **Risk & compliance:** perform risk and vulnerability assessments; coordinate with legal, compliance, and audit functions; stay current on regulatory changes.
- **Security architecture & technology:** design and implement secure network, endpoint, cloud, and application solutions; evaluate emerging security technologies; enforce encryption, firewalls, and access controls.
- **Stakeholder communication & training:** convey security risks and policies to executives, Board, and employees; develop awareness programs; serve as primary security spokesperson.
**Required Skills:**
- Deep understanding of current cyber threats, vulnerabilities, and industry best practices.
- Proven incident response, disaster recovery, and risk assessment expertise.
- Strong leadership, interpersonal, and cross‑functional collaboration abilities.
- Excellent communication of complex security concepts to non‑technical audiences.
- Knowledge of cloud security, encryption standards, data protection practices, and security frameworks (NIST, ISO/IEC 27001, COBIT).
**Required Education & Certifications:**
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field (Master’s preferred).
- CISSP or equivalent advanced certification; CISM, CEH, CCSP preferable.
- Minimum 6 years of progressive information security experience, including 5 years in an executive or leadership role.
- Demonstrated track record managing complex security infrastructures and teams.