First American is hiring a Chief Information Security Officer

First American is seeking a visionary Chief Information Security Officer (CISO) to establish and maintain our enterprise-wide information security program. You will be responsible for protecting our information assets, setting security policies and standards, and guiding the organization through an evolving threat landscape. This role is central to our mission of safeguarding company assets, intellectual property, and ensuring the physical safety of our people.

What You'll Do

• Understand corporate strategic plans and fundamental business activities to align security initiatives.
• Develop, maintain, and oversee an enterprise-wide Information Security Program consistent with regulatory and compliance requirements.
• Develop and oversee a network of business unit–based security directors and vendors.
• Define, identify, and classify critical information assets; assess threats and vulnerabilities; and implement safeguard recommendations.
• Manage the development and implementation of global security policies, standards, and guidelines.
• Oversee the investigation of security breaches and serve as the focal point for incident response planning.
• Review new facilities, applications, and technology environments during development or acquisition to ensure compliance.
• Periodically test and evaluate Information Security controls and coordinate external security testing.
• Develop business-relevant metrics to measure program effectiveness and maturity.
• Report to executive management on the effectiveness of the Information Security Program.
• Provide subject matter expertise on information security standards and best practices like NIST and PCI.
• Provide strategic and tactical security guidance for all IT projects and enterprise architecture.
• Oversee the development and implementation of a company-wide Information Security training program.
• Foster the security culture and awareness of the enterprise.
• Collaborate with the Chief Compliance Officer and Chief Information Officer on privacy, security, and board-level presentations.
• Manage the Information Security Governance Department and chair the organization’s Security Steering Committee.
• Serve in a leadership role for security initiatives and investigations.
• Maintain relationships with local, state, and federal law enforcement and government agencies.
• Perform duties outside of normal work hours based on business needs.

What We're Looking For

• A solid understanding of Information Technology, Information Security, and Risk Management.
• Ability to interface with senior management and diverse corporate, operations, and IT personnel.
• Knowledge of security and control frameworks, such as ISO 17799, COBIT, ITIL.
• Demonstrated competency in creating and executing strategic plans.
• Proven track record of leading large, complex projects with multiple stakeholders and driving organizational change.
• Success in meeting the needs of a wide range of employees while driving team performance and allocating resources.
• Comprehensive knowledge and application of principles, practices, and procedures in the security field.
• Strong experience and knowledge of functional tools and infrastructure.
• Progressive experience leading employees in multiple locations and implementing solutions.
• Strong problem solving, collaboration, critical thinking, team building, and presentation skills.
• Results oriented with strong time and project management skills; highly organized and driven.
• Strong leadership skills, leading by example and empowering employees.
• 12+ years progressive information security management and/or risk management experience in the Financial Services or Healthcare sector (Financial Services highly preferred).
• Information Security certifications such as the Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) required (CISSP highly preferred).

Nice to Have

• A Master's degree in Computer Science or Management Information Systems.

Team & Environment

You will lead a 5-person team and direct the activities of a 10-person Security Operations Group. You'll be a key strategic leader, fostering a culture of security awareness and collaboration across the enterprise.

Benefits & Compensation

• Compensation range: $284,000.00 - $378,600.00 Annually
• Based on eligibility, a comprehensive benefits package including medical, dental, vision, 401k, PTO/paid sick leave, and an employee stock purchase plan.

Company Culture

Join a team that puts its People First! Our inclusive, people-first culture has earned us a spot on the Fortune 100 Best Companies to Work For® list for ten consecutive years. We have also earned awards as a best place to work for women, diversity, and LGBTQ+ employees. First American will always strive to be a great place to work, for all. By choice, we embrace, support, and thrive on individuality. Our People First Culture celebrates diversity, equity, and inclusion.

First American is an equal opportunity employer in every sense of the term.