Director of Information Security and Compliance

ISA Consulting Group
29 ditë të mbetura

Director of Information Security and Compliance | 

Open Positions: 1

The Company

ISA Consulting is an IT company offering end-to-end solutions in Digital Transformation, Digital Consulting and Business Process Services - supporting all Tech Stacks. Collectively we service a multitude of clients across industries and company verticals. We are a culmination of some of the brightest Full Stack Developers, Data Engineers, Architects, Project Managers, Quality Analysts, Strategists, spanning across multiple time zones.

Job Summary

The Director of Information Security and Compliance will be pivotal in defining and leading our global information security strategy and compliance programs. This position ensures the confidentiality, integrity, and availability of corporate and customer data across all platforms and services. The ideal candidate will bring a strategic vision for our cybersecurity posture and compliance with regulatory and industry standards, coupled with the capability to execute that vision.


Responsibilities:

  • Develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program to ensure the organization's integrity, confidentiality, and availability of information owned, controlled, or processed.
  • Lead the development and implementation of effective policies and practices to secure protected and sensitive data and ensure information security complies with relevant legislation and legal interpretation.
  • Oversee the selection, design, justification, implementation, and operation of security controls and management strategies to maintain information systems' confidentiality, integrity, availability, accountability, and relevant compliance.
  • Direct the planning and implementation of enterprise IT systems, business operations, and facility defenses against security breaches and vulnerability issues.
  • Audit and oversee the continuous monitoring and protection of facilities, personnel, data/systems, and other assets. Determine and audit entity compliance with security policies and regulations.
  • Spearhead and manage the company’s compliance certification initiatives (e.g., ISO 27001, SOC 2, GDPR, CCPA) and ensure ongoing compliance with legal and regulatory obligations.
  • Provide guidance and counsel to the CTO, executive management, and IT staff regarding security and compliance best practices.
  • Manage the development and implementation of global security policy, standards, guidelines, and procedures to ensure ongoing maintenance of security protocols.
  • Initiate, facilitate, and promote activities to foster information security awareness within the organization.
  • Oversee incident response planning and the investigation of security breaches and assist with disciplinary and legal matters associated with such breaches as necessary.


Requirements & Skills

  • Minimum of 10 years of experience in risk management, information security, and IT jobs, with at least five years in a leadership role.
  • Knowledge of common information security management frameworks, such as ISO/IEC 27001 and NIST, and relevant legal and regulatory requirements.
  • Experience with Cloud SaaS platforms and the specific security challenges and best practices associated with cloud computing.
  • Excellent leadership skills, including the ability to build and manage teams, and excellent written and verbal communication skills.
  • Strong project management, financial/budget management, scheduling, and resource management abilities.
  • Ability to understand and integrate business strategies and trends in technology to deliver efficient solutions.


Mandatory Requirement

The position does not allow collaboration under Business-to-Business (B2B) contract arrangements. Candidates must be willing to enter into a standard employment relationship, fully aligned with current labor laws and regulations.

We are looking for individuals who:

  • Are available for full-time engagement.
  • Consider this role as their primary professional commitment (main job).


Hiring Policy

This job description may evolve over time. ISA Consulting is dedicated to diversity and inclusion, ensuring a fair workplace for all, regardless of race, color, religion, gender, national origin, age, disability, or any other protected status.

 

Apply: