The Executive Director, IT Security and Compliance, is responsible for establishing and maintaining the information security program to ensure that Starz information assets and associated technology, applications, systems, infrastructure, and processes are adequately protected. The Executive Director is responsible for identifying, evaluating and reporting on legal and cybersecurity risks to information assets, while supporting and advancing business objectives. This includes securing Starz programming content and the partner ecosystem that supports production.
The Executive Director will be responsible for implementing and running the enterprise information security program. He/she will proactively work with Starz functional departments and partners to implement practices that meet agreed-on policies and standards for information security. He/she will oversee a variety of cybersecurity and risk management activities related to IT to ensure the achievement of business outcomes.
The Executive Director must be knowledgeable about Starz internal and external business environments, ensure that information systems are maintained in a fully functional and secure mode, and are compliant with legal, regulatory and contractual obligations. This position reports to the Sr. Vice President, IT Services.
Lead the information security function across Starz to ensure consistent and high-quality information security management in support of the business goals. Serve as a primary point of contact to all functional areas to ensure consistent application of policies and standards across all technology projects, systems and services, including privacy, risk management, compliance and business continuity management.
Serve as the security, privacy and compliance lead for Starz. This role is the Point of Contact (PoC) for all security and privacy efforts within the organization, including Governance, Risk and Compliance, Application Security, Identity and Access Management, Security Operations Management and Audit. This role also serves as a liaison to Lionsgate IT Security.
Maintain and update the security management and controls framework, based on an industry framework, such as National Institute of Standards and Technology (NIST), CoBIT and/or Center for Internet Security (CIS).
Develop a metrics and reporting framework to measure the efficiency and effectiveness of the program, facilitate appropriate resource allocation, and increase the maturity of the information security. Provide regular reporting to management.
Manage the budget for the information security function.
Manage a team of IT Security professionals. This includes hiring, training, staff development, performance management and annual performance reviews.
Ensure that security is embedded in the project delivery process by providing the appropriate information security policies, practices and guidelines.
Monitor the external threat environment for emerging threats and advise relevant stakeholders on the appropriate courses of action.
Oversee the Security Incident Response plan and procedures to ensure that business- critical services are recovered in the event of a security event; provide direction, support and in-house consulting in these areas.
Liaise with external agencies, such as the FBI, law enforcement and other advisory bodies, as necessary, to ensure that the organization maintains a strong security posture and is kept well-abreast of the relevant threats identified by these agencies.
Create a risk-based process for the assessment and mitigation of any information security risk, consisting of supply chain partners, vendors, consumers and any other third parties. Work effectively with business units to facilitate information security risk assessment and risk management processes.
Work with Legal and Procurement to ensure that information security requirements are included in contracts.
Manage the information security awareness training program for all employees, contractors and Production staff.
Minimum of seven to 10 years of experience in a combination of IT Security and IT Services. At least five years should be at a senior leadership leve CISM and/or CISSP strongly preferred.
Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and non-technical audiences
Proven track record and experience in developing information security policies and procedures, as well as successfully executing programs in a dynamic business environment
Poise and ability to act calmly and competently in high-pressure, high-stress situations
Must be a critical thinker, with strong problem-solving skills
Strong knowledge and understanding of relevant legal and regulatory requirements, such as: Sarbanes-Oxley (SOX) and General Data Protection Regulation (GDPR). Strong knowledge and understanding of security frameworks, including National Institute of Standards and Technology (NIST), CoBIT, Center for Internet Security (CIS) and ITIL.
Excellent analytical skills, the ability to manage multiple projects under strict timelines, as well as the ability to work well in a demanding, dynamic environment and meet overall objectives
Ability to lead and motivate the information security team to achieve tactical and strategic goals, even when only "dotted line" reporting lines exist.
Experience with contract and vendor negotiations
High level of personal integrity, as well as the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity
STARZ (www.starz.com), a Lionsgate company (NYSE: LGF.A, LGF.B), is a leading global media and entertainment company that provides premium subscription video programming on domestic U.S. pay television networks and produces and distributes content for worldwide audiences, including its investment in the STARZ PLAY Arabia OTT service.
STARZ is the ultimate destination for obsessable TV, movies and more. Characters who pull you in and stories that stay with you. From bold Original Series to the best movies, whatever you love, STARZ ignites your passions.
STARZ offers a competitive compensation package and an attractive benefits program to all eligible employees including a variety of healthcare plans, dental and vision insurance, 401k, life/disability insurance. Eligible employees will enjoy paid time off in the form of vacation and company holidays.
STARZ is an Equal Opportunity Employer. This means that all applicants will receive consideration for employment regardless of gender, age, race, national origin, disability, color, religion, sexual orientation, gender identity and/or expression, veteran status, or any other characteristic protected by federal, state or local law. In addition, STARZ will provide reasonable accommodations for qualified individuals with disabilities.