Security Director, Group IT Infrastructure and Operations

Job Description

This IT Security Director will play a critical role in advancing the strategy, capability, and maturity of IT cybersecurity and risk management. The IT Security Director will be responsible for creating long-term strategy, development, implementation, and ongoing monitoring of a comprehensive enterprise cybersecurity program. The program is intended to maintain the integrity, confidentiality, and availability of BIC’s IT systems, data, and assets.

• Responsible for creating a long-term global security strategy and annual roadmaps to guide maturation of the security function
• Responsible for directly managing several 3rd party security service providers
• Responsible for hiring and managing a team of highly skilled security professionals
• Responsible for planning and implementing security safeguards and standards
• Ensure access control, endpoint management, and vulnerability management are current and implemented with enterprise grade solutions
• Protect unauthorized use and access to corporate and personal data; enforce adherence to compliance standards (GDPR, PII, PCI)
• Lead incident response team to contain, investigate, remediate, and prevent cybersecurity incidents
• Help create enterprise-wide security awareness and security training to educate our workforce against potential security threats
• Determine annual global pen testing requirements, selection of pent testing vendor(s), and remediation of critical and high vulnerabilities
• Lead research and evaluation of industry leading enterprise security tools
• Participate in developing a change management process and review board

• Creation of a comprehensive global security strategy with corresponding 12-18 month roadmaps
• Implementation of an enhanced endpoint protection solution (EDR)
• Completion of multi-factor authentication rollout and adoption for O365 and evaluation of MFA for other applications
• Research and selection of a SIEM tool
• ISO 27001 certification
• Creation of a security operations center (SOC)
• Lead a cybersecurity capability benchmark assessment

Qualifications

• Bachelor’s Degree in computer science, information technology, information security or engineering; Master’s degree preferred
• Minimum 15 years of IT experience with a minimum of 10 years of experience in cybersecurity
• CISSP or CISM certification considered a strong plus
• Experience building and operating cybersecurity programs in a global organization
• Experience with current cyber threat landscape, attack methodologies, risk mitigations and remediation methods
• Experience with data privacy regulations (GDPR, PII) and compliance (PCI)
• Experience of security frameworks such as NIST required
• Available for occasional international travel
• Team and collaboration orientation
• Effective written/verbal communication skills

#LI-DC1

Additional Information

BIC is an Equal Opportunity Employer. We strongly commit to hiring people with different backgrounds and experiences to help us build better products, make better decisions, and better serve our customers. We do not discriminate based upon race, religion, color, national origin, gender, sexual orientation, veteran status, disability status, or similar characteristics. All employment is decided based on qualifications, merit, and business need.

BIC is not seeking assistance or accepting unsolicited resumes from search firms for this employment opportunity. Regardless of past practice, all resumes submitted by search firms to any team member at BIC via email, or directly to a BIC team member in any form without a valid written search agreement in place for that position will be deemed the sole property of BIC, and no fee will be paid in the event the candidate is hired by BIC as a result of the referral or through other means.