Apex Systems
PCL Information Security Director
Apex Systems, Fort Lauderdale, Florida, us, 33336
Job#: 2057916
Job Description:
Apex Systems, a World-Class Technology Solutions Provider, is seeking applicants for the below position on behalf of our client. Please apply if interested and qualified. Please note that only qualified candidates will be contacted.
Position:
Information Security Director Location:
Fort Lauderdale, FL - hybrid 3x a week Duration:
Direct Hire Rate Range:
$160k-$180k base salary Position Overview: The Information Security Officer (BISO) plays a critical role in safeguarding information assets, ensuring compliance with security policies, and mitigating potential risks. This includes overseeing and implementing security initiatives at the brand level that come from the Office of CISO, aligning Brand IT activities with corporate security objectives, addressing brand-specific risks, and guiding Brand IT on security domains requirements. The BISO is also responsible for reporting compliance with these requirements to the Global CISO and Brand Executives. Essential Functions: Prioritize, oversee, and manage security and compliance related projects and business-as-usual activities in the brand, ensuring successful execution and reporting. These projects and activities span across Identity and Access Management, Governance Risk and Compliance, Security Architecture, Maritime Safety, Infrastructure Application and Data Security, and Threat Management. Resource Allocation: Proposing and allocating funds for security tools, software, and hardware to protect the company’s information assets. Risk Management: Budgeting for risk assessments, penetration testing, and other security assessments to identify vulnerabilities and mitigate risks. Compliance: Proposing and allocating funds for compliance efforts to meet legislative and regulatory requirements related to information security. Continuous Improvement: Allocating funds for ongoing security improvements, such as security updates, patches, and upgrades to existing security infrastructure. Policy and Standards Adherence: Ensure that the brand IT adheres to corporate security policies, standards, and guidelines, and develop brand-specific security policies when necessary. Team Management: Ensure that sufficient resources are allocated to the Brand for security, meeting the security requirements of the Domains. Performance Metrics: Track standard key security performance indicators to measure and improve brand security posture, effectiveness and reporting the result back to the CISO office and Brand Executives. Stakeholder Management: Collaborate with the security domains, peer BISOs, brand IT leaders, audit and other brand stakeholder groups to share best practices, brand security agenda and manage expectations. Vendor Management: Responsible for negotiating, cultivating and maintaining strong relationships with external suppliers, overseeing contract negotiations, ensuring vendor compliance with agreed-upon terms, and mitigating risks to optimize the overall performance of the vendor ecosystem at brand level. Qualifications: Education: Bachelor’s degree in Business Informatics, Business Administration, Information Technology, Computer Science, or Information Security. Master’s degree in degrees relevant to Information Technology or Information Security is preferred. Certifications: Desired to have one or more of the following certificates: CISM, CISSP. Desired to be trained in Project management, product management or Agile approach. Work Experience: 8-12 years of experience in roles relevant to information security. 2-3 years of team management or leadership experience. Critical Professional Related Technical/Computer Skills: Deep understanding and familiarity with core concepts of network security, security architecture, security operation, vulnerability management, cloud security, application security, security awareness program and threat intelligence. Experience with security technologies and tools, including SIEM, IDS/IPS, endpoint protection, encryption, access control, firewalls, Vulnerability Management, etc. Strong knowledge of cybersecurity and privacy principles, frameworks, and best practices (e.g., NIST Cybersecurity Framework, PCI, SOX, GDPR). Team management, stakeholder management, communication and interpersonal skills. Ability to analyze complex security issues and provide timely and effective solutions. Preferred Experience & Type: Previously acted as security manager or senior security consultant in mid to large organizations. EEO Employer Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package.
#J-18808-Ljbffr
Information Security Director Location:
Fort Lauderdale, FL - hybrid 3x a week Duration:
Direct Hire Rate Range:
$160k-$180k base salary Position Overview: The Information Security Officer (BISO) plays a critical role in safeguarding information assets, ensuring compliance with security policies, and mitigating potential risks. This includes overseeing and implementing security initiatives at the brand level that come from the Office of CISO, aligning Brand IT activities with corporate security objectives, addressing brand-specific risks, and guiding Brand IT on security domains requirements. The BISO is also responsible for reporting compliance with these requirements to the Global CISO and Brand Executives. Essential Functions: Prioritize, oversee, and manage security and compliance related projects and business-as-usual activities in the brand, ensuring successful execution and reporting. These projects and activities span across Identity and Access Management, Governance Risk and Compliance, Security Architecture, Maritime Safety, Infrastructure Application and Data Security, and Threat Management. Resource Allocation: Proposing and allocating funds for security tools, software, and hardware to protect the company’s information assets. Risk Management: Budgeting for risk assessments, penetration testing, and other security assessments to identify vulnerabilities and mitigate risks. Compliance: Proposing and allocating funds for compliance efforts to meet legislative and regulatory requirements related to information security. Continuous Improvement: Allocating funds for ongoing security improvements, such as security updates, patches, and upgrades to existing security infrastructure. Policy and Standards Adherence: Ensure that the brand IT adheres to corporate security policies, standards, and guidelines, and develop brand-specific security policies when necessary. Team Management: Ensure that sufficient resources are allocated to the Brand for security, meeting the security requirements of the Domains. Performance Metrics: Track standard key security performance indicators to measure and improve brand security posture, effectiveness and reporting the result back to the CISO office and Brand Executives. Stakeholder Management: Collaborate with the security domains, peer BISOs, brand IT leaders, audit and other brand stakeholder groups to share best practices, brand security agenda and manage expectations. Vendor Management: Responsible for negotiating, cultivating and maintaining strong relationships with external suppliers, overseeing contract negotiations, ensuring vendor compliance with agreed-upon terms, and mitigating risks to optimize the overall performance of the vendor ecosystem at brand level. Qualifications: Education: Bachelor’s degree in Business Informatics, Business Administration, Information Technology, Computer Science, or Information Security. Master’s degree in degrees relevant to Information Technology or Information Security is preferred. Certifications: Desired to have one or more of the following certificates: CISM, CISSP. Desired to be trained in Project management, product management or Agile approach. Work Experience: 8-12 years of experience in roles relevant to information security. 2-3 years of team management or leadership experience. Critical Professional Related Technical/Computer Skills: Deep understanding and familiarity with core concepts of network security, security architecture, security operation, vulnerability management, cloud security, application security, security awareness program and threat intelligence. Experience with security technologies and tools, including SIEM, IDS/IPS, endpoint protection, encryption, access control, firewalls, Vulnerability Management, etc. Strong knowledge of cybersecurity and privacy principles, frameworks, and best practices (e.g., NIST Cybersecurity Framework, PCI, SOX, GDPR). Team management, stakeholder management, communication and interpersonal skills. Ability to analyze complex security issues and provide timely and effective solutions. Preferred Experience & Type: Previously acted as security manager or senior security consultant in mid to large organizations. EEO Employer Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package.
#J-18808-Ljbffr