Virtual Chief Information Security Officer (vCISO)

The Security Advisor is responsible for helping organizations to protect their infrastructure, data, people, and customers. A Security Advisor is a top security expert that builds the client organization’s cybersecurity program. The Security Advisor works with the existing management and technical teams.

Our team members are collaborative, positive, and dedicated to mutual success. Transparency isn't just a buzzword here; it's a commitment to open communication, ensuring every voice is heard and valued. Guided by our core values — Passionately Curious, Own It, Go Beyond, and Serve as One — we’re here to create something extraordinary together.

Our team members play a pivotal role in our focus: Serving those who serve with technologies for today and tomorrow that make life safe and simple. With nearly 30 years of specialized expertise, our team goes beyond conventional boundaries, delivering tailored managed services and cybersecurity solutions to our clients.

We are a growth-minded organization that prioritizes development, offering numerous opportunities for career advancement. Rooted in our core value of being Passionately Curious, VC3 offers a dynamic learning environment, emphasizing hands-on experiences and formal development programs that celebrate continuous learning to propel your career forward.

Department

Managed Security

Employment Type

Full Time

Location

USA - Remote

Workplace Type

Fully remote

• Understand and follow “The VC3 Way”. This is our set of standards and processes that produce a predictable result for the client. You must be aware of and maintain our standards.
• Translate Cyber Security into non-technical terms for the Executive to understand business risks associated with Cyber Security.
• Help establish the organization’s cybersecurity strategy.
• Anticipate future security and compliance challenges.
• Participate in developing, maintaining, and reviewing comprehensive information security standards, policies, procedures, and guidelines.
• Drive the building of a cybersecurity plan and program.
• Assist with overseeing technical teams.
• Manage and oversee the information security incident response program, including the development of Business Continuity and Disaster Recovery Programs.
• Ensure there are processes in place to analyze cyber security threats in real-time, mitigating and preventing these threats.
• Complete a cybersecurity risk assessment based on your organization’s assets.
• Oversee the evaluation, selection, and implementation of information security technology and ensure compliance with information security regulations.
• Negotiate contracts with third parties; build security requirements and standards into these contracts.
• Liaise with internal and external client providers.
• Assist with vendor selections.
• Provide guidance/checklists for clients to use to make decisions on 3rd parties.
• Collaborate with industry peers and continuously analyze and review new security technologies and practices.
• Work closely with internal stakeholders and business units to stay informed of planned changes that could impact the company’s security or risk profile.
• Report Information and Cyber Security program updates to the senior leadership team, including metrics that measure the program’s efficiency and efficacy.
• Drive company-wide training and education on security-related matters to increase awareness and mitigate risk.

• Good problem-solving and decision-making skills; ability to understand and analyze complex issues.
• Self-motivated, detail-oriented, highly organized, and able to handle a variety of tasks efficiently.
• A bachelor's degree in computer science, information technology, or a related field.
• A minimum of five years' experience in risk management, information security, or programming.
• Understanding of current and emerging threats and countermeasures.
• Awareness of information security management frameworks, such as ISO/IEC 27001, MITRE, and NIST.
• Practical knowledge of security technologies including Firewalls, IDS/IPS, Identity and Access Management, and SIEM.
• Ability to influence stakeholders and work closely with them to determine acceptable solutions.
• Excellent verbal communication and writing skills.
• Ability to present complex issues in simple formats.
• Strong relationship-building skills.
• One or more of the following qualifications are highly desirable: CISM, CISSP, CISA, or CRISC.

• Applicant selected will be subject to a criminal and department of motor vehicles background checks and must meet Criminal Justice Information Systems (CJIS) requirements post-employment.
• Travel up to 30% required.
• VC3 offers a comprehensive benefits package and 401K/RRSP company matching.

Thank you for your interest in VC3. We appreciate all applications; however, only those candidates selected for an interview will be contacted.

VC3 offers Managed IT Services, Private Cloud Services, Hosted VoIP, Custom Web Applications, SharePoint Consulting, and Website Design & Hosting. With over 25 years of experience, we provide a full range of IT Solutions and Services to hundreds of municipalities and organizations throughout the US and Canada.

Apply Now

Not quite right? Register your interest to be notified of any roles that meet your criteria.