Responsibilities
- Define and implement a comprehensive cybersecurity strategy, long-term roadmap, and governance model that supports organizational goals.
- Create and enforce cybersecurity policies, standards, and control frameworks compliant with regulations and benchmarks such as SEC, FINRA, SOC 2, NIST, and ISO.
- Act as the senior executive overseeing the enterprise-wide cybersecurity risk management function.
- Lead efforts to identify, evaluate, and reduce cyber risks across systems, networks, data environments, and third-party partners.
- Manage the development and execution of incident response plans, crisis protocols, and preparedness for cyber threats.
- Supervise programs for vulnerability detection, threat intelligence gathering, and continuous risk monitoring.
- Collaborate with Legal and Compliance departments during regulatory reviews, security evaluations, and external audit processes.
- Maintain compliance with current and emerging cybersecurity regulations from the SEC and other financial industry authorities.
- Provide executive-level guidance on security architecture, engineering practices, monitoring systems, and incident handling.
- Ensure robust security design across cloud services, SaaS platforms, internal systems, and data infrastructure.
- Advise senior leadership and board members on cyber risks, emerging threats, and the organization’s overall security readiness.
- Promote organization-wide cybersecurity awareness and foster a culture of shared responsibility for security.
