Title: Director of Information Security
Location: Los Angeles Metro area - 5 days onsite - RELOCATION SERVICES AVAILABLE
Compensation: $250,000-350,000
One of the world’s leading providers of networking and router devices is currently looking for a Director of Information Security to spearhead the development and execution of the organization’s information security strategy. This will be the senior-most security leadership position in the organization.
This pivotal role ensures the protection of corporate data and IT systems, working closely with the executive leadership team to align security initiatives with business goals, manage risks, and ensure regulatory compliance.
Key Responsibilities:
Leadership & Strategy:
- Develop and manage the enterprise information security strategy, aligning it with organizational goals
- Cultivating a culture of security awareness by leading and mentoring the information security team
- Advise senior leadership and executive team on information security and IT risk management matters
Risk Management & Compliance:
- Identify, assess, and prioritize information security risks
- Ensure compliance with relevant regulations, industry standards, and internal policies, including GDPR, CCPA, and other applicable laws
- Conduct regular security audits and manage responses to security incidents
Security Operations:
- Oversee the design and implementation of security measures to safeguard IT infrastructure, applications, and data
- Manage security operations including threat detection, incident response, vulnerability management, and forensic investigations
- Collaborate with IT teams to integrate security throughout IT system development and operations
Business Continuity & Disaster Recovery:
- Develop and maintain business continuity and disaster recovery plans to respond effectively to security incidents or disruptions
- Lead responses to major security incidents, coordinating with internal and external stakeholders.
Stakeholder Communication:
- Report on the organization’s security posture to the Board of Directors, senior management, and other stakeholders
- Provide training and awareness programs to employees to enhance understanding of security threats and best practices
Vendor & Third-Party Management:
- Evaluate and manage relationships with security vendors and service providers, ensuring they meet organizational standards
- Oversee third-party risk management, including assessing the security practices of vendors and partners
Requirements:
- Bachelor’s degree in Information Technology, Cybersecurity, or a related field; Master’s degree preferred
- At least 6 years of experience in information security, with a minimum of 5 years in a leadership role.
- Proven ability to develop and implement effective information security strategies and programs.
- Strong knowledge of cybersecurity frameworks, standards, and regulations.
- Experience with security technologies such as firewalls, intrusion detection/prevention systems, SIEM, encryption, and vulnerability management tools.
- Excellent leadership, communication, and interpersonal skills.
- Relevant certifications such as CISSP, CISM, CISA, or equivalent are highly desirable.
