Head of Information Security
Hybrid (2 days onsite) | Los Angeles, CA
We are seeking a Head of Information Security to lead and evolve enterprise-wide cybersecurity strategy, risk management, compliance, and security operations for a globally recognized organization. This role will oversee information security initiatives across the organization, including governance, incident response, cybersecurity operations, and security architecture, while fostering a strong security-first culture.
Responsibilities
- Develop and implement enterprise-wide information security strategy aligned with business objectives
- Lead security risk management, compliance, governance, and cybersecurity operations
- Oversee threat intelligence, vulnerability management, and incident response initiatives
- Ensure alignment with security frameworks and regulations including NIST, ISO 27001, GDPR, CCPA, and SOC2
- Guide security architecture and technology decisions across infrastructure and cloud environments
- Partner closely with executive leadership, engineering, IT, legal, and compliance teams
- Manage third-party/vendor security risk programs
- Lead crisis response efforts related to information security incidents
- Mentor and develop security team members
Qualifications
- 15+ years of experience in information security or cybersecurity leadership
- 8+ years of leadership/management experience
- Strong technical background across infrastructure, networking, cloud, SIEM, IAM, and enterprise security technologies
- Experience leading incident response and security operations within complex environments
- Background within highly regulated industries preferred (finance, healthcare, government, etc.)
- Strong communication and stakeholder management skills
- Experience with security frameworks including NIST and ISO standards
- CISSP, CISM, CISA, CCISO, or similar certifications preferred
- Bachelor’s or Master’s degree in Computer Science, IT, Engineering, or related field
