Director of Information Technology Security

Company: US Main
Location: Alpharetta
Posted on: March 8, 2025

Job Description:

Job Title: Director Information Technology Security

Is your CV ready If so, and you are confident this is the role for you, make sure to apply asap.

Department: Operations

Reports To: Chief Administrative Officer

Direct Reports: IT Organization

Effective Date: March 2025

Exempt/Non-exempt: Exempt

POSITION OVERVIEW:



The Director of Information Technology (IT) Security will be responsible for managing the IT department, computer and network systems as well as developing, implementing and monitoring a strategic, comprehensive enterprise cybersecurity and IT risk management program. The Director, IT Security will provide the vision and leadership necessary to manage the risk to the organization and will ensure business alignment, effective governance, systems and product availability, integrity, and confidentiality. This position reports to the Chief Administrative Officer.

ESSENTIAL FUNCTIONS:

Develop and implement the organization's IT security strategy, policies, and procedures.
Lead and manage IT initiatives for providing guidance, training, and support to ensure both the effective network/systems administration and execution of security initiatives.
Creation and execution of security strategies that will increase the efficiency of IT systems and projects within the JAG organization.
Conduct regular risk assessments and vulnerability tests to identify potential security threats and develop strategies to mitigate them.
Monitor and analyze security incidents, investigating any breaches or security incidents and implementing corrective actions as necessary.
Stay up to date with the latest industry trends, threats, and technologies to ensure that the organization's IT security measures are current and effective.
Collaborate with other departments to ensure that security requirements are integrated into the design and implementation of new systems and technologies.
Develop and implement security awareness programs to educate employees about security best practices and promote a culture of security within the organization.
Support accounting/purchasing to manage vendor relations and partners to ensure that security controls are effectively implemented and maintained.
Ensure compliance with relevant regulatory requirements and industry standards, such as GDPR, CMMC 2.0, ISO 27001, etc.
Prepare and present regular reports to senior management on the organization's IT security posture, including insights, recommendations, and metrics.
Liaising with other senior level directors and the board to ensure that new systems align with the organization's overall security policies and data protection strategies.
Preparing budgetary allocations and financial forecasts relating to cybersecurity.

QUALIFICATIONS:

Bachelor's degree from an accredited institution, with degree preferred in Computer Science or Information technology systems security or related field. Master's degree preferred.
Minimum ten (10) proven experience in an IT security leadership role, with a track record of successfully implementing and managing IT security programs.
Professional certifications in Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA) are highly desirable.
Strong knowledge of relevant regulations and standards, such as General Data Protection Regulation (GDPR), ISO 27001, NIST 800-171, CMMC 2.0, DFAR, FAR, ITAR,
Experience in establishing cybersecurity and risk metrics for reporting.
Demonstrated management skills, e.g., budget development and administration, policy development and implementations, personnel administration, staff training and development.
Demonstrated ability to work with diverse people, effective oral and written communications skills.

ADDITIONAL:

We are a dynamic organization in a rapidly changing industry. Accordingly, the responsibilities associated with this job will change from time to time in accordance with the Company's business needs. More specifically, the incumbent may be required to perform additional and/or different responsibilities from those set forth above.

The above declarations are not intended to be an all-inclusive list of the duties and responsibilities of the job described, nor are they intended to be such a listing of the skills and abilities required to do the job. Rather, they are inten

Keywords: US Main, Alpharetta , Director of Information Technology Security, Executive , Alpharetta, Georgia