Job Description
The Team
We are seeking a Vice President; Chief Information Security Officer join American Tower. The VP, CISO is responsible for establishing and maintaining the company’s enterprise-wide information security vision, strategy, and programs to ensure information, assets and technologies are adequately protected. The incumbent will have a deep understanding of the changing landscape of security and technology and will collaborate directly with the senior management team and key business stakeholders to plan and implement information security projects to meet key business objectives across the organization. Additionally, the CISO will be responsible for incident response activities including escalating, managing and reporting incidents according to internal protocols. Leading a team of security professionals, the CISO will develop and implement security policies, standards, and procedures, ensuring organizational adoption. The incumbent will also be responsible for developing and maintaining relationships with external vendors and relevant government agencies.
Responsibilities
What You Can Offer Us
- Develop and implement a strategic, long-term information security strategy and roadmap to ensure American Tower’s information assets are adequately protected.
- Lead the information security function across the company to ensure consistent and high-quality information security management in support of the business goals.
- Provide regular reporting on the status of the information security program to senior business leaders and the board of directors as part of a strategic enterprise risk management program.
- Identify, evaluate, and report on information security risks in a manner that meets compliance and regulatory requirements and aligns with the risk posture of the enterprise.
- Develop and enhance an information security management framework, including with respect to AI tools governance, based on industry standards and best practices.
- Create and manage information security and risk management awareness training programs for all employees, contractors, and approved system users.
- Work with various stakeholders to ensure the company’s information security policies, standards, and procedures are up-to-date and enforced.
- Review and lead the enterprise-wide incident response program; investigate and manage security breaches, and collaborate with key stakeholders and external partners, as necessary.
- Develop, implement and oversee effective disaster recovery policies and procedures to align with enterprise business continuity management program goals.
- Collaborate with IT and business leaders to manage security vulnerabilities and ensure the security of the company’s information assets.
- Prepare materials and presentations for the board and reports for senior leaders, as necessary.
Qualifications
What You Need to Succeed
- Bachelor’s degree in computer science, Information Systems, or a related field
- Master’s degree and information security industry certifications (such as CISSP) preferred.
- Minimum of 15 years of experience in a combination of information security, and IT jobs.
- Detailed knowledge of common information security management frameworks, such as ISO/IEC 27001/2, NIST, and CIS.
- Understanding of security architecture design, network security, vulnerability management and risk analysis.
- Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security- and risk-related concepts to technical and nontechnical audiences.
- Proven track record and experience in developing information security policies and procedures, as well as successfully executing programs that meet the objectives of excellence in a dynamic environment.
- Ability to develop and articulate a long-term vision for the company’s global information security strategy.
- Expertise in hiring and managing third party information security consultants.
- A deep understanding of evolving cybersecurity threats, events, and geographically specific challenges to evaluate potential impacts and prioritize strategic focus areas.
- Ability to collaborate, influence and build consensus across various geographies and business units.
- Strong organization, planning, and project management skills; ability to prioritize tasks for self and team to meet requirements and deadlines.
- Ability to work with different functional groups and levels of employees to effectively and professionally achieve results.
- Strong leadership skills: ability to drive and motivate teams to achieve results. A track record of recruiting, developing, and retaining top talent.
- Experience leading incident response efforts during information security breaches or incidents, preferably at publicly traded companies.
About Us
American Tower is a global digital infrastructure company serving customers through tower sites and other real estate solutions that support connectivity and opportunity, focused on achieving our vision of Building a More Connected World. Our success is rooted in the potential of our people and the power of local teams at our offices and sites across 25 countries.
We are one of the largest global Real Estate Investment Trusts (REITs) and a publicly traded (NYSE:AMT), Fortune 500 Company headquartered in Boston, Massachusetts. The next decade will be an exciting time as we evolve our infrastructure to meet tomorrow’s needs and position our people to elevate their impact, their potential, and our shared success. Come grow your career with us!
For more information about how American Tower is building a more connected world, visit americantower.com.
American Tower is proud to be an equal opportunity employer and will not discriminate against an applicant or employee based on age, sex, sexual orientation, gender identity, race, color, creed, religion, national origin or ancestry, citizenship, marital status, familial status, disability, military or veteran status, genetic information, pregnancy, reproductive decisions, or any other characteristic protected under applicable law.