Information Security Director jobs in Virginia

Position Description

The Assistant Director of Information Security at the United Network for Organ Sharing (UNOS) plays a crucial role in strategic leadership to protect enterprise information assets and ensure the operational effectiveness of information security services. This role involves overseeing the Information Security Program and the daily operations of information security systems, as well as leading the Computer Security Incident Response Team (CSIRT).

Key Responsibilities:

• Assist in the design, development, and operational management of security systems, focusing on defense in depth, risk reduction, and ensuring current and operational security services.
• Support and lead the Information Security operational team, providing technical and process direction, and overseeing security alerts and event handling.
• Develop and manage the Identity and Access Management Program and participate in managing the Governance, Risk, & Compliance (GRC) program.
• Enable organization-wide compliance with privacy regulations and information security standards (e.g., HIPAA, NIST), and contribute to breach investigations and impact analysis.
• Stay updated with the Information Security threat landscape, updating the cybersecurity strategy, and developing internal audit capabilities.
• Support senior leadership team briefings on security status and risks, and communicate security best practices across the organization.
• Assist in managing Information Security teams and vendors, including recruiting, training, mentoring, and developing team members.
• Foster a team environment of curiosity and continuous improvement, and enable collaborative risk-based decisions.
• Support in leveraging Information Security capabilities for business development and offer consultative services in securing data.
• Contribute to risk metrics reporting and corporate risk strategy, and provide input on technology choices and Information Security needs.

Minimum Requirements

• 10 years of technical experience in Information Security
•  5 years of experience in Information Security team management and leadership roles

Critical Skills

• Familiarity with NIST and other information security standards and best practices.
• Familiarity or direct experience with DevSecOps and Zero Trust.
• 2 years of people management experience in a 24x7 IT operational
•  Strong interpersonal, consensus-building, leadership, and initiative-taking skills.
•  Excellent problem-solving abilities, effective meeting facilitation, and ability to negotiate and influence decision-making processes.

Additional Skills & Qualifications

•  Proficiency in verbal and written communication, with the ability to articulate technical concepts to non-technical audiences.
•  Strong understanding of datacenter networking, ITIL practices, and experience with network/security operations centers.
•  Experience in developing metrics, leading multiple large projects, and implementing and administering information security systems.
•  Ability to analyze systems, strategically articulate risks/benefits, and design complex solutions meeting business and security objectives.
•  Familiarity with cloud-based platforms (AWS, Azure), Microsoft and Linux system technologies, and virtual technologies.

Education

4-year degree in Information Security, Computer Science/Engineering, Information Systems, or a related field, or a related industry credential (e.g., CISM, CISSP, CRISC) with professional work experience required.

Physical Requirements

•  General office demands
•  Ability to work in a 24/7 IT operational environment

About Us

UNOS Benefits

Authorization

Agency Statement

UNOS provide equal employment opportunity for all applicants and employees. It will not unlawfully discriminate or permit harassment against any employee or applicant on the basis of race, ethnicity, color, religion, national origin, gender, age, disability, familial or marital status, military or veteran status, sexual orientation, gender identity and expression, genetic information, or any other characteristics or classification protected under applicable law (“protected categories”). This policy applies not only to hiring, but also to working conditions, benefits and privileges of employment, training, appointments for advancement, transfers, layoffs, recalls, terminations of employment and all other terms and conditions of employment.

UNOS is also an affirmative action employer. It takes affirmative action to recruit and provide opportunities for advancement to qualified females and minorities, individuals with disabilities, special disabled veterans and other protected veterans. It hires and promotes based on job-related requirements and individual qualifications. Action is taken to ensure the fulfillment of this policy as to all phases of the employment process including hiring, placement, training, upgrading, transfers and/or demotions, recruiting, layoffs and termination of employment.

UNOS invites individuals with disabilities and protected veterans to identify themselves, if they wish to do so. Such communication will be kept as confidential as possible and will be used only in accordance with the law. Candidates may contact the EEO/AA Officer at human.resources@unos.org to self-identify or request an accommodation.

EEO is the Law | EEO is the Law Supplement | E-Verify Participation English/Spanish | Right to Work | Right to Work Spanish | Pay Transparency