Head of Information Security

Position/Title: Head of Information Security

Department: Information Technology

Reports to: Chief Operations Officer

Location: Arlington, VA 22209

Salary: $195,000.00 - $250,000.00 per year

Overview:

Salus Worldwide Solutions is seeking a seasoned leader to serve as our Head of Information Security. The ideal Information Technology professional has a proven track record of successfully building and managing high-performing, diverse technology solution teams. He or She will work with other department heads and executive leaders to support the overall health and mission of multiple client organizations. At Salus Worldwide Solutions, protecting and securing our information and our client’s information is paramount to the success of our mission. This is a critical role in the organization with the primary responsibility of addressing the evolving threat landscape, including advanced persistent threats, ransomware, insider threats, technology infrastructure, and system vulnerabilities.

General

This is a full-time FLSA exempt position, reporting to the Chief Operations Officer and managing our Information Technology department's operations.

Duties and Responsibilities:

Information Security Leadership:

· Provide strategic guidance on the company’s overall security strategy, services, and practices, aligning cybersecurity initiatives with the organization’s business objectives.

· Streamline the tactical and strategic goals of security engineering. Primary areas of focus will be (1) Endpoint Security; (2) Data Security; (3) Cloud Security; (4) Security Architecture; (5) Network Security, (5) Email Security.

· Lead the information security program as the security officer, ensuring the protection of the data and information assets from unauthorized access, use, disclosure, modification, or destruction.

· Conduct regular security audits, assessments, and tests, and implement corrective and preventive actions.

· Develop and maintain the security policies, procedures, and awareness programs, educating and training the staff and stakeholders on the security requirements and best practices.

· Evaluate and approve 3rd party software and services from a security perspective.

Information Technology Leadership:

Supervise and mentor the IT and administrative staff, providing guidance, feedback, and training.

· You will be responsible for designing, implementing, optimizing and supporting a wide range of enterprise IT infrastructure technologies utilized across the multiple organizations that we support.

· You will lead a core team of IT professionals in the execution of infrastructure backlog, initiatives and operations.

· You will provide technical direction over a collaborative IT team to deliver and manage the IT infrastructure environment, including network, server, storage, telephony, Active Directory / Entra, M365, email, Azure and related MS digital workplace technologies

· You will be responsible for fostering a close-knit team that receives coaching, mentoring, and training focused on security, uptime, response time, and efficient delivery, with clear ownership and priority definitions, individual development plans, and a collaborative support structure

· You will partner and collaborate with cross-functional teams and organizations to ensure alignment, prioritization and progress in the planning and delivery of tactical efforts and strategic projects.

IT Department Management:

· Manage vendor relationships, including selection, contract negotiation, and compliance with cybersecurity standards. Work closely with customers, partners, and stakeholders to understand their needs and incorporate feedback into the technological roadmap.

· Ensure all staff have the necessary hardware and software to perform their work.

· Implement best practices for providing IT support across the organization.

· Oversee the installation, configuration, and maintenance of the IT hardware, software, and network.

· Ensure the availability, reliability, and security of the IT systems and services, including backup, recovery, and disaster recovery plans.

· Establish and enforce the IT policies, standards, and best practices, ensuring compliance with relevant laws and regulations.

· Monitor and evaluate the IT performance and risks, identifying and resolving issues and implementing improvements.

· Coordinate and communicate with internal and external parties, such as vendors, contractors, auditors, and regulators.

· Stay updated on the latest IT and security trends, technologies, and best practices, and recommend and implement appropriate solutions.

Qualifications:

· This position requires a BA/BS or equivalent experience and 15 years of experience in information security including at least 3 years’ experience as a Chief Information Security Officer; with at least 5 years management experience or a master’s degree with 12 years of experience.

· DoD Top Secret (TS) clearance with SCI eligibility

· Progressively responsible background in enterprise level information security architecture to include coordinating information security procedures, security, and controls, attack & penetration testing, application testing, information security program gap analysis and incident response. Prior experience in managing complex Migration projects

· Certified Information Systems Security Professional (CISSP) or equivalent certification CRISC, CISA, CISM.

· Experience developing Python/bash/Perl scripts and employing automation frameworks such as Ansible. advanced scripting skills (Python, Ruby, Perl, Bash, PowerShell, etc.) as well as advanced knowledge and experience with virtual desktop interfaces.

· Current or Prior experience as the CISO, CTO, or CIO in a publicly traded or government contractor company.

· Understanding relevant legal, regulatory and privacy requirements such PCI DSS, ISO 27001, SOC2, FEDRAMP, CMMC etc.

· In-depth knowledge of various information security frameworks, standards, methodologies, and best practices (e.g., NIST, ISO, SANS, OWASP).

· Strong understanding of security technologies, trends, and best practices.

· Ability to manage multiple projects and initiatives in a fast-paced environment. Proven track record of developing and implementing successful information security programs

Key Competencies and Skills:

· Exceptional ability to expertly balance multiple, competing priorities and execute all in accordance with articulated timelines and requirements.

· Demonstrated ability to communicate clearly and effectively, both orally and in writing.

· A motivated self-starter who enthusiastically tackles challenging operational problems and can quickly grasp and implement creative solutions with limited supervision.

*This position description should not be construed to imply that the requirements are the sole standards for the position. Incumbents are expected to perform all other duties as required.

Salus Worldwide Solutions Corporation is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Job Type: Full-time

Pay: From $195,000.00 per year

Benefits:

• Dental insurance
• Health insurance
• Paid time off

Compensation Package:

• Bonus opportunities
• Holiday pay
• Performance bonus

Schedule:

• 10 hour shift
• 12 hour shift
• 8 hour shift
• Day shift
• Evening shift
• Holidays
• Monday to Friday
• Night shift
• On call
• Overnight shift
• Weekends as needed

Education:

• Master's (Preferred)

Experience:

• Senior leadership: 1 year (Required)

Security clearance:

• Confidential (Preferred)

Ability to Commute:

• Arlington, VA 22209 (Required)

Ability to Relocate:

• Arlington, VA 22209: Relocate before starting work (Required)

Work Location: In person

Salary : $195,000 - $250,000