As a strategic leader at JM Family Enterprises, the Deputy Chief Information Security Officer (Deputy CISO) plays a critical role in aligning business unit IT priorities with enterprise security and platform capabilities. Reporting directly to the Chief Information Security Officer (CISO), this role serves as a bridge between technical teams and business stakeholders, ensuring secure, scalable, and cost-effective solutions are delivered across the organization. The Deputy CISO will drive cross-functional collaboration, governance, and oversight to uphold our security standards and enable innovation.
QUALIFICATIONS:
- Bachelor’s Degree in Computer Science, Information Security, or related field (Master’s preferred)
- 15+ years of experience in Information Security and/or Application Development including 7+ years leading Information Security at the executive level in cloud-native or high-scale technology environments
- Proven track record managing end-to-end software/application development lifecycles
- Relevant industry certifications ex. Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC) are preferred
- Proven track record managing budgets totaling $ 20 million +, showcasing financial acumen in IT operations
- Deep understanding of technical architecture patterns and platform constraints
- Proven working knowledge of cybersecurity principles, Identity and Access Management (IAM), and other non-functional requirements
- Strong Understanding of Application Development Lifecycle
- Demonstrated effectiveness of establishing standards and best practices for Agile development, DevSecOps, CI/CD pipelines, and test automation
- Experience driving cloud-native development, SaaS adoption, and enterprise modernization
- Proven track record enabling enterprise application solutions (ERP, CRM, HR, Finance, Supply Chain, Digital Platforms)
- Deep knowledge of application development methodologies (Agile, SAFe, DevSecOps)
- Strong understanding of enterprise architecture, integration, and data platforms
- Ability to interpret, assess, and validate complex technical solution proposals
- Deep understanding of current and emerging cyber threats, attack vectors, and risk mitigation strategies
- Leadership and effective communication skills, with a strong ability to analyze and problem resolution; while also being self-motivated and results driven
- Demonstrated effectiveness as a leader for staff management, development, and mentorship
- Strong business acumen with ability to translate complex security concepts into business-relevant language
- Exceptional communication and influencing skills with senior leadership
- Demonstrated ability to lead and inspire large, distributed teams across multiple disciplines
- Strategic thinker with an execution mindset, balancing risk and enablement
- Experience managing technical intake and demand processes across enterprise environments
- Strong leadership in facilitating cross-functional technical trade-off discussions and decision-making
- Must stay current with industry trends, threat intelligence, and emerging technologies
- Comfortable working in a fast-paced, highly visible role with enterprise-wide influence
- Collaborates with Legal and Government Relations/Compliance teams to ensure compliance with relevant laws, regulations, and policies
LI-KA1
This job description may not be inclusive of all assigned duties, responsibilities, or aspects of the job described, and may be amended at any time at the sole discretion of JM Family. All work arrangements are subject to associate performance, business need and manager discretion, and may be revised as necessary.
Linked-in
Google