VP of InfoSec

About Us:

Atmosera is full lifecycle cloud technology transformation firm, offering application and data professional services, security & compliance management, Azure operations, and technology training.

Our expertise across applications, data, and the Microsoft Azure platform allows us to accelerate innovation speed, increase operational agility, and vastly improve the return on investment in modern technology and human expertise.

Job Description:

The Vice President of Information Security (VP of Infosec) will be responsible for leading Atmosera's information security strategy, ensuring the protection of our clients' data and systems, and maintaining regulatory compliance across all aspects of our business operations. This key leadership role will play a pivotal part in shaping the future of our company's security posture and fostering a culture of security awareness throughout the organization.

What You'll Do:

• Develop, implement, and maintain comprehensive information security strategies, policies, and procedures to protect Atmosera's systems, data, and clients from cyber threats.
• Oversee the monitoring and management of security incidents, ensuring timely response, mitigation, and reporting in accordance with established protocols.
• Collaborate with business leaders to ensure information security considerations are incorporated into strategic planning, system design, and project implementation processes.
• Foster a culture of security awareness and compliance by providing ongoing training and resources for employees at all levels.
• Lead and manage the Information Security team, ensuring they have the necessary resources, tools, and support to perform their duties effectively.
• Creating a DevSecOps culture to ensure our clients, as well as Atmosera, operate in a security and compliance first mindset (CIS, NIST, HIPAA, FedRAMP, PCI-DSS, SOC, SOX, etc)
• Maintain up-to-date knowledge of industry trends, threats, and regulatory requirements, applying this knowledge to continuously enhance our security posture.
• Work closely with external partners, such as legal counsel, auditors, and third-party vendors, to ensure compliance with all applicable laws, regulations, and contractual obligations related to information security and governance.
• Establish and maintain effective communication channels with senior management, stakeholders, and external parties regarding information security risks, incidents, and initiatives.
• Develop metrics to measure the effectiveness of our information security program, monitoring progress, and making adjustments as necessary.
• Ensure that all business continuity and disaster recovery plans include robust security measures to protect data and systems during unexpected events or crises.

Qualifications

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field; advanced degree preferred.
• Minimum of 10 years of experience in information security, governance, or operational leadership roles, preferably in the technology services industry.
• In-depth knowledge of security frameworks (e.g., FedRAMP, NIST, ISO 27001), privacy regulations (e.g., HIPAA, GDPR, CCPA), and industry best practices for information security management.
• Proven track record in developing and implementing effective information security programs that align with business objectives and regulatory compliance requirements.
• Excellent leadership skills, including the ability to motivate, mentor, and develop a high-performing team.
• Strong communication skills, both written and verbal, with the ability to convey complex technical concepts to non-technical stakeholders.
• Experience working for an Azure Managed Services Provider or SaaS environment is highly desirable.
• Certifications such as CISSP, CISM, or CISO are strongly preferred.