vCISO

Posted 10 days 16 hours ago by Thrive

Permanent
Not Specified
Other
London, United Kingdom
Job Description

About Us

Thrive is a rapidly growing technology solutions provider focusing on Cloud, Cyber Security, Networking, Disaster Recovery, and Managed Services. Our corporate culture, engineering talent, customer-centric approach, and focus on "next generation" services help us stand out among our peers. Thrive is on the lookout for individuals who don't view their weekdays spent at "a job", but rather look to develop valuable skills that ignite their passion and lead to a CAREER. If you're attracted to a "work hard, play hard" environment, seeking the guidance, training, and experience necessary to build a lucrative career, then welcome to THRIVE!

Position Overview

Work with Thrive's vCISO Service clients to assess their current Information Security Program and develop an appropriate, business-aligned strategy to establish a proactive approach to cyber risk management. Implement customized, risk-based Information Security Programs and the associated controls frameworks to complement each client's business and IT operations. Ensure all Governance, Regulatory, and Compliance obligations are addressed from an Information Security perspective. Be a trusted advisor and "go-to" resource for Senior IT and Executive Leadership for all things relating to Information Security.

Responsibilities
  • Serve as Information Security Subject Matter Expert for Executive leadership.
  • Develop annual strategic plans and supporting project roadmaps.
  • Collaborate and coordinate with internal IT resources to execute the security plan.
  • Create remediation plans for all security assessments.
  • Conduct annual risk assessments.
  • Coordinate Penetration Tests with third parties.
  • Collaborate with customers on policy development and implementation.
  • Assist with Security Incident Response and tabletop exercises.
  • Mentor client technical resources as requested.
Performs assessments with clients in the following areas:
  • Information Security Strategy
  • Information Security Governance
  • Information Security Program Development and Management
  • Information Security Risk Management
Qualifications
  • Bachelor's Degree or equivalent work experience in cybersecurity (MBA preferred)
  • 5+ years' experience in Information Security Preferred
  • Certified Information Systems Security Professional (CISSP) and/or Certified Information Security Manager (CISM)
  • Expert in security frameworks such as CIS, NIST, CMMC, HIPAA/HITECH, PCI-DSS, ISO 27001/2