McKinstry Co
Head of Information Security
McKinstry Co, Seattle, Washington, us, 98127
Build the future, spark innovation and align your career with purpose.McKinstry is innovating the waste and climate harm out of the built environment and creating lasting impact. Together, we’re building a thriving planet.Buildings are a leading contributor to the climate crisis, generating nearly 40% of total global energy-related carbon emissions. We’re making a lasting impact on our industry and within our communities by addressing the climate, affordability and equity crises through:renewables and energy servicesengineering and designconstruction and facility servicesTo get where we’re going, we need big thinkers, problem solvers and collaborative mindsets. Does that sound like you?The Opportunity with McKinstryWe are currently seeking an
Head of Information Security
to join our growing Technology group in Seattle, WA. This person will be responsible for overseeing the organization's information security strategy, ensuring the protection of sensitive data and IT infrastructure. This role involves developing, implementing, and maintaining security roadmaps, policies, procedures, and protocols to mitigate risks and ensure compliance with regulatory requirements.You're great at:Leading an enterprise-wide Cybersecurity function and high-performing teamSetting Cybersecurity vision and strategy aligned to the company's prioritiesDeveloping and maintaining the company’s Cybersecurity program and reporting frameworkEstablishing Cybersecurity governance and building company cybersecurity knowledgeWhat You Need to Succeed at McKinstry:7-10 years’ experience and success in senior leadership roles in risk management, cybersecurity, and IT or OT securityDegree in business administration or a technology-related field, or equivalent work- or education-related experienceExperience successfully executing programs that meet the objectives of excellence in a dynamic business environmentExperience with contract and vendor negotiationsCertified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or other similar credentials, preferredKnowledge and understanding of relevant legal and regulatory requirements, such as: Local or national laws, standards and regulations, such as Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry/Data Security Standard.Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity FrameworkSound knowledge of business management and a working knowledge of cybersecurity risk management and cybersecurity technologiesUp-to-date knowledge of methodologies and trends in both business and ITExcellent communication skills, interpersonal and collaborative skills, and the ability to communicate cybersecurity and risk-related concepts to technical and non-technical audiences at various hierarchical levels, ranging from board members to technical specialistsStrategic leader and builder of both vision and bridges, and able to energize the appropriate teams in the organizationAbility to lead and motivate the cybersecurity team to achieve tactical and strategic goals, even when only "dotted" reporting lines existFinancial/budget management, scheduling and workforce managementA master of influencing entities and decisions in situations where no formal reporting structures exist, but achieving the desirable outcome is vitalBusiness acumen and an understanding of the organization’s risk profileAbility to develop and implement security strategies that are aligned with the organization's business goalsWhen it comes to the basics, we have you covered:Competitive pay401(k) with employer match and profit-sharing planPaid time off and holidaysComprehensive medical, prescription, dental, and vision with low or zero deductible options and low out of pocket maximumsPeople come first at McKinstry, and we go beyond the basic benefits with:Family formation benefits, including adoption and IVF assistanceUp to 16 weeks paid parental leave“Building Good” paid community service timeLearning and advancement opportunities via McKinstry UniversityMcKinstry Moves onsite gyms or reimbursement for remote workersIf you’re driven by our vision to build a thriving planet together, McKinstry is the place to build your career.The pay range for this position is $181,100 - $273,700 per year; however, base pay offered may vary depending on job-related knowledge, skills, and experience. Base pay information is based on market location. A bonus may be provided as part of the compensation package, in addition to a full range of medical, financial, and/or other benefits, dependent on the position offered.
#J-18808-Ljbffr
Head of Information Security
to join our growing Technology group in Seattle, WA. This person will be responsible for overseeing the organization's information security strategy, ensuring the protection of sensitive data and IT infrastructure. This role involves developing, implementing, and maintaining security roadmaps, policies, procedures, and protocols to mitigate risks and ensure compliance with regulatory requirements.You're great at:Leading an enterprise-wide Cybersecurity function and high-performing teamSetting Cybersecurity vision and strategy aligned to the company's prioritiesDeveloping and maintaining the company’s Cybersecurity program and reporting frameworkEstablishing Cybersecurity governance and building company cybersecurity knowledgeWhat You Need to Succeed at McKinstry:7-10 years’ experience and success in senior leadership roles in risk management, cybersecurity, and IT or OT securityDegree in business administration or a technology-related field, or equivalent work- or education-related experienceExperience successfully executing programs that meet the objectives of excellence in a dynamic business environmentExperience with contract and vendor negotiationsCertified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or other similar credentials, preferredKnowledge and understanding of relevant legal and regulatory requirements, such as: Local or national laws, standards and regulations, such as Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry/Data Security Standard.Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity FrameworkSound knowledge of business management and a working knowledge of cybersecurity risk management and cybersecurity technologiesUp-to-date knowledge of methodologies and trends in both business and ITExcellent communication skills, interpersonal and collaborative skills, and the ability to communicate cybersecurity and risk-related concepts to technical and non-technical audiences at various hierarchical levels, ranging from board members to technical specialistsStrategic leader and builder of both vision and bridges, and able to energize the appropriate teams in the organizationAbility to lead and motivate the cybersecurity team to achieve tactical and strategic goals, even when only "dotted" reporting lines existFinancial/budget management, scheduling and workforce managementA master of influencing entities and decisions in situations where no formal reporting structures exist, but achieving the desirable outcome is vitalBusiness acumen and an understanding of the organization’s risk profileAbility to develop and implement security strategies that are aligned with the organization's business goalsWhen it comes to the basics, we have you covered:Competitive pay401(k) with employer match and profit-sharing planPaid time off and holidaysComprehensive medical, prescription, dental, and vision with low or zero deductible options and low out of pocket maximumsPeople come first at McKinstry, and we go beyond the basic benefits with:Family formation benefits, including adoption and IVF assistanceUp to 16 weeks paid parental leave“Building Good” paid community service timeLearning and advancement opportunities via McKinstry UniversityMcKinstry Moves onsite gyms or reimbursement for remote workersIf you’re driven by our vision to build a thriving planet together, McKinstry is the place to build your career.The pay range for this position is $181,100 - $273,700 per year; however, base pay offered may vary depending on job-related knowledge, skills, and experience. Base pay information is based on market location. A bonus may be provided as part of the compensation package, in addition to a full range of medical, financial, and/or other benefits, dependent on the position offered.
#J-18808-Ljbffr