Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cjbender
Viewer II
‎07-22-2024 09:33 AM
‎07-22-2024 09:33 AM

CISO Opportunity for Professional Services & DevOps Firm

Chief Information Security Officer

 

About Northcross Group

Northcross Group (NCG) is a professional services firm specializing in merger and acquisition integrations, system modernization, and compliance programs for clients in the private and public sectors. We provide industry-specific business solutions and understand the importance of providing the same level of care to the people who will use it and the underlying data. These fundamentals—technology, data, and people—are all a part of the equation for success.   We work with clients in the banking/finance, healthcare, transportation, manufacturing, technology, and federal markets.

 

NCG develops tooling and automated platforms to support its professional services practices and is in the process of deploying a SaaS platform that will make some of its tooling available to broader markets.  We have an internal development team that develops, maintains, and continuously improves our automation.

 

Opportunity Description

NCG is looking for a Chief Information Security Officer (CISO) to lead our cybersecurity and privacy practice professional services practice and to further develop our DevSecOps capabilities to support our automation capabilities and offerings. The CISO will be accountable for enhancing our cybersecurity and privacy capabilities through strategic directing of research and development to evolve capabilities to meet changing threats, markets, and client objectives for information security and privacy.

 

The CISO will be responsible for leading our Cyber Team that works to help clients develop and manage compliant infrastructures honed to meet the current remote/virtual workforce needs while addressing requirements for data and system security and privacy. This position will play a lead role in defining NCG's corporate strategy in the cybersecurity space and alignment with other NCG system integration service offerings. The CISO is accountable for driving continuous improvement of NCG’s cybersecurity and privacy capabilities, methods, technology, processes, and personnel.

 

The CISO will also be responsible for the operations and continuous improvement of our Cybersecurity & Privacy Program Operations covering our professional services and automation offerings. The CISO will work with our internal Development Team to promote awareness, develop training, define and implement controls, and maintain tools and technologies for secure coding practices and verification across all internal and client-facing development and operations. The CISO is accountable for the audit and assessment of NCG coding activities and operations to ensure the confidentiality, integrity, and availability of all NCG systems and infrastructure.

 

Role & Responsibilities

We are looking for a hands-on leader to enhance and drive NCG Cybersecurity Programs, work directly with NCG clients, and manage and develop the Cybersecurity and Privacy Team.

Responsibilities:

  • Manage the Cybersecurity and Privacy Team providing feedback, mentorship, and training
  • Oversee penetration tests and security assessments on systems, networks, and applications, ensuring client deliverables of the highest quality
  • Identify and exploit vulnerabilities to assess and improve internal security posture reporting findings and recommendations to development and security teams
  • Work with clients to implement security improvements
  • Work with development teams to fix security vulnerabilities
  • Automate security testing and scanning throughout the software development lifecycle (SDLC)
  • Develop, implement, and train others on security best practices
  • Engage with internal and external clients to ensure successful audience adoption
  • Participate in NCG initiatives and contribute positively to our team environment

 

Qualifications

  • Bachelor’s degree  
  • 5+ years of experience with AWS cloud architectures
  • 5+ years of experience in penetration testing and/or security assessments
  • Experience with offensive security tools and frameworks
  • Certifications such as OSCP, CEH, or CISSP
  • Experience with DevSecOps tools and practices
  • Experience with containerization technologies such as Docker and Kubernetes
  • Experience with cloud security tools and technologies
  • Thorough understanding of cybersecurity frameworks (NIST, FISMA, CMMC, etc.)
  • Experience with security testing and scanning tools
  • Strong understanding of networking, operating systems, and security concepts
  • Experience with scripting languages such as Python or PowerShell
  • Excellent presentation, verbal, and written communication skills
  • Strong critical and strategic thinking, analytical, and leadership skills

 

Benefits

At NCG, we have a commitment to excellence driven by continuous improvement across all areas of our business. We value our team members and offer competitive benefits, work/life balance, and opportunities for advancement. Benefits include:

  • Competitive salary
  • Employer-paid Health Insurance
  • Dental Insurance
  • Vision Insurance
  • Employer contributing 401(k) Retirement Benefits
  • Employer provided Life Insurance and Short- & Long-Term Disability Insurance
  • Paid time off
  • Eleven paid holidays
  • Tuition and education benefits

 

To Apply

Please send a resume and cover letter to careers@northcrossgroup.com

 

  

Qualified applicants must undergo a successful background check. NCG is an equal-opportunity employer.

 

Labels
Reply
0 Kudos
0 Replies