Posted at: 22 April

vCISO

Company

CompanyThrive

Thrive is a global B2B IT services provider specializing in NextGen managed services, cybersecurity, and cloud solutions for small and mid-market organizations.

Remote Hiring Policy:

Thrive embraces a flexible remote work culture and hires from various regions, including the US, UK, Canada, Australia, Singapore, Hong Kong, and the Philippines, allowing team members to collaborate across time zones.

Job Type

Full-time

Allowed Applicant Locations

United States, Canada, United Kingdom, Singapore, Philippines, Hong Kong, Australia

Apply Here

Job Description

About Us

Thrive is a rapidly growing, industry leading technology solutions provider focusing upon Cloud, Cyber Security, Networking, Disaster Recovery and Managed Services. Our mission is to become the largest and most respected provider of NextGeneration managed services, serving emerging, mid-market, and enterprise customers alike.  We are a transnational company presently operating throughout the US and in the UK, Australia, Canada, Hong Kong, the Philippines and Singapore. We have a rich history growing organically and through strategic acquisitions, having completed nearly two dozen acquisitions since our founding.      

Position Overview 

Work with Thrive’s vCISO Service clients to assess their current Information Security Program and develop an appropriate, business aligned strategy to establish a proactive approach to cyber risk management. Implement customized, risk-based Information Security Programs and the associated controls frameworks to complement each client’s business and IT operations. Ensure all Governance, Regulatory and Compliance obligations are addressed from an Information Security perspective. Be a trusted advisor and “go-to” resource for Senior IT and Executive Leadership for all things relating to Information Security. 


Responsibilities 

  • Serve as Information Security Subject Matter Expert for Executive leadership. 

  • Develop annual strategic plans and supporting project roadmaps. 

  • Collaborate and coordinate with internal IT resources to execute the security plan. 

  • Create remediation plans for all security assessments. 

  • Conduct annual risk assessments. 

  • Coordinate Penetration Tests with third parties. 

  • Collaborate with customers on policy development and implementation. 

  • Assist with Security Incident Response and tabletop exercises. 

  • Mentor client technical resources as requested 

  • Performs assessments with clients in the following areas:  

  • Information Security Strategy 

  • Information Security Governance 

  • Information Security Program Development and Management 

  • Information Security Risk Management 

Qualifications 

  • Bachelor’s Degree or equivalent work experience in cybersecurity (MBA preferred) 

  • 5+ years’ experience Information Security Preferred 

  • Certified Information Systems Security Professional (CISSP) and/or Certified Information Security Manager (CISM) 

  • Expert in security frameworks such as CIS, NIST, CMMC, HIPAA/HITECH, PCI-DSS, ISO 27001/2 

Apply Here