Vice President, Information Security Officer US Information Solutions

You will serve as the Vice President and Information Security Officer for US Information Solutions (USIS). Drawing on your prior experience in four domains (customer service, business acumen, information technology, and information security), you will drive material business outcomes by representing our business, technology, and security programs in all aspects of our internal and external business.

To adhere to our corporate location policies, this resource will be required to be local to the surrounding Atlanta areas (or willing to relocate for this position) and adhere to our Return To Office (RTO) / weekly onsite requirements (Tuesday, Wednesday, and Thursday).

What You'll Do

You will directly support the USIS Senior Leadershp Team, with a dotted line reporting structure to the President of USIS, serving as their ever-responsive first point of contact into Security. You'll function as their strategic partner, an ambassador of our services, and an escalation point. You will work across all functions to ensure harmonious delivery of security outcomes. Supporting the USIS CTO you will lead the team assessing and deliberating technical risk as a subject-matter expert.

As the Head of Information Security for US Information Solutions you will not only be responsible for managing the security controls posture but also to sustain current revenue by keeping customers satisfied and work to position our industry leadership in security as a sustainable competitive advantage that furthers our overall market position.

• Serve as the senior-most security point of contact for the USIS commercial lines of business. Partnering directly with the president and leadership team, direct all security aspects and represent the business and its products to potential and existing customers related to security matters.

• Support the local deployment of security capabilities such as product / development security, identity and access management, vulnerability management, incident response, security architecture / engineering / operations, compliance, and physical security.

• Leverage your broad skill set spanning the core domains of security to assess the security maturity of potential acquisition targets. Direct assigned project management resources and personally manage / help to execute security integration for each target. Develop and present integration status reports for senior executives.

• Serve as the primary interface related to security regulatory and compliance Inquiry. Direct the efforts of corporate compliance resources, project managers, evidence gatherers, and the technology team so as to obtain and maintain compliance certifications and good standing with regional regulators in the most effective and efficient way possible.

What Experience You Need

• SECURITY: Minimal of 10 years experience managing and leading key security staff and programs. This could include previous experience as a CISO, Deputy CISO, Enterprise Risk Management Leader, Cyber Security Leader or other regional security leadership positions.

• Proven ability operating as an Information Security leader in the Financial Services industry strongly preferred.

• Successful track record of defining, delivering and maintaining complex security programs that span regional and global boundaries.

• Expected to have a strong command of security and security risk management practices.

• Prior experience providing security program status at an executive and board of directions level required.

• TECHNOLOGY: Previous experience as an IT leader helps you to empathize and partner with our key stakeholders in Technology. We believe that it also produces the most well-rounded and capable security professionals.

• Strong foundational understanding of secure software engineering principles and cloud security controls.

• Experience with any cloud service offerings (Google, AWS , Azure) - GCP preferred.

• Proven understanding of security controls and technologies including but limited to SIEM, DLP, WAF, IPS, and firewalls.

• BUSINESS: As a business enabler, exposure to business disciplines while serving in previous security roles, such as: product development, strategy, mergers and acquisitions, sales, are key to your success in translating business requirements into the secure delivery of product and services.

• REGULATORY: Extensive experience leading security regulatory compliance, readiness, and response activities. In collaboration with other senior company stakeholders (Compliance Officer, Privacy Officer, etc..) serve as the security point of contact for queries or issues raised by relevant regulators.

• Is well versed in compliance and security standards and guidelines including: SOX, NIST, CIS, ISO 27001/2, PCI DSS, Cyber Essentials and other relevant regional regulations.

• Strong experience in a matrixed environment, supporting multiple business lines and contributing to and collaborating with an international organization.

• Strong evidence of being able to balance risk and control requirements while appreciating commercial goals

What Could Set You Apart

• We prefer but do not require a bachelor's degree in computer science, information security, management information systems, or a related field. We prefer but do not require an MBA degree. Candidates without relevant degrees will be expected to demonstrate similar qualifications through at least 10 years of work experience in information security or technology.

• Currently holds one or more professional qualifications such as CISSP, CISM, CISA, CCSP, PCI-ISA

• High self-motivation and ambition; conscientious work ethic, high standards, and keen attention for details. Beyond mere compensation, seeks learning, experience, and the career growth that naturally accompanies these.

• Articulate, well-spoken, and well-written as befits a senior customer service role. Able to interact with all stakeholders at the highest level of professionalism and service.

• Solution-oriented, willing to do whatever it takes to deliver a complete solution to our customers. When a handoff is appropriate, exemplary coordination and communication. Attitude of commitment and follow-through.

• Can be outgoing as needed, effective at networking, building long-term relationships where outcomes are achieved by goodwill and consensus rather than through direct management power.

• High integrity and an "engineer's mindset" of doing complete, quality work -- but tempered when necessary with a business mindset and smart pragmatism.

#LI-JC2

#LI-Hybrid