Website https://twitter.com/fbnfarmers Farmer's Business Network, Inc.

Overview

The role is responsible for designing, implementing and running the enterprise information security program, including adopting new technologies, processes and procedures to further enhance our existing robust security defenses. The role will involve identifying, evaluating, defending and reporting on cybersecurity, legal, and regulatory  risks to information assets, while supporting and advancing business objectives.

We are looking for someone with hands-on experience. Someone who has expert knowledge of current threats and modern cybersecurity technologies. Someone who not only protects against the threats of today, but locks down and defends against emerging attacks. The ideal candidate believes in doing rather than merely documenting. They will be responsible for leading the information security program to ensure that our systems and data are strongly protected.

The person in this role is a technical leader, and should have a track record of excellence in the field of information security, with 7 to 10 years of relevant experience, including 5 years in a significant leadership role.

Responsibilities

  • Manages the process of assessing the current and future threat landscape and implementation of countermeasures, as well as providing management with a realistic overview of risks and threats in the enterprise environment
  • Prepare for and manage security incidents to protect FBN, including sensitive data and organizational reputation. Liaise with external third-party providers, legal counsel and other advisory bodies as necessary, to ensure that the organization maintains a strong security posture and privacy program
  • Conduct vendor security assessments, penetration testing, vulnerability scans and tabletop exercises to ensure the reliability of  security defenses and our Incident Response Plans
  • Execute a robust information security awareness training program
  • Lead design, review, implementation and management of cybersecurity tools, contracts, documentation, standards, and processes
  • Provide regular reporting on the current status of the information security program to senior business leaders and the board of directors. Manages cybersecurity assessments and risk for insurers and auditors
  • Develops, socializes and coordinates approval and implementation of security policies and procedures
  • Develops an information security vision and strategy that ensures a high level of security while also enabling business objectives to be met
  • Builds a metrics and reporting framework to measure and continually increases the effectiveness of information security program
  • Ensure compliance with applicable legislation, regulation, and industry standards, including overseeing required compliance reporting to relevant government
  • Builds and nurtures external networks consisting of industry peers and ecosystem partners to stay on top of  emerging trends and cybersecurity risks
  • Oversee and manage cost-efficient budgets for the information security organization, consisting of direct reports and dotted line reports from IT staff

Requirements

A successful candidate will have the expertise and skills described below.

  • Hands on experience on the front lines of information security, as a security engineer, penetration tester, or similar.
  • Extensive and current knowledge of current threats and cybersecurity defenses..
  • Experience developing risk management programs.
  • Knowledge of the legal requirements pertaining to cybersecurity and incident response and experience working with legal counsel through an incident
  • Demonstrated experience and success in senior leadership roles in information security, including financial and budget oversight
  • Degree in a technology-related field, or equivalent work experience
  • Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework
  • Experience with contract and vendor negotiations

Enhanced qualifications desired but not required

  • Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or other similar credentials

The following represents FBN’s reasonable estimate of the US national average base salary range of possible compensation for this role based on market data and placement of internal employees: $245,000 – $270,000. 

This salary range may vary based on geography and variations in cost of labor. Beyond the above or adjusted to market salary range, FBN also offers all full-time employees competitive equity compensation, health and wellness benefits, and various perks.

To apply for this job please visit boards.greenhouse.io.

close

Send me Latest Jobs Information.

We don’t spam! Read our Privacy Policy for more info.

You deserve A career You'll Love

Submit your resume to send it to other recruiters and get listed on ReeCareer.com