VP, Information Security Manager

OTC Markets Group Inc., operator of premier US financial marketplaces, is seeking a VP, Information Security Manager to lead our Cybersecurity team as part of the IT Infrastructure department.

OTC Markets is currently operating in a hybrid work environment (three days in office, two days remotely).

Our Core Values are incorporated in each aspect of our Company. We encourage autonomy, professionally passionate discussions of opposing viewpoints, creativity, and transparency. We are Open, Transparent, and Connected. We are OTC strong. At OTC Markets, we all win together.

We invest heavily in employee satisfaction and offer all our employees a highly competitive compensation package. As a dynamic, growing company that fosters an open culture, we emphasize autonomy, responsibility, innovation, and self-discipline. We are looking for someone who wants to make an impressive impact at a company known for its reputation on quality and achievement.

Responsibilities:

• Develop and implement comprehensive security strategies and policies in a regulated financial environment.

• Lead information security incident response and mitigation strategies, including post-incident analysis and improvement.

• Supervise, mentor, and develop a high-performing security team.

• Collaborate with IT, business departments, and company executives to ensure security measures align with business goals and risk appetite.

• Identify, generate, and report on key metrics to measure the effectiveness of security controls and overall security posture.

• Conduct regular information security risk/vulnerability assessments and oversee security penetration testing.

• Establish and operate a formal governance mechanism to monitor and enforce effective controls for IT processes and functions.

• Implement and manage security automation solutions to enhance threat detection, investigation, and response capabilities.

• Promote and enhance organization-wide security culture through leadership and educational initiatives.

• Develop and manage information security budgets, including cost-benefit analyses for security investments.

• Design and conduct periodic security training and awareness programs for employees at all levels.

• Stay informed about emerging threats and technologies, adjusting security strategies accordingly.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, Cyber Security, or a related field.

• Minimum of 8 years of experience in information security, with at least 3 years in a management role.

• Thorough knowledge of industry frameworks (NIST, ISO etc.), security fundamentals, best practices.

• Relevant certifications such as CISM, CISSP or similar are preferred.

• Demonstrated technical skills in Information Security and IT, including Windows, Linux OS, Networking, Cloud Security, and DevSecOps practices.

• Strong understanding of information security governance, risk management, and compliance.

• Excellent project management skills.

• Proven ability to manage, develop, and inspire high-performance teams.

• Exceptional analytical and problem-solving skills.

• Outstanding written and verbal communication skills, including the ability to articulate complex security concepts to non-technical stakeholders.

• Experience architecting security solutions for complex mission critical environments.

• Expert understanding of network and web protocols, including emerging technologies.

• Hands-on experience with securing AWS cloud infrastructure using CSPM / CNAPP tools.

• In-depth knowledge of IAM and PAM technologies and deployments.

• Proficiency in MDM solutions and securing remote work environments.

• Experience with dynamic and static code scanning tools and secure development practices.

• Understanding of regulatory compliance requirements such as SEC Regulation SCI, PCI DSS, GLBA.

• Experience with Zero Trust architecture and implementation.

• Experience in threat modeling and incident simulation exercises.

• Strong business acumen and ability to align security initiatives with organizational objectives.

Salary offered for the position is up to $260,000 and depends on experience. In addition, the position is eligible for discretionary annual bonus program and equity.

BENEFITS:

• Generous Paid Time Off (PTO)
• Health, Dental, and Vision Coverage
• Health Savings Account (HSA)
• Flexible Spending Accounts (FSA) Dependent & Healthcare
• Limited Purpose Flexible Spending Account (LPFSA)
• Generous Paid Parental Leave Program
• Annual bonus and Stock Incentive Program
• 401(K) Plan - Retirement
• Commuter Transit & Parking Program
• Income Protection (Life Insurance, Short- & Long-Term Disability)
• Voluntary Benefits (Accident, Critical Illness, & Hospital Indemnity)

For more information about OTC Markets Group, please visit our public policy advocacy and careers page. No calls or e-mails please.

No third-party recruiters. Unsolicited resumes submitted by third-party recruiters will be treated as free referrals, and OTC Markets Group will NOT pay a fee for any placement that may result from receipt of an unsolicited resume, referral, or other submission by a third-party recruiter.

Come as you are and just be you. We are an equal opportunity and e-verify employer and prohibit discrimination and harassment of any kind. All employment decisions are based on business needs, job requirements, and individual qualifications, without regard to race, creed, color, religion, gender, national origin, age, marital status, political belief, physical or mental disability, sexual orientation, military or veteran status, genetic information, family or parental status, gender identity, pregnancy, including childbirth or related medical condition, or any other characteristic protected by federal, state, or local law. We encourage applicants of all ages and backgrounds.

OTC Markets Group Inc. (OTCQX: OTCM) operates regulated markets for trading 12,000 U.S. and international securities. Our data-driven disclosure standards form the foundation of our three public markets: OTCQX® Best Market, OTCQB® Venture Market and Pink® Open Market.

Our OTC Link® Alternative Trading Systems (ATSs) provide critical market infrastructure that broker-dealers rely on to facilitate trading. Our innovative model offers companies more efficient access to the U.S. financial markets.

OTC Link ATS, OTC Link ECN and OTC Link NQB are each an SEC regulated ATS, operated by OTC Link LLC, a FINRA and SEC registered broker-dealer, member SIPC.

Applicants have rights under the federal law:

Equal Employment Opportunity is the Law

Polygraph Protection Act

FMLA