Chief Information Security Officer

Chief Information Security Officer 

New York, NY

Non-Profit; Mission Driven

The Organization is national organization HQ’ed in New York City with a multitude of affiliates throughout the United States. The Chief Information Security Officer will play a significant and leading role in implementing and supporting the information security program throughout the entire organization.  The mission of the information security program is to protect the information security, privacy and confidentiality of a wide variety of constituents to include supporters, donors, and staff through consistent management of security, technology, and brand risks. The chosen candidate will partner with affiliates to implement an enterprise-wide strategy and plan for information security.  The chosen individual will:

• Provide leadership and support within HQ’s and across all the affiliates to deploy basic layers of control to prevent and reduce the risks of unauthorized access to information and data 

• Help design, implement, and operate information security best practices and processes

• Provide guidance and support in the selection of security technology solutions

• Lead the implementation of information security programs, to include identity management, network/endpoint/data protection, threat and vulnerability management, security software development, security monitoring and incident response, insider threat, and security awareness


• Manage the information security department, and related contractors and consultants 

• Understand existing processes and controls with respect to information technology and security

• Coordinate with security specialists, network engineers, system engineers,  Web application engineers and security program managers  to determine security risk issues

• Oversee the management of  third party IT relationships, including managing security services as required 

• Develop IT security risk metrics wherever possible and identify issues that put the organization or its affiliates at risk as well as other stakeholders

• Maintain documentation surrounding the dynamic National and Affiliate environment and security risk analyses

• Manage projects developing network and security architectures as related to identity management, access privileges, delegated administration models, workflow, and access control models

• Understand current regulatory environment and related implications to compliance

• Assist in developing standards, policies and procedures to enable a productive IT environment

• Review incoming IT project proposals for risk, architectural impact, strategic alignment and impact

• Drive the evaluation of solutions, selection of technologies and enact strategic decisions based on established standards and existing architecture


The Chief Information Security Officer will demonstrate the following: 

• Diplomatic style; and high emotional intelligence

• Collaborative work style; able to facilitate amongst diverse communities and individuals; can inspire top performance in others; willingness to pitch in/jump in

• Comfortable in ambiguity; able to create clarity and understanding

• Experienced in getting to “yes” in a collaborative, consensus driven style 

• Enjoys operating in a fast-paced and demanding environment; a nimble and flexible style

• A direct and open style; creative, out-of-the-box thinker who can translate concepts and ideas to broader audience 

• A smart and confident leader with a clear and informed opinion who has experience leading teams while being able to prioritize and manage conflicting priorities for self and others 

• Deep appreciation for the organizational mission

• Integrity, independent thinking, and personal courage


• Bachelor’s degree required; Masters in relevant field preferred

• Preference given to SANs and/or GIAC certification; a t least one IT security certification (CISA, CISM, CISSP, OSCP, OSCE,)

• At least 10 years of experience in information security 

• Creative, out-of-the-box thinker 

• Self-motivated, able to work successfully as an individual contributor or as a team member

• Organized with attention to detail; proven ability to conceptualize, plan and execute ideas while providing training and skills transfer to other 

• Previous experience with at least one of the following information security frameworks: HIPAA, NIST, ISO 27001, PCI, SANS 20


• As needed

NYC/Washington DC/ remote possibilities

Interested parties should submit a cover letter and resume to Glenn Bass: gbass@siplacement.com


Expired, click here to search for relevant jobs

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing careersinfosecurity.com, you agree to our use of cookies.