Logo
Driscoll’s

Vice President of Information Security (CISO)

Driscoll’s, Watsonville, California, United States, 95076


About the Opportunity

The Vice President of Information Security (CISO) is responsible for developing, implementing, and overseeing the organization's information security strategy. This role ensures the protection of the company's information assets and technology infrastructure while supporting the achievement of business goals and compliance requirements. The CISO will lead a team of security professionals, collaborate with other executives, and act as the primary liaison for security-related matters.

Responsibilities

Strategic Leadership:Develop and execute a comprehensive information security strategy aligned with the organization's objectives and risk appetite.Advise and report to the executive team and board of directors on security risks, initiatives, and policies.Stay informed of industry trends, regulatory changes, and emerging threats to adapt the security strategy accordingly.Governance and Compliance:

Establish and enforce information security policies, procedures, and standards.Ensure compliance with relevant regulations, standards, and frameworks (e.g., GDPR, CCPA, ISO 27001).Oversee security audits and assessments, and coordinate with external auditors as necessary.Risk Management:

Identify and evaluate information security risks and develop strategies to mitigate them.Conduct regular risk assessments and vulnerability assessments.Lead incident response and management efforts, including investigation, resolution, and reporting of security incidents.Team Leadership:

Build, lead, and mentor a high-performing information global security team.Foster a culture of security awareness and continuous improvement within the organization.Oversee the professional development and training of the security team.Operational Management:

Implement and manage security tools, technologies, and infrastructure globally.Oversee the development and maintenance of business continuity and disaster recovery plans.Coordinate with IT and other departments to integrate security into organizational processes and technology projects.Stakeholder Engagement:

Collaborate with internal and external stakeholders to ensure alignment on security objectives and initiatives.Serve as the primary point of contact for security-related issues and concerns.Communicate security strategy, goals, and progress to employees, partners, and vendors.Policy Development and Compliance:

Establish and enforce security policies, procedures, and protocols to protect the organization's information and IT assets.Ensure compliance with relevant laws, regulations, and standards, such as GDPR, HIPAA, PCI-DSS, and SOX.Lead internal and external audits and assessments, ensuring the organization meets all compliance requirements.Candidate Profile

Bachelor's degree in Computer Science, Information Security, or a related field. Master's degree or relevant certifications (e.g., CISSP, CISM, CISA) preferred.At least 10-15 years of experience in information security, with a proven track record in a senior leadership role and global experience in leading information security teams.Strong understanding of information security principles, risk management, compliance, and security technologies. Excellent leadership, communication, and strategic thinking skills.Deep knowledge of regulatory requirements, industry best practices, and emerging security threats.Deep understanding of cybersecurity principles, frameworks, and best practices, including NIST Cybersecurity Framework (CSF), ISO 27001, and others. High familiarity with privacy laws across all global jurisdictions.Preferred (other) Qualifications

A valid passport and the ability to travel internationally without restrictions.Valid driver's license and the ability to be covered under a company-sponsored vehicle insurance program.

Compensation & Benefits

The following information is provided in good faith as a general description of the salary range and benefits for the position posted. The actual compensation offered to the successful candidate is dependent upon experience, skills, education, work location, internal pay equity, and other objective job-related factors.

Salary Range estimated for the

Vice President of Information Security

role: $248,000.00/year to $300,000.00/year.

Driscoll's is committed to a culture of care and offers an attractive benefits package that includes comprehensive medical, dental, and vision coverage, life insurance, and disability coverage for positions working more than 30 hours per week. Other benefits include: 401(k) with employer match, profit-sharing participation, paid sick time, paid vacation, paid personal and family care leave, and a free Employee Assistance Program (EAP). More detailed information regarding the benefits package, will be shared during the application process.