San Carlos, CA, USA
icrunchdata Network
Position Overview The Executive Director, Information Technology (IT) will focus on corporate IT security and data privacy, and will also lead the company’s Sarbanes-Oxley Act (SOX) compliance-related activities for the areas impacted by IT systems. This position is also responsible for overseeing IT support from third party contractors as well as researching and implementing technological and strategic solutions primarily in the areas of data and system security, privacy, and compliance. This position also develops and enforces IT policies and procedures, assists with responses to security incidents, and manages and provides guidance for matters related to IT particularly as they relate to security. Specific Responsibilities: Oversees IT security at the highest level. Anticipates future systems and network requirements and identifies and implements proactive solutions to satisfy these needs. Oversees the implementation of advanced applications, processes and policies to secure corporate and personal information via DLP, SIEM, IDS/IPS, MFA, encryption, etc. Develops and maintains security, privacy, and SOX-related policies and procedures. Leads the IT aspects of GDPR, CCPA, HIPAA, and related legal and regulatory compliance while ensuring IT systems are maintained in a compliant state. Leads SOX compliance initiatives and independent public company accounting audit processes on behalf of IT for IT-related areas such as access, security, and internal controls. Verifies application results by conducting system audits of technologies implemented. Preserves assets by implementing disaster recovery and back-up procedures and information security and control structures. Ensures data integrity and security. Maintains current technical knowledge and state-of-the-art practices, particularly in the fields of information and system security. Ensures IT systems and operations adhere to applicable laws, regulations, and best practices. Responds to systems compliance and regulatory-related requests for information. Coordinates with the internal quality function with respect to systems audits related to compliance and regulatory matters. Assists IT leadership in maintaining the company’s effectiveness and efficiency by defining, delivering, and supporting strategic plans for implementing technologies. Education and Qualifications: Bachelors Degree in IT, Computer Science, Software Engineering or related field of study 15 to 20 years of industry experience. At least 5 years’ experience with successful track record of IT leadership, execution and delivery Extensive operational experience within the following technical environments: Windows Server, Exchange, networking, Mac, personal devices, encryption, intrusion detection, secure data rooms, remote working environments, cloud-hosted environments, system penetration testing, data exfiltration protection, and security risk assessment software. Proven track record of working closely and collaboratively with accounting, compliance, legal, regulatory, and risk management functions. Experience in SOX compliance as it relates to IT in a public company setting. Strong writing abilities and commitment to thorough and accurate documentation. Knowledge of data centers and end-to-end infrastructure. Solid understanding of security and performance at scale. Experience with rapidly responding to security incidents and assessing and resolving security vulnerabilities for critical corporate data. Excellent interpersonal, communication and leadership skills. Proven focus on internal customer satisfaction. Certifications in the fields of data security and privacy are a plus. Experience working with life science companies and cell therapies is a plus