[Hiring] Director of Information Systems Security @WiredPeople

Role Description

At WiredPeople, we are seeking a highly experienced and strategic Director of Information Systems Security (ISSO) to lead our security and compliance initiatives. In this role, you will play a critical part in safeguarding our information assets and ensuring adherence to complex regulatory frameworks. This position is a full-time and fully remote role.

The Director of ISSO will lead a team of Information Systems Security Officers (ISSOs) and cybersecurity professionals to develop, implement, and maintain comprehensive information security and privacy programs. You will be responsible for overseeing:

• Risk management
• Vulnerability assessments
• Security authorizations
• Compliance with federal and state guidelines (including NIST, FISMA, HIPAA, and FedRAMP)

The ideal candidate is a strategic leader with deep technical expertise and a proven track record of managing security operations in highly regulated environments.

Qualifications

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (A Master’s degree is highly preferred).
• 10+ years of progressive experience in information security, IT compliance, or cyber risk management.
• 5+ years of experience in a leadership or management role overseeing security teams.
• Extensive hands-on experience managing the NIST RMF and achieving ATOs for complex systems.
• Must hold one or more active, industry-recognized senior security certifications (e.g., CISSP, CISM, GSLC, or CISA).

Requirements

• Direct and mentor a team of ISSOs, security engineers, and compliance analysts.
• Develop and execute the organization's information security strategy.
• Act as the primary point of contact for senior leadership and external stakeholders.
• Drive the adoption of "secure-by-design" principles.
• Oversee the Risk Management Framework (RMF) process.
• Ensure strict compliance with relevant regulatory standards.
• Direct comprehensive risk assessments, vulnerability scanning, and penetration testing activities.
• Lead the organization's incident response strategy.
• Oversee the continuous monitoring program.
• Develop, implement, and maintain enterprise-wide security policies and procedures.
• Ensure all system documentation is accurate and up-to-date.
• Design and execute comprehensive security awareness and training programs.

Company Description