Sundial Software Career Opportunities

Director of Information Security and Compliance

Sundial Software - Madison, WI

Sundial Software is currently Hiring for a DIRECT HIRE position.  

The qualified candidate will be responsible for developing, implementing, and monitoring a strategic, comprehensive cybersecurity and compliance management program. You will provide the guidance necessary to manage the risk to the organization and will ensure business alignment, system and product availability, integrity, and confidentiality. You will implement, monitor, and maintain the processes and tools necessary to ensure a secure environment.

Responsibilities

Define and measure the execution of the cybersecurity strategies.

  • Develop and implement organizational security policy and procedure.
  • Ensure the organization can successfully satisfy the compliance requirements of external parties and facilitate business operations.
  • Facilitate the delivery of accurate and timely information delivery during audits, regulatory exams, and customer requests by building the assurance and evidence into cybersecurity operations.
  • Monitor security controls, audit devices, and detect for possible security threats, vulnerabilities, and incidents.
  • Investigate current cyber security trends/threats and provide IT leadership with timely communication updates.
  • Research, recommend and develop security and risk mitigation solutions.
  • React and respond to security incidents by coordinating with the appropriate internal teams and, if necessary, external authorities, legal professionals, and contracted security consulting firms.
  • Oversee and provide guidance to all DPO activities.
  • Responsible for the management of cybersecurity tools, documentation, standards, and processes to ensure an operating environment that conforms with policy and regulatory compliance requirements.
  • Develop strategies to optimize the organization’s security posture and support enabling technologies.

Experience & Qualifications

  • 7+ years of enterprise cybersecurity or relevant technology/risk management experience.
  • In-depth understanding of US and EU data protection laws.
  • In-depth understanding and/or experience implementing and measuring cybersecurity maturity with NIST, ISO, SOC2 or other industry standard security focused frameworks.
  • Experience implementing and managing industry standard security hardware and software appliances and tools.
  • Experience analyzing and interpreting system, security, and application logs to diagnose faults and spot abnormal behaviors.
  • Advanced knowledge of data security administration principles, method, and techniques including firewalls, network, and intrusion detection systems.
  • Comprehensive understanding of information security technologies and methodologies, information technology auditing, and business continuity management.
  • 3+ years of experience directing the activities of others.
  • Bachelor's degree in a related field or equivalent work experience necessary.

 



Posted On: Thursday, December 2, 2021



Apply to this job

or