Overview

Director, IT Security

New York, NY

The Opportunity

As the Center for Employment Opportunities is expanding rapidly to support our mission to create economic opportunities for individuals returning from incarceration, we’re looking for a Director of IT Security who will report to our Chief Information Officer and work closely with the Head of Compliance, providing leadership on complex projects, development of company security protocols, IT related policies and training. 

The ideal candidate will be able to provide the consultation, facilitation of collaboration, analysis, and solution development needed to improve and drive CEO’s Security operations during this  growth phase, which includes a growing team in our  IT Department.

As part of our mission, we strongly encourage individuals who have lived experience of incarceration or involvement in the justice system to apply for this role.

 

CEO’s Staff Vaccination Policy

CEO has implemented an org-wide vaccination requirement that requires all new staff to be fully vaccinated before their first day of work. We have made this decision for the safety of our participants and employees and to enhance our ability to continue to provide the vital services we offer to our participants. As part of the onboarding process, new hires will be asked to submit proof of vaccination status prior to their first day of employment.

If you are unable to get vaccinated against COVID-19 for medical or religious reasons, you can request a reasonable accommodation.  An interactive meeting will be scheduled to discuss your request.  
 
CEO does not discriminate against individuals with actual or perceived infection with COVID19 or based on an actual or perceived history of such infection nor based on any protected status. 

 

Who We Are

The Center for Employment Opportunities (CEO) provides employment services to people with recent criminal convictions. Across the United States, over 6,000 people participate in CEO each year, transitioning to employment that supports themselves, their families, and their communities.

What began as a demonstration project of the Vera Institute of Justice in the 1970s to address employment barriers facing the formerly incarcerated following release in New York City has grown into the leading reentry employment organization in the country, where over 25,000 formerly incarcerated individuals have secured full-time employment since 1996. In 2016, CEO embarked on a 5-year strategic plan to grow to serve 9,000 participants annually. 

 

Who You Are

    • You have a commitment to CEO’s mission and have achieved success within fast-paced, growing, and results-oriented environments
    •  You come with 5+ years of hands-on systems experience, including architecting, IT Ops, deploying security cloud-based environments
    •  5+Years proven working experience as an Director of IT Security or relevant experience
    • You’ve successfully project managed security  initiatives that involve motivating, coordinating, and collaborating with geographically dispersed and diverse teams; you’re able to collaborate across all levels and functions
    • You’re highly organized and detail-oriented with the ability to prioritize between conflicting demands and the flexibility to meet unpredictable demands 
    • You’re a creative problem-solver with the ability to develop solutions to problems as they arise and the judgment to know when to enlist the help of colleagues
    • You communicate effectively, technically and non-technically, across all levels of employees, with strong executive presentation skills
    • Customer service and relationship management are cornerstones of your workstyle; you can work independently and as part of a team
    • You’re a thoughtful steward of resources that invest in and drive organizational progress 
    • You have excellent analytical (business, technical, financial), strategic planning and project execution skills, and you take initiative to identify challenges and solutions
    • You have a strong understanding of industry best practices, like HIPAA and HITECH, and how to effectively weave compliance standards into security protocols. And you really enjoy teaching people what you know about how to keep our Members’ data safe.
    • You have a strong background in understanding complex distributed systems that interact, receive and exchange data with multiple partner sources and be able to identify, manage, and remediate any risks that can impact the organization. 
    • You have a balanced approach of security and business operations and is able to translate technical risk to business impact.

