The Harmony of Bringing People Together
Chief Information Security Officer (CISO)
Concert Consulting is looking for a Chief Information Security Officer (CISO) to join our growing team!
The Chief Information Security Officer serves as the process owner of all assurance activities related to the availability, integrity and confidentiality of customer, business partner, employee and business information in compliance with the organization's information security policies. A key element of the CISO's role is working with executive management to determine acceptable levels of risk for the organization.
The CISO will report directly to the Chief Executive Officer.
Duties and Responsibilities:
Implement and oversee security-related risk management activities (familiarity with frameworks such as FAIR, NIST CSF, STRIDE)
Concrete experience implementing a security program for midsized-to-large organizations with international locations
Experience implementing a security program making use of modern cloud-based infrastructure and services
Provide security subject-matter-expertise for Concert’s delivery organization (including proposals and contracts)
Oversee incident response engagements
Monitor global compliance trends and update executive management and Audit Committee on issues relevant to Concert
Oversee Concert’s global compliance with IT security and data regulations in collaboration with the Concert Legal Department
Collaborate with the Concert IT department to ensure procedures and processes meet various regulatory regimes including SOC, DFARS, GDPR, and CCPA
Recommend processes and tools to ensure Concert complies with security and data requirements
Requisites for the role include knowledge of, and experience with, US Federal government and Department of Defense security requirements, as well as GDPR, SOC Type I and II, and CCPA
Education and Years of Experience:
10-15 years of relevant experience
No Physical requirement needed for this position