Artemis Consultants Favicon

Deputy, Head of IT & InfoSec

Long Island City, NY Information Technology (IT) Job ID: 2565411

COMPANY PROFILE:

The company is a Travel Product and Service provider powering the only flight focused OTA in North America. Utilizing its innovative proprietary technology and company owned and operated global contact centers, they have built strong industry partnerships providing customers access to over 600 airlines, a million hotels, and hundreds of car rental companies around the globe. With a portfolio of well-known consumer travel brands in the US, Canada, UK and Mexico, their services enable consumers to book online on mobile apps for iOS and Android, by phone, or live chat.

The company provides its airline partners with access to a broad customer base that books high-yielding domestic and international travel and add-on ancillaries. This is one of the fastest-growing travel companies in the world and the fifth largest consumer facing online travel agency in the U.S. They are a progressive company that leverages technology and expertise to deliver optimal solutions for our suppliers, customers, and partners.

ROLE PROFILE:

We are seeking a seasoned technology executive for the Deputy, Head of IT & InfoSec role. This person will oversee the global Information Security (InfoSec) function and the entire Digital Security and Fraud Prevention program. This role will require strategic alignment, implementation, and daily enforcement of security measures.

RESPONSIBILITIES:

  • Develop and Execute Information Security Strategy: Create and implement an enterprise-wide Information Security strategy that aligns with business needs, regulatory requirements, and budget constraints.
  • Manage Cybersecurity Program: Oversee the Cybersecurity program, including Security Operations, Incident Response, Vulnerability Management, and Penetration Testing.
  • Lead Global InfoSec Team: Develop, mentor, and lead a global team of Information Security professionals.
  • Stay Updated on Industry Trends: Monitor the travel and ecommerce industry landscape to stay informed about evolving trends and best practices in information security.
  • Collaborate with Business Leaders: Partner with all functional business leaders to ensure full support for the Information Security program.
  • Provide Subject Matter Expertise: Offer Information Security expertise to Enterprise Risk and Governance Risk and Compliance committees.
  • Establish and Maintain Roadmap: Develop and maintain a roadmap of Information Security initiatives.
  • Manage Organizational Communications: Lead organizational communications, reporting, observation tracking, and remediation approaches to improve IT Security compliance and operations.
  • Accountable for InfoSec Standards: Oversee infosec policies, architectures, standards, and related technical resources.
  • Represent the Organization: Represent the organization’s security compliance interests with partners, suppliers, industry associations, and government entities.
  • Establish KPIs and Metrics: Establish key performance indicators and oversee InfoSec compliance activities and metrics.

PREFERRED PROFILE:

  • Experience: 15+ years of combined experience in corporate IT, risk management, and information security roles, with at least 5 years in a senior leadership position. 5-7 years of experience in B2C, eCommerce, and/or call center environments.
  • Business Outcome Orientated: proved track record of driving business outcomes through application of infrastructure, security and data.
  • Technical Skills: Experience leading security programs in modern data centers, including WAF/CDN, firewall design, network segmentation, and high-density computing. Current CISSP or CISM certification. Understanding of Cloud and SAAS/PAAS/IaaS services and their security implications. Experience with risk assessment, risk management, and legal/regulatory requirements (PCI DSS, GDPR). Familiarity with information security, risk management, compliance, and IT governance standards (ISO 27000, NIST Cybersecurity Framework). Experience managing third-party risk, business continuity risk, and IT operational risk. Ability to establish and manage controls inventories and conduct controls effectiveness reviews. Experience with vulnerability analysis processes and best practices. Knowledge of secure software development principles, MS SDL, OWASP SDLC, and network security encryption methods (IPSec, Kerberos).
  • Education: Bachelor’s degree in information security, Computer Science, Information Management Systems, or related field required.
  • Preferred: MBA or master’s degree in Computer Science or related field

LOCATION: Hybrid – NYC Metro (Long Island and Manhattan)

Job ID# 2565411

Artemis invites you to subscribe to our free Job Alerts and The Hunt” Blog for free insights on hiring and career development.

Artemis Referral Bonus – $1000! If you know someone for this job, please join our Referral Bonus Program.

  • Max. file size: 500 MB.