 

What You’ll Be Responsible For

Key responsibilities of the (title) include but are not limited to:

System Security  Improvement

  • Direct and manage existing/add new tools identify and mitigate advanced Threat Protection/Email Protection including: Email Fraud Defense, Threat Response Auto-Pull, Targeted Attack Protection, Threat Response, Emerging Threats Intelligence, Data Loss Prevention (DLP) and Encryption
  • Direct the team to implement new process to configure for best-practices to manage inbound and outbound security rules for email (filtering, whitelists, spam, etc)
  • Lead team to configure threat intelligence data feeds to provide identification of additional phishing/malware instances
  • Lead team to perform security event triage and initial incident response to detected threats; work closely with Legal & Compliance to adhere to internal policies and legal requirements
  • Regularly review and recommend changes to policies or controls as needed to enhance security based on industry changes
  • Work with the IT  team to identify potential gaps and offers solutions to include internal team needs, product/tool set improvements and client security posture
  • Communicate and enforce Information Security policies in collaboration with L&C Department
  • Collaborate with other team members and management to investigate, document, and report incidents
  • Regularly create and maintain high quality documentation for changes and procedures
  • Produce technical threat advisory broadcasts about new and emerging threats Qualifications
  • Partner with the CIO to design, develop, implement, and coordinate policies and procedures for all areas of information technology to assure data accuracy, security, legal and regulatory compliance; assure compliance with Standard Operating Procedures (SOPs).
  •  Collaborate with CIO and  internal stakeholders to develop and maintain an IT Security roadmap 
  •  Oversee all phases of security  projects from conception to completion
  • Contribute to the implementation of new risk policies, practices, and solutions to ensure holistic understanding and management of risks according to industry best practice

Risk Management

  • Partner with key stakeholders in the business to identify, assess, aggregate and document risks and controls, including risks associated with new or modified products, services, distribution channels, regulations and third party operations
  • Present findings and recommendations to various stakeholders concerning the status of system risk or failure as a result of installations, upgrades and modifications and the cost or impact to business operations,

Special Projects

  • Lead the IT Annual Audit with the sponsorship of the CIO
  • Lead initiatives and/or provide support to initiatives that improve the security and reduce the risk to CEO.
  • Provide Security  project management, analytical and/or technical support for special projects
  • Conduct quantitative and qualitative data analysis, identify trends, produce reports, map processes and lead other strategic initiatives as needed
  • Lead and co-create CEO Security Trainings hosted by Compliance Team annually

 

Compensation and Benefits  

The salary range for this position is $116,500-145,500 annually CEO’s compensation philosophy considers a variety of factors including experience, internal equity, and the labor market associated with the city in which the position is located. This position can be located in any of the cities in which CEO operates. The labor markets associated with the cities in which CEO is based are variable, and the salary range included here reflects this. Our salary offer will fall within this range and will be reflective of the labor market of the city in which the position is based, as well the other factors named above. 

We recognize that salary is a part of the overall compensation package and are happy to provide a comprehensive benefits package, including medical and dental coverage, and professional development opportunities to our staff.

We also offer paid parental leave, participation in a retirement plan, sick and vacation leave, paid holidays and more. We are a workplace that promotes continual learning and teamwork, offering lunch and learns, team outings, holiday gatherings and more for our staff.

 

More About Us

The Center for Employment Opportunities believes that everyone deserves the chance to shape a stronger future for themselves, their families, and their communities. Our commitment to being an anti-racism organization that is inclusive across all identities and experiences drives us forward every day. We exist to create greater opportunities for people who face multiple barriers to personal and professional success, and we’re passionate about being agents of change who promote diversity, equity, inclusion, and access to opportunities for all.

People who are justice involved, people of color, people who identify as LGBTQ+ , and people with disabilities are highly encouraged to apply for vacant positions at all levels.  CEO’s commitment to DEI aligns with the CROWN Act, creating an open space where our employees can present as their true authentic selves. We are an equal employment opportunity for all regardless of race, color, citizenship, religion, national origin, sex, sexual orientation, gender identity or expression, age, disability, veteran or reservist status, or any other category protected by federal, state, or local law.

 

Please note that due to the volume of resumes received, we are unable to contact each applicant regarding the status of each position or reply to candidates’ inquiries via phone or email.

 

#LI-CEO

IND 1