Post Jobs

Director of Security

Staffing Future LLC
Colorado Full Time

Job description

Job Reference: 9318

Is your idea of the “big picture” more of a massive billboard than a framed 8 x 10 photo? We’re seeking a Director of Security who is ready to take control of large-scale programs and applications for one of our clients in Louisville, CO

Here’s the thing – large companies have a distinct need for help with their massive technology functions. Whether it’s SAP, a Java application, or SharePoint, these businesses require talent who can keep them up and running smoothly. If you have the breadth of knowledge it takes to work at the enterprise level, our client’s opening is waiting.

HOW YOU WILL MAKE AN IMPACT




  • Lead InfoSec compliance efforts in SOC 2 Type 2 and ISO 27001, building scope, control selection, scheduling external audit testing and ensuring regular control testing and monitoring. Additionally, lead Privacy related audits including GDPR and Microsoft DPR

  • Partner with the business to negotiate the inclusion of security requirements into third party contract agreements, and customer agreements

  • Manage Third Party Risk Management Program, assessing third parties for inherent and residual risk based on the nature of their services and their ability to appropriately secure data, customer data, and provide dependent services

  • Lead the development of a company-wide Security Awareness, Training, and Education program to protect company proprietary and customer owned information

  • Oversee the building, implementation and ongoing review of internal Infosec and technology related policies, partnering with stakeholders and approvers to ensure adherence

  • Lead proactive Risk Management programs across the company, identifying and analyzing risks, developing risk management controls and contingency plans

  • Ensure the SaaS platform is secure through a variety of techniques including Vulnerability Scanning, Pen Testing, Blue Team/Red Team activities. Additionally, partner with the Cloud Operations team to ensure Enterprise level InfraSec practices

  • Partner with the Development organization to implement a Secure Software Development Lifecycle, pushing security left into the design and development phases



EXPERIENCE NEEDED TO BE SUCCESSFUL IN THIS JOB




  • 5+ years leading InfoSec in enterprise software companies

  • Experience obtaining SOC 2 Type 2 and ISO certifications, partnering with external vendors to review controls

  • Working knowledge of privacy statutes including the European Union General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA)

  • Excellent communication skills, including extensive experience interfacing directly with customers

  • Tolerance for ambiguity, with a desire to find the right answer for our customers, the company and the business

  • 3+ years direct management experience, plus proven ability to lead through influence across a highly matrixed organization

  • Experience in assessing hosted service architectures (SaaS, PaaS, IaaS)



EDUCATION




  • College degree and 5 years of related work experience, or equivalent substantive work experience



PREFERRED




  • CISA, CISM, and or CISSP certification

  • Experience implementing a Secure SDLC

  • Experience in a growth stage technology company



ABOUT BRIDGEVIEW IT



Do you remember when the first YouTube video was uploaded in 2005? We don’t, because we were too busy creating the best technology placement firm in the country. Back then, we saw how extreme the demand was for technologists. Companies needed help finding them, and technologists needed help sifting through the noise. That’s our specialty.

You have a valuable set of skills, and it’s our job to make sure you get connected with the roles, companies, and career paths that help you realize your full potential. We don’t just forward you random job descriptions; we build a real relationship to get you wherever it is you want to go. We might be based in Denver, clearly the best city on earth, but we are connected to opportunities across America that will both challenge and fulfill you. Let’s do this. Apply for the above role, or sign up for job alerts at https://bridgeviewit.com/jobalerts.



STUFF OUR LAWYERS WANT US TO SAY



We are unable to sponsor H1B candidates at this time. Those authorized to work in the US without restriction are encouraged to apply. BridgeView IT is an equal opportunity employer.

Information

  • Staffing Future LLC
  • Colorado
  • Category: Engineering
  • Job type: Full Time