Location
Madison, WI
Salary
Not specified
Type
fulltime
Posted
Today
via linkedin
Job Description
VP of Information Security
As the VP of Information Security, you will be the primary architect of our enterprise security vision. This is a high-impact leadership role responsible for designing and executing a multi-year roadmap that seamlessly integrates robust risk management with our core business objectives. You will lead technical operations—from cloud architecture to incident response—while fostering a culture in which security is a shared responsibility across the organization.
Key Responsibilities:
- Strategic Leadership: Develop and execute a multi-year security strategy aligned with global business goals and evolving regulatory landscapes.
- Executive Partnership: Act as a key advisor to the Chief Privacy Officer, Chief Compliance Officer, and Legal team to align security controls with GLBA, FTC Safeguards, and state privacy laws.
- Enterprise Risk \& Reporting: Mature our security governance and provide executive-level reporting on risk exposure, remediation progress, and overall security posture.
- Security Operations: Oversee threat detection, vulnerability management, and modern ransomware defense. Lead cross-functional incident response and tabletop exercises with executive stakeholders.
- Cloud \& Infrastructure: Establish secure architecture across IaaS, PaaS, and SaaS (Azure/AWS), embedding "Security by Design" into system operations and Identity \& Access Management (IAM).
- Third-Party Oversight: Lead the design and monitoring of third-party risk management (TPRM) programs, ensuring vendor contracts meet rigorous data protection standards.
Qualifications:
- 12\+ years in Information Security, with at least 5 years in a senior leadership role overseeing enterprise-wide accountability for a mid-to-large organization (2,000\+ users).
- Advanced mastery of GLBA, FTC Safeguards Rule, and state privacy regulations within the financial services sector.
- Deep hands-on experience building and maturing frameworks based on NIST CSF, ISO 27001, or CIS Controls.
- Demonstrated expertise in cloud security architecture (Azure/AWS preferred), Zero Trust principles, and modern ransomware defense strategies.
- Proven track record of successfully leading organizations through regulatory examinations and external audits.
- Master’s Degree in Cybersecurity (preferred) and CISSP certification (required).
Looking for more opportunities?
Browse thousands of graduate jobs and entry-level positions.