BISO - Business Information Security Officer / Remote

Join EVOTEK: North America's Premier Digital Business EnablerAs North America's premier enabler of secure digital business, we integrate cutting-edge technical expertise across data center, network, security, cloud, and communications domains. By delivering cohesive digital solutions, we help businesses drive measurable impact and accelerate their transformation.Our award-winning culture is the cornerstone of everything we do. Recognized multiple times by Inc. Magazine as a "Best Place to Work", we're proud to create an environment where innovation and collaboration thrive. Locally, we've been honored by The San Diego Business Journal as a "Best Place to Work" more than seven times, and our excellence is reflected in accolades like CRN's "Solution Provider 500", "Tech Elite 250", and "Top 150 Growth Companies". We've also earned a spot among CRN's "Triple Crown" award winners.If you're ready to be part of a team that values innovation, culture, and business impact, EVOTEK is the place for you.The Business Information Security Officer (BISO) will be responsible for helping drive the security strategy by developing and executing security initiatives that span technology, process, and culture. The (BISO) will be tasked with taking the existing strategy, direction and vision and evolving and expanding it to ensure the line of businesses meet and exceed security demands. In this role, you will be supporting a group/team to develop a deep understanding of the business to provide guidance on information security topics, policies, and controls.Develop, drive, and implement the overall information security program (goals, objectives, and policies) while establishing departmental goals and priorities to execute on that visionEstablish a defined, consistent security architecture standard and work with business units to implement technical controls in line with cutting edge best in class security and privacy standardsDrive domestic and international projects to meet emerging cyber security requirements, data protection and privacy lawsImplement approved policies and procedures to ensure information security efforts are properly coordinated and in compliance to make recommendations for changes and improvements to reduce the overall security riskMonitor and assess the compliance of the organization with information security policies and procedures, while ensuring third-party compliance. Oversee incident response planning, data loss prevention and remediation of breaches, serving as the focal point for response deliveryImplement an ongoing risk assessment program targeting information security and privacy matters; recommend methods for vulnerability detection and remediation and perform and/or oversee vulnerability testingCoordinate and deliver information security reporting and assessments as required by regulatory agencies, clients, and management. Work with peers across the company to review customer feedback/ requirements and ensure that security strategy and roadmaps are aligned with the security needs of customersKeep current on latest security and privacy legislation, regulations, alerts, and vulnerabilities pertaining to the organization. Conduct continual research to maintain knowledge of technology, customer needs and overall requirementsParticipate in key initiatives and projects to ensure that cybersecurity controls are accounted for early within the project and software development lifecyclesWork with the division to ensure risk assessments are conducted on high-risk business applications. Provide escalation for high-risk issues arising from those assessments. Ensure remediation plans are tracked to completionRequirementsCyber Compliance Assessments & Regulatory Compliance experience 10+ years of Information Technology experience, with a background in Security and ComplianceSeasoned track record of assessing threat and vulnerability from a business and technical perspective. Ability to develop and champions pragmatic security solutions that support growth of the businessExperience developing a strategic, comprehensive enterprise information security and IT risk and privacy management programExperience with supporting customer-facing products, not just internalAbility to create a culture of accountability and security. Service Level Management experienceAbility to communicate and engage effectively with a diverse audience, including front line technical staff, non-technical staff, management, executives, and vendors/providers. Self-starter with the ability to lead tasks with demonstrated ability to work independentlyBenefitsSalary commensurate with years' of experience, technical expertise and geographic locationSalary range: $150,000 to $190,000Performance bonusesBenefits package that includes 100% paid medical, dental and vision for the employee401(k) with employer matchStrong company cultureFlexible PTO policyFlexible working arrangementsAnnual company overnight retreat EVOTEK believes that everyone has the ability to make an impact, and we are proud to be an equal opportunity employer committed to providing employment opportunity regardless of sex, race, creed, color, gender, religion, marital status, domestic partner status, age, national origin or ancestry, physical or mental disability, medical condition, sexual orientation, pregnancy, military or veteran status, citizenship status, and genetic information.Apply for this job,