Enable job alerts via email!

Information Security Director US IT & Information Security · US - Fully Remote Working ·

Sycurio

United States

Remote

USD 120,000 - 180,000

Full time

4 days ago

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

An established industry player is seeking an Information Security Director to lead their security strategy and compliance efforts. In this pivotal role, you will be responsible for shaping the company's security capabilities, ensuring adherence to industry standards such as ISO27001 and PCI-DSS. You will work closely with stakeholders to communicate security policies and manage risks effectively. This is an exciting opportunity to influence security practices and protect the organization against evolving threats in a dynamic regulatory landscape. If you're passionate about security and have a proven track record in information security, this role is perfect for you.

Qualifications

10+ years in information security, preferably in fintech or payments.
Certifications like CISSP, CISM, or CISA are required.

Responsibilities

Develop and maintain the company's security strategy.
Lead incident response efforts and manage vulnerability assessments.

Skills

Cloud Security (AWS)

Communication Skills

Project Management

DevSecOps Practices

Influencing and Collaboration

Education

Bachelor's in Computer Science

Master's in Cybersecurity

Tools

Security Assessment Tools

Vulnerability Management Tools

The Information Security Director develops, shapes, and maintains Sycurio’s information security capabilities, ensuring compliance with ISO27001, PCI-DSS, and SOC2 standards. They serve as the subject matter expert on security and compliance, owning the information risk management processes. They are the thought leader in security and compliance, ensuring the company remains secure against evolving threats and regulatory landscapes.

Information Security Strategy

Create and maintain the company's security strategy aligned with business goals.
Communicate security policies, procedures, and systems to internal and external stakeholders.
Develop, maintain, and expand the Information Security Management System (ISMS) for optimal compliance with ISO27001, PCI-DSS, and SOC2.
Identify security gaps and propose remediation and mitigation plans.
Ensure the company's information security capability remains robust against emerging threats.

Operational Responsibilities

Contribute to security design, architecture, and threat modeling improvements.
Lead incident response efforts, working with internal teams and external parties.
Conduct threat simulations and assess emerging vulnerabilities.
Manage vulnerability assessments and security tools.
Represent Sycurio in security engagements with customers, suppliers, and auditors.
Handle security questionnaires from clients and prospects.

Qualifications, Skills, and Experience

Qualifications:

Bachelor’s degree in Computer Science, Cybersecurity, or related field; Master’s preferred.
Certifications such as CISSP, CISM, CISA, or equivalent.

Experience:

10+ years in information security, preferably in financial, fintech, or payments sectors.
Deep knowledge of security frameworks (PCI, ISO 27001, NIST) and regulations (GDPR, CCPA).
Experience with PCI DSS compliance and working with external auditors.
Proven success in managing security incidents and stakeholder communication.
Experience with security assessment tools, vulnerability management, and third-party risk assessment.

Skills:

Strong understanding of cloud security, especially AWS.
Knowledge of payment processing security controls.
Excellent communication skills for technical and non-technical audiences.
Project management capabilities for security initiatives.
Ability to influence and collaborate across organizational levels.
Understanding of DevSecOps and secure software development practices.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.