Vice President, Chief Information Security Officer (CISO)

Job Title:

Vice President, Chief Information Security Officer (CISO)

Role Overview:

We are seeking a dynamic and experienced VP, Chief Information Security Officer, to lead the process of all assurance activities related to the availability, integrity and confidentiality of customer, business partner, employee and business information in compliance with the organization's information security policies. A key element of the CISO's role is working with executive management to determine acceptable levels of risk for the organization. This position is responsible for establishing and maintaining a corporate-wide information security management program to ensure that information assets are adequately protected.

This is based in United States as a remote position. We will only consider candidates currently in The United States and are not offering relocation assistance at this time

About the Role:

• Strategic Leadership:
  • Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program
  • Work directly with the business units to facilitate risk assessment and risk management processes
  • Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems
  • Provide leadership to the enterprise's information security organization
• Cross-Functional Collaboration:
  • Partner with business stakeholders across the company to raise awareness of risk management concerns
  • Interact with Global Markets engineering stakeholders to understand and communicate risks to critical infrastructure and systems, defining potential business impact, and tracking commitments to apply effective mitigating controls.
  • Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems and services
• Implementation Focus:
  • Develop and enhance an information security management framework
  • Drive adoption of application security, technology privacy, privilege management and vulnerability management controls as part of the Software Development Life Cycle (SDLC) and production management (DevOps) processes.

About You:

• Minimum of eight to 12 years of experience in a combination of risk management, information security and IT jobs
• Knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST.
• Excellent written and verbal communication skills and high level of personal integrity
• Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams
• Experience with contract and vendor negotiations and management including managed services.
• Experience interfacing with and communicating complex technical security concepts to non-technical audiences.
• Information security policy, standards, guidelines or procedures development and implementation.
• Infrastructure, database and/or application security experience.
• Privilege management (i.e. access and identity management, access re-certification) experience.
• Control self-assessment, SOX404 technical control assessment, SOC 1/SOC 2 control assessment experience.
• Strong knowledge of control frameworks and the ability to design and evaluate effectiveness of controls embedded within business processes.
• Ability to work with large data sets, reporting dashboards and excel worksheets.
• Industry accepted security certifications including CISSP or CISM or CRISC or equivalent SANS certification
• Specific experience in Agile (scaled) software development or other best in class development practices.
• Experience with Cloud computing/Elastic computing across virtualized environments.

#LI-Remote

Company Overview

McAfee is a leader in personal security for consumers. Focused on protecting people, not just devices, McAfee consumer solutions adapt to users’ needs in an always online world, empowering them to live securely through integrated, intuitive solutions that protects their families and communities with the right security at the right moment.

Company Benefits and Perks:

We work hard to embrace diversity and inclusion and encourage everyone at McAfee to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees.

• Bonus Program
• 401k Retirement Plan
• Medical, Dental, Vision, Basic Life, Short Term Disability and Long-Term Disability Coverage
• Paid Parental Leave
• Support for Community Involvement
• 14 Paid Company Holidays
• Unlimited Paid Time Off for Exempt Employees
• 96 Hours of Sick Time and 120 Hours of Vacation for Non-Exempt Employees Accrued Each Year

We're serious about our commitment to diversity which is why McAfee prohibits discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.

Please click here to view and download the Job Applicant Privacy Notice, which applies to all McAfee job applicants who are residents of the state of California.