Head of Information Security (Remote) – Kepler US - Kepler Communications Remote - US Bookmark Share Print 188 0 4

Listing Description

Kepler is on a Mission to bring the internet to space. Incorporated in 2015, Kepler’s guiding star is to enable the space economy through the creation of a communication network in Low Earth Orbit (LEO) that will provide connectivity services to other space missions, be they on orbit in LEO, MEO, GEO, or beyond.  With an expanding base of early customers and our first 21 satellites in orbit, Kepler is continuing to grow and expand its most important asset – the Team! Based out of our HQ in Toronto and with an office in the UK and a newly formed office in the US we are building towards a truly global company delivering a product for the whole world.

As Head of Information Security for the Kepler US Entity, you will be a critical member of the team and responsible for establishing the information security strategy for and directing the implementation and monitoring of information security standards and policies for Kepler US. The Head of InfoSec provides guidance to executive leadership within the organization by recommending appropriate information security investments and practices. This role is responsible for managing risks relating to information security, business continuity planning, crisis management, privacy, and compliance. This position can be fully remote within the US, with occasional travel to our Toronto office. 

Responsibilities:
  • Act as a strategic advisor to the business heads on cyber security issues. 
  • Report to Kepler US President and Board on key risks and plans to remediate them. 
  • Ensure information security risk is managed within the risk appetite approved by the leadership and Board.
  • Regularly communicate with customers on Kepler’s cybersecurity plans and how they will protect their data.
  • Being transparent and building trust, using multiple layers of protection, and going above and beyond to protect customer data.
  • Hire and manage a team of internal and contracted resources to govern, maintain, and audit our IT systems as it pertains to cybersecurity.
  • Integrate security by design through the supply chain and product development lifecycle.
  • Champion cybersecurity across businesses while supporting enterprise IT and business-specific priorities vision and roadmaps.
  • Create a cyber-aware culture where every employee and third party are aware of their responsibilities in line with our policies.
  • Support the development and rollout of new products and services with embedded security and resiliency.
  • Collaborate with co-workers and supervisors to implement infrastructure that guarantees systems are audited routinely for vulnerabilities and appropriate updates while ensuring such issues are addressed within appropriate time limits.
  • Conduct periodic risk assessments to proactively identify and remediate risks and work with members of various teams to maintain current security standards and audit systems to ensure compliance with regulations and configuration best practices.
  • Lead security incident response efforts, and work with internal stakeholders, third-party partners, and outside experts to establish and communicate security standards and best practices.
  • Prepare appropriate reports and communicate with auditors and regulators during compliance and regulatory reviews.
  • Maintain the information security governance documents, including policy, framework, standards, procedures, and guidelines.
  • Implement procedures to proactively investigate and monitor for suspicious activity, ensuring that potential security incidents are correctly identified, analyzed, investigated, escalated, and ultimately defended.

    • Requirements:
  • 7+ years of experience in cybersecurity-related roles within an SME organization holding industry recognized security related compliance certificates.
  • 5+ years of experience in a leadership position building and growing a stellar team.
  • Bachelor's degree in Computer Science, Information Security, MIS, or other relevant degree.
  • Professional Information Security certifications, CISSP or SSCP.
  • Knowledge and demonstrated experience of relevant legal and regulatory requirements, such as ISO 27001, SOC 1, SOC 2, PCI DSS, HITECH, HIPAA Privacy & Security, and other CMS regulations and guidelines as they are updated by the Federal Government.
  • Knowledge of Cyber & Information Security management frameworks NIST, FISMA, and OWASP.
  • Ability to establish priorities, work independently, and proceed with objectives without supervision.
  • Core analytical skills, along with the ability to manage multiple projects under strict timelines in a demanding and dynamic environment.
  • Strategic thinker that blends business, technology, and risk management skills and experiences.
  • Experience with implementing, deploying, and maintaining security software and monitoring solutions.
  • Entrepreneurial spirit with a Player/Coach mindset and leadership style.
  • Proven track record of security/compliance-related analysis and reporting.
  • Ability to effectively manage and cope with high-stress situations.

    • Bonus Points:
  • Experience in the Telecommunications Industry.
  • Strong preference is given to candidates with ITAR experience.
  • Master’s degree in Computer Science, Information Security, MIS, or other relevant degree.
  • Previous experience working for a start-up or company with accelerated growth.
  • Previous experience working in compliance or regulated environments in a security operation center, logging, and correlating security events.
  • Previous experience with SIEM, IDS, IPS, and security endpoints.
  • Additional security certifications in at least one of the following; CISM, CISA, GSEC, CCSP, CRISC, Security+, CEH, or CySA+.
    • Kepler Communications Inc. is committed to fostering an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. We welcome applications from: women, Aboriginal persons, persons with disabilities, ethnic minorities, visible minorities, people who identify as LGBT and others who may contribute to diversification in our workplace.

    As part of our commitment to accessibility for all persons with disabilities, Kepler will, upon the request of the applicant, provide accommodation during the recruitment process to ensure equal access to applicants with disabilities. Please contact our People & Culture team, through our Career Page to make your accommodation needs known and we will consult with you to ensure suitable accommodation is provided.

    Listing Details

    • Citizenship: Not Provided
    • Incentives: Not Provided

     

    • Education: Not Provided
    • Travel: Not Provided
    • Telework: Not Provided

    About Us

    NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

    Useful Links

    Our Contacts

    1765 Greensboro Station Pl.
    Suite 900
    Tysons Corner Va 22102

    (703) 594-7765

    requests@ninjajobs.org
    www.ninjajobs.org
    Chat with us!