Define and lead the overall enterprise information security and risk management program — covering both internal IT security and customer-facing product security across the combined portfolio.
Maintain compliance with relevant laws, regulations, and standards across all entities, including SOC 2. Conduct compliance gap analyses for Bektek and StafferLink and drive remediation to align with Smartlinx standards.
Leverage AI and automation to improve threat detection, vulnerability management, incident response, and compliance monitoring.
Monitor threats, manage vulnerabilities, and lead day-to-day security operations across all Smartlinx, Bektek, and StafferLink environments.
Own and operate the incident response process, ensuring internal and external experts are ready for rapid response to security events.
Build, hire, and lead a unified cybersecurity security team and establish strong working partnerships with product engineering.
Establish governance frameworks and security policies for AI and machine learning use across the organization, including AI-powered product features, internal AI tools, and third-party AI services.
Drive security awareness through training and communications across the organization, including onboarding Bektek and StafferLink teams on Smartlinx security standards.
Support sales teams in responding to customer security inquiries across all product lines.
Lead the security integration of Bektek and StafferLink: assess inherited systems, remediate gaps, harmonize policies and controls, and rationalize overlapping tools and vendor relationships.
Develop and execute a phased security integration roadmap aligned with business integration timelines.
Report on the security program's status, integration progress, and risk posture to Executive leadership.
Requirements
10+ years of information security and risk management leadership experience.
Experience leading security integration during and after M&A activity.
Demonstrated ability to build enterprise-wide security programs, monitor for threats, implement preventive measures, and communicate security requirements to audiences ranging from the Executive leadership to software engineers.
Ability to assess threats from both a business and technical perspective and develop practical, cost-effective security solutions.
Experience developing AI governance frameworks and security policies for AI/ML systems.
Familiarity with AI-driven security tools and automation.
SOC 2 compliance expertise and experience obtaining SOC 2 certification is required.
Strong written and verbal communication skills. Able to translate complex security concepts into clear, digestible language.
Composure and effectiveness in high-pressure situations.
Critical thinking and strong problem-solving skills.
Bachelor's degree in Information Systems, Software Engineering, or similar, preferred.