Vice President & Chief Information Security Officer (CISO)

Great leadership opportunity now available at Aimbridge Hospitality – the largest hotel management company with 1,400+ hotels and 60,000 employees!

Job Overview

The vice president & chief information security officer (CISO) will provide global leadership on all information security programs and initiatives. He/she will be responsible for ensuring compliance with all data privacy laws and regulations. He/she will work closely with managed security services providers (MSSP) to enhance the information security posture of the organization. The CISO will collaborate with MSSPs to identify, select and deploy best in class tools and services across the enterprise. The CISO will adopt a risk-based approach to mitigate organizational risk against cyber threats. The CISO will be responsible for company policies and procedures related to disaster recovery, business continuity and cyber incident response. He/she will establish a cross-functional information security steering committee to align resources and investments to meet business objectives. He/she will be a member of the IT leadership team and will report directly to the chief information officer.

Preferred Qualifications:

• Bachelor’s degree in computer science. Master’s degree in computer science preferred.
• Industry certifications (e.g. CISSP, CISM).
• Minimum of seven years of experience leading security programs and teams at a global company. Strong background in risk and privacy is required. Public company background is preferred.
• Expert level understanding of payment card industry digital security standards (PCI-DSS).
• Strong technical background across broad base of information security tools.
• Demonstrated experience aligning information security program to information security framework such as ISO27001 or NIST. Experience in policy creation based on selected framework.
• Experience working with third party partners to design programs and controls that achieve audit objectives.
• Experience negotiating large scale managed services agreements. Demonstrated ability to design, implement and monitor MSSP relationships.
• Exceptional budget acumen required.
• Experience implementing solutions to address privacy and regulatory requirements including General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), Sarbanes-Oxley (SOX).
• Experience selecting and deploying identity management solutions. This includes single sign-on and merging various technologies into a single source of truth such as Okta or OneLogin.
• Strong communication skills – written and verbal.
• International experience
• Ability to travel as needed (<15%)

Benefits for Full Time Employees

• Medical, Dental, and Vision Coverage
• 401K retirement plan
• Short and Long-Term Disability Income*
• Term Life and AD&D Insurance
• Vacation PTO & Holiday/Sick PTO
• Employee Assistance Program

• Specific plans for specific positions