Vice President, Chief Information Security Officer

September 11

Apply Now

Receive Emails with Similar Jobs

General Atlantic

WebsiteLinkedInAll Job Openings

Pioneering growth equity #DrivingGlobalGrowth

Growth equity and Private equity

201 - 500

Description

• Manage a global team of cybersecurity professionals consisting of full-time employees, consultants, contractors, and managed service providers. • Evaluate, enhance, and execute a comprehensive information security strategy aligned with the firm's business objectives and risk tolerance. • Identify, assess, and prioritize security risks across the enterprise and implement strategies to mitigate those risks. • Manage the information security budget and projects, including planning and allocation of resources for security initiatives and technologies. • Communicate security strategy, risks, and incidents to senior management, board members, executive committee, and other stakeholders, providing key performance indicators and recommendations. • Maintain, update, and enforce the firm’s information security policies, procedures, and standards to protect the firm’s assets and data. • Work closely with IT, Legal, Compliance, and other departments to integrate security considerations into business processes and projects. • Manage day-to-day security operations functions including Asset inventory, Identity and Access Management, Threat Intelligence, Secure Culture and Awareness, Third Party Risk Management, Threat and Vulnerability Management, Data Protection, 24/7 Detect and Respond, and Incident Management. • Ensure compliance with relevant cybersecurity regulations and industry standards, such as GDPR and NIST Cybersecurity Framework. Maintain updated knowledge of the cybersecurity regulatory landscape from SEC, FCA, MAS, SFC, and others. • Represent GA’s security program to external parties, including portfolio companies and investors via ad-hoc advisory or incident management guidance, as well as investor due diligence reviews (DDQ / ODD). • Provide advice and serve as a trusted partner for Security adjacent functions such as Business Continuity Planning, Privacy, Disaster Recovery, Change Management, and Physical Safety. • Stay informed of emerging security trends and technologies and socialize these with other IT leaders as necessary to continually improve the firm’s security posture.

Requirements

• Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or a related field ideal; Master’s degree a plus • 12+ years of work experience in a related role • Strong knowledge of the alternative investment industry and private equity, in particular • Public company experience preferred • Professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), or other similar credentials strongly preferred • Strong cybersecurity and technology background both academically and as a practitioner • Ability to work in a fast-paced environment and retain professionalism and accuracy • A proven manager and team leader who is detail-oriented, organized, and strategic-thinking with the ability to delegate and collaboratively resolve issues • Knowledge of common information security management frameworks, such as NIST CSF and ISO/IEC 27001 • Experience with contract and vendor negotiations and management, including managed services • Experience with Cloud Computing/IaaS/PaaS/SaaS technologies • Solid external network of peers and other collaborators in the cybersecurity industry; relationships with law enforcement and intelligence agencies are a plus • A strong work ethic and ‘can do’ attitude: motivated, flexible nature, team-player spirit, ability to maintain composure at all times • Strong comfort and experience liaising with internal and external contacts at all levels • Excellent written and oral communication

Benefits

• Medical insurance • Retirement savings contributions • Mental and physical health resources • Equal pay program • Annual discretionary bonuses • Long-term incentive programs