Loyal Source Government Services is a leading organization committed to maintaining the highest cybersecurity standards. We seek a highly skilled and experienced Vice President, Information Security (VPIS) to join our team and lead our cybersecurity initiatives. The VPIS will provide strategic cybersecurity guidance and oversight to Loyal Source Government Services clients by leading and managing their cybersecurity programs to help protect their infrastructure, data, people, and customers.
Job Summary: The VPIS will be responsible for overseeing and implementing comprehensive cybersecurity programs in compliance with NIST SP 800-171, CMMC, HIPAA, ISO 27001, and ISO 27002 guidelines. This role requires a hands-on, technical leader with extensive experience building and maintaining cybersecurity infrastructure. The VPIS will mentor and lead the next generation of cybersecurity experts, ensuring the organization's information assets are protected.
Key Responsibilities: • Develop, implement, and maintain cybersecurity policies and procedures in compliance with NIST SP 800-171, CMMC, HIPAA, ISO 27001, and ISO 27002, FAR and DFARS. • Lead certification audit efforts for CMMC, ISO27001. • Lead the design, implementation, and management of cybersecurity infrastructure with a hands-on approach. • Conduct regular security assessments, audits, and risk analyses to identify and mitigate potential threats. • Collaborate with cross-functional teams to ensure cybersecurity measures are integrated into all aspects of the organization's business and operations. • Provide technical leadership and mentorship to the cybersecurity team, fostering a culture of continuous learning and improvement. • Stay current with emerging cybersecurity trends, threats, and technologies to ensure the organization remains at the forefront of federal and commercial cybersecurity practices. • Coordinate incident response and recovery efforts in the event of a security breach. • Develop and deliver cybersecurity training programs to staff at all levels of the organization. • Prepare and present regular reports on the status of the organization's cybersecurity posture to senior management. • Apply consultative and leadership skills to build high rapport with clients and team members. • Provide expert security advisory, compliance and security program oversight, oversee security/compliance assessments, and prepare high-quality reports (including gap analysis, System Security Plan (SSP) and Plan of Action and Milestones (POA&M), recommendations, and remediation planning). • Lead and manage a team of security analysts providing oversight, direction, expertise, and mentoring. • Support clients on a fractional owner model. • Act as an extension of the client's information security management and governance function. • Develop security roadmaps, plans of action, and an actionable strategic plan for information security. • Vendor and third-party risk management program support and due diligence. • Develop business continuity and incident response plans. • Focus on key performance indicators, metrics, and security dashboards. • Assist with business development by working with potential new clients to understand and define business and technology needs, provide subject matter expertise to answer clients' questions and concerns, and identify and align services with clients' needs. • Support statements of work, identify resource requirements, assumptions, and estimates, and assist with responses to Requests for Proposals (RFPs). • Identify client's security and technology needs and identify business development opportunities as outcomes of assessment activities. • Develop expert-level content, participate in panel discussions and public speaking events, and attend conference exhibitor opportunities. • Architect high-quality security solutions to the needs of clients.
Qualifications: • Minimum of 10 years of experience in cybersecurity, with a strong focus on building and maintaining cybersecurity infrastructure. • Master's degree in Cybersecurity, Information Technology, Computer Science, or a related field. • CISSP certification is required. • Extensive knowledge of HIPAA, CMMC, NIST SP 800-171, ISO 27001, and ISO 27002. • Proven experience in leading and mentoring cybersecurity teams. • Strong technical skills and hands-on experience with cybersecurity tools and technologies. • Excellent communication and interpersonal skills. • Ability to think strategically and implement innovative solutions to complex cybersecurity challenges. • Expert knowledge of federal cybersecurity frameworks and regulations including NIST, ISO, CMMC, PCI, COBIT, FARS, DFARS, HIPAA, etc. • Strong understanding of information technology risk and components, including application, infrastructure, network, and vendors. • Relevant certifications such as CISA, CISM, or CISSP, or similar experience.
Preferred Qualifications: • Additional certifications such as CISM, CEH, or similar. • Experience in a leadership role within a large organization. • Familiarity with cloud security and emerging technologies.
Why Join Us: • Opportunity to lead and shape the future of cybersecurity within a fast-growing, dynamic, and innovative organization. • Collaborative and inclusive work environment. • Competitive salary and benefits package. • Professional development and growth opportunities.
About Loyal Source
Loyal Source is an Orlando-based workforce solutions provider dedicated to delivering elite services worldwide, with a focus in government healthcare, technical and support services, engineering, and travel healthcare. Loyal Source provides exceptional custom solutions to both private enterprise and government agencies. Loyal Source is a military friendly employer and proud partner of the Military Spouse Employment Partnership program.
For more information go to our website www.loyalsource.com and follow us on LinkedIn, Facebook & Twitter for other positions currently open.
Loyal Source does not discriminate in employment based on race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or other non-merit factors.