vCISO

About Us

Thrive is a rapidly growing technology solutions provider focusing upon Cloud, Cyber Security, Networking, Disaster Recovery and Managed Services. Our corporate culture, engineering talent, customer-centric approach, and focus upon “next generation” services help us stand out amongst our peers. Thrive is on the look-out for individuals who don’t view their weekdays spent at “a job”, but rather look to develop valuable skills that ignite their passion and lead to a CAREER. If you’re attracted to a “work hard, play hard” environment, seeking the guidance, training and experience necessary to build a lucrative career, then welcome to THRIVE!!

Position Overview

Work with Thrive’s vCISO Service clients to assess their current Information Security Program and develop an appropriate, business aligned strategy to establish a proactive approach to cyber risk management. Implement customized, risk-based Information Security Programs and the associated controls frameworks to complement each client’s business and IT operations. Ensure all Governance, Regulatory and Compliance obligations are addressed from an Information Security perspective. Be a trusted advisor and “go-to” resource for Senior IT and Executive Leadership for all things relating to Information Security.

Responsibilities

• Serve as Information Security Subject Matter Expert for Executive leadership.
• Develop annual strategic plans and supporting project roadmaps.
• Collaborate and coordinate with internal IT resources to execute the security plan.
• Create remediation plans for all security assessments.
• Conduct annual risk assessments.
• Coordinate Penetration Tests with third parties.
• Collaborate with customers on policy development and implementation.
• Assist with Security Incident Response and tabletop exercises.
• Mentor client technical resources as requested
  • Performs assessments with clients in the following areas:
  • Information Security Strategy
  • Information Security Governance
  • Information Security Program Development and Management
  • Information Security Risk Management

Qualifications

• Bachelor’s Degree or equivalent work experience in cybersecurity (MBA preferred)
• 5+ years’ experience Information Security Preferred
• Certified Information Systems Security Professional (CISSP) and/or Certified Information Security Manager (CISM)
• Expert in security frameworks such as CIS, NIST, CMMC, HIPAA/HITECH, PCI-DSS, ISO 27001/2