Director of Information Security and Compliance (Onsite) (33669) at Agua Caliente Casinos

Rancho Mirage, California, United States -

Full Time

Start Date

Immediate

Expiry Date

17 Apr, 26

Salary

0.0

Posted On

17 Jan, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Information Security, Compliance, Risk Assessment, Incident Reporting, Vulnerability Detection, Team Management, Education Programs, Regulatory Standards, IT Security, Data Privacy, Communication Skills, Strategic Partnerships, Technology Architecture, Microsoft Products, Customer Service, Leadership

Industry

Gambling Facilities and Casinos

Description

Job Details Job Location: Central Operations - Rancho Mirage, CA Position Type: Full Time - Exempt Job Category: Management Job Description Summary Responsible for the management and operation of all aspects of Agua Caliente’s information security and compliance functions. Ensures all technology platforms and systems are protected against threats and vulnerabilities while maintaining their overall integrity and security. Certifies all systems operate in accordance with Tribal regulatory controls and federal standards. Essential Duties and Responsibilities (other duties may be assigned) Oversees the creation, execution and maintenance of information security and compliance related operations, plans, standards, policies and procedures throughout the organization. Primary responsibility for determining the vision and strategy for all information security and compliance related services. Overall responsibility for ensuring all technology platforms and systems are protected against threats and vulnerabilities while maintaining their overall integrity and security. Oversees all vulnerability detection and remediation efforts. Certifies all systems operate in accordance with all applicable Tribal regulatory controls, federal standards (PCI, GDPR, CPPA, etc.) and that potential weaknesses cannot be exploited for fraud, misuse, or theft. Develops and maintains an information privacy and security-conscious culture throughout the organization. Drives a company-wide technology related security architecture and engineering strategy. Manages the development of education and training programs on information security and privacy matters for team members and other authorized users. Develops, implements and maintains risk assessment, incident reporting and response systems, to address security breaches, policy violations and grievances from external parties. Manages investigations of situations in which security may have been compromised and notifies the Chief Information Officer and other senior management of any unusual transactions impacting system security. Serves as the official contact for information security and data privacy issues, including reporting to regulatory authorities and law enforcement. Works closely with other IT leadership team members on ensuring system enhancements do not compromise compliance requirements or security standards. Develops and maintains collaborative, strategic partnerships with all relevant internal departments as well as external vendors, regarding IT security and compliance related information technology solutions. Keeps abreast of the latest IT security and privacy legislation, regulations, advisories, alerts and vulnerabilities and develops implementation strategies to ensure the company’s security program and software remain current and secure. Maintains appropriate information security and compliance related staffing levels by interviewing, selecting, training, scheduling, evaluating, promoting, disciplining and terminating team members, as needed. Ensures work performance standards, and team member development programs maximize the individual growth and development of staff. Provides outstanding customer service in a timely manner to both guests and fellow team members. Performs other duties as assigned. Supervisory Responsibilities IT Security Engineer IT Security Analyst Access to Sensitive Areas and Information As per ACGC Access Matrix ACBCI Tribal Authorized IT Areas Signatory Ability IT Department Forms Purchasing forms HR Forms Complimentary vouchers per approved Complimentary Matrix Qualifications Education and/or Experience Bachelor’s degree in computer science or related field, an equivalent combination of education and experience will be considered. Eight years of IT security and compliance experience with at least 5 years in a leadership role Leadership experience in a casino/hotel resort environment strongly preferred CISSP certification strongly preferred Strong financial acumen Direct management of cross-functional teams, including managing third party service providers Must be familiar with Microsoft products Must possess excellent written and verbal communication skills. Must be able to communicate in English. Working Conditions/Physical Demands To perform this job successfully, the individual must be able to stand, move and work throughout the office area and properties, including walking up to 1 ½ mile, climbing stairs, and sitting at a desk/work station for the duration of the shift. Must be able to work in a smoke-filled environment. Typically, the individual will be housed in an office environment. The noise level in the work environment is usually moderate but will escalate when located in the casino environment. Must be able to grasp, bend, lift and/or carry or otherwise move goods weighing a minimum of 25 lbs. on an intermittent basis, and sufficient dexterity of hand to use office equipment including, but not limited to: a computer keyboard, calculator, general office equipment and multi-line telephone.

Responsibilities

The Director of Information Security and Compliance is responsible for managing all aspects of information security and compliance functions, ensuring technology platforms are protected against threats. This role includes overseeing vulnerability detection, compliance with regulatory standards, and developing a security-conscious culture within the organization.