Director of Security IT
Primary Location Madison, Wisconsin
V-Soft Consulting is an end-to-end recruiting and staffing solution provider known for our ability to provide highly qualified consultants for any project at any scale.
What makes us different? Our expertise is derived from over 20 years of delivering world-class IT staffing, consulting, engineering and managed services to Fortune 1000 and mid-market companies in the U.S., Canada, and Asia. V-Soft is a trusted partner with experience across diverse technology stacks to help business get IT done.
Like what you hear? Apply with V-Soft today!
V-Soft Consulting is currently seeking a Director of Security - IT for our premier client in Madison, Wisconsin. This is a full-time, direct hire position in the financial services industry.
The Director of Security is responsible for the overall security program development and implementation for the organization; through the selection of the appropriate security framework in alignment with the organizational strategy coupled with a pragmatic risk-based approach to implement the security controls; continually adapt the security program and influence the strategic direction to maintain an acceptable risk level for the organization. This role serves as the key leader on information security for the organization and works closely with the enterprise risk management group. The director is responsible for growing and sustaining a security group.
WHAT YOULL NEED:
Technical Requirements and Certifications
Certifications CISM or equivalent, CISSP a plus
Knowledge and experience with one or more major security framework such as NIST (800-53, CSF, 800-171), HITRUST, ISO 27001 etc.
Knowledge and experience with one or more security standard such as PCI, HIPAA
Knowledge and understanding of all the elements of both traditional enterprise systems architecture as well as cloud-based system deployments including commercial, fed-ramp and gov. cloud deployments
Strong experience with security capabilities and controls (tools, processes, skills) needed to secure those systems
Working knowledge and experience with NIST, HITRUST, ISO 27001, HIPAA, PCI
Education and Experience
Bachelors degree or higher from an accredited college, university, or vocational college with a degree in computer sciences or a related discipline
8+ years of IT experience with five or more years of security experience
3+ years of leadership experience
Experience in the management of secure software development life cycle SDLC and the application of security best practices and required controls
Knowledge, Skills and Abilities
Skilled in interacting with all the areas of the organization and negotiating the security requirements in alignment with the business needs and organizational priorities
Skilled in planning, prioritizing, and organizing work to lead from concept through implementation
Ability to attain a public trust, fiduciary, government security clearance
WHAT YOULL DO:
Set the vision and strategy for the security program then seek organizational agreement and commitment
Build and sustain an effective security organization and a team to execute on the security program
Create and maintain the required security policies, standards and procedures and bring about organizational governance to those policies
Create and maintain an effective security awareness program for the organization
Deploy and maintain the appropriate security controls in collaboration with the business and IT leaders using a risk-based approach that is aligned with the organizational strategy and priorities
Serve as the security subject matter expert for the internal organizational needs as well as needed for external entities
Lead the organization through all required security audits (internal and external) to achieve the required compliance state
Provide an ongoing measure of the security and compliance posture through KPIs and other metrics
Through continued training, professional events, and networking, stay aware and tuned to the current and emerging threats to our industry and use security best practices necessary to defend against those threats
Write or review security-related documents, such as incident reports, proposals, security standards, policies, and procedures in alignment with regulatory and organizational requirements
Assist in disaster planning, disaster testing, and contingency planning
Conduct, support, or assist in governmental or regulator reviews, internal corporate evaluations, audits, or assessments of the overall effectiveness of the facilities security processes
Train BTS or other organization members in security rules and procedures
Identify, investigate, or resolve security breaches
Collect and analyze security data to determine security needs, security program goals, or program accomplishments
Ensure IT systems and practices compliance with security policies and regulations
Communicate security status, updates, and actual or potential problems, using established protocols
Prepare reports or make presentations on internal investigations, incidents, events, or violations of regulations, policies and procedures
Analyze and evaluate security operations to identify risks or opportunities for improvement
Operate within companies guidelines pursuant to the Employee Handbook and all Policies and Procedures
Perform additional duties as assigned
Qualified candidates should send their resumes to
V-Soft Consulting Group is headquartered in Louisville, KY with strategic locations in India and across the U.S., including Madison, Chicago, Denver, Harrisburg and Atlanta. Known as an agile innovative technology services company, we were recently rewarded the Large Business of the Year award from Louisville Business First and were recognized among the top 100 fastest growing staffing companies in North America. V-Soft has a wide variety of partnerships across diverse technology stacks, and holds such titles as MuleSoft Certified Delivery Resource, Oracle Gold Partner, ServiceNow Partner, Microsoft Partner and Cisco Registered Partner, amongst many others.
For more information or to view all our open jobs, please visit or call .
CISM, CISSP, security framework, PCI, HIPAA, NIST, HITRUST, ISO 27001, HIPAA, PCI
V-Soft Consulting Group, Inc