Director of Security

Crete Professionals Alliance·Remote(United States)
Software Development
Excel

WFA Digital Insight

The demand for skilled cybersecurity leaders has been on the rise, with a staggering 40% increase in job postings over the past year. As companies navigate the complexities of cloud security and compliance, the need for experts who can manage and govern security standards has become increasingly important. Crete Professionals Alliance is at the forefront of this trend, and their Director of Security role is an exciting opportunity for experienced professionals to lead the charge. With the company's rapid growth and commitment to innovation, this role stands out in the current remote job market. Candidates should be prepared to showcase their expertise in cloud security, compliance, and business continuity, as well as their ability to lead and develop high-performing teams.

Job Description

About the Role

The Director of Security at Crete Professionals Alliance will play a critical role in leading the company's enterprise information security, compliance, and business continuity program. This will involve developing and implementing comprehensive security strategies, managing and governing compliance standards, and ensuring the continuity of business operations. The successful candidate will have a strong understanding of cloud security principles, with hands-on experience in Azure and Microsoft security.

As a key member of the leadership team, the Director of Security will be responsible for designing and running a complete enterprise security control program. This will involve managing and developing a team of security professionals, as well as collaborating with other departments to ensure the alignment of security policies and procedures. The role will also require strong stakeholder management and executive communication skills, with the ability to communicate complex security issues to non-technical stakeholders.

The company is looking for a seasoned security leader with a proven track record of managing and governing security programs. The ideal candidate will have experience in managing compliance standards, business continuity programs, and third-party security services. They will also have a strong understanding of cloud security principles and hands-on experience in Azure and Microsoft security.

What You Will Do

  • Develop and implement comprehensive security strategies to protect the company's assets and data
  • Manage and govern compliance standards, including NIST, CSF, CIS, and SOC2 Type II
  • Ensure the continuity of business operations by developing and implementing business continuity plans
  • Design and run a complete enterprise security control program
  • Manage and develop a team of security professionals
  • Collaborate with other departments to ensure the alignment of security policies and procedures
  • Communicate complex security issues to non-technical stakeholders
  • Manage and govern third-party security services, including MDR/SOC, IR retainers, and testing vendors
  • Develop and implement cloud security strategies, including Azure and Microsoft security
  • Manage and govern compliance with regulatory requirements, including data protection and privacy laws

What We Are Looking For

  • 10+ years of progressive experience in information security or cybersecurity
  • 3+ years of experience leading and developing security teams
  • Demonstrated experience in managing and governing compliance standards, including NIST, CSF, CIS, and SOC2 Type II
  • Strong understanding of cloud security principles, with hands-on experience in Azure and Microsoft security
  • Experience in managing business continuity programs and lifecycle Microsoft Azure/Intune experience
  • Experience in managing third-party security services, including MDR/SOC, IR retainers, and testing vendors
  • Proven ability to design and run a complete enterprise security control program
  • Excellent stakeholder management and executive communication skills
  • Bachelor's degree or equivalent experience in a related field
  • Security certifications, such as CISSP, are preferred

Nice to Have

  • Experience in managing and governing compliance standards in a cloud-based environment
  • Knowledge of regulatory requirements, including data protection and privacy laws
  • Experience in managing and developing a team of security professionals in a remote work environment
  • Familiarity with agile development methodologies and DevOps practices

Benefits and Perks

  • Competitive salary and benefits package
  • Opportunity to work with a rapidly growing company
  • Collaborative and dynamic work environment
  • Professional development opportunities, including training and certification programs
  • Flexible work arrangements, including remote work options
  • Access to cutting-edge technology and tools
  • Recognition and reward programs for outstanding performance
  • Comprehensive health and wellness programs
  • Generous paid time off and holidays
  • Retirement savings plan with company match
  • Employee assistance programs, including mental health support and employee wellness initiatives

How to Stand Out

  • Highlight your experience in managing and governing compliance standards, including NIST, CSF, CIS, and SOC2 Type II, to demonstrate your expertise in security compliance.
  • Showcase your understanding of cloud security principles, including Azure and Microsoft security, to demonstrate your ability to manage and govern cloud-based security programs.
  • Emphasize your experience in managing and developing a team of security professionals, including remote work experience, to demonstrate your ability to lead and manage a team.
  • Be prepared to discuss your experience in managing business continuity programs and lifecycle Microsoft Azure/Intune experience, to demonstrate your ability to ensure the continuity of business operations.
  • Research the company's current security posture and be prepared to discuss your ideas for improving and managing their security programs, to demonstrate your expertise and knowledge of the field.
  • Highlight your excellent stakeholder management and executive communication skills, to demonstrate your ability to communicate complex security issues to non-technical stakeholders.
  • Be prepared to discuss your experience in managing and governing third-party security services, including MDR/SOC, IR retainers, and testing vendors, to demonstrate your ability to manage and govern security services.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.