VP, Information Security Manager

OTC Markets Group Inc., operator of premier US financial marketplaces, is seeking a VP, Information Security Manager to lead our Cybersecurity team as part of the IT Infrastructure department.

OTC Markets is currently operating in a hybrid work environment (three days in office, two days remotely). Our Core Values are incorporated in each aspect of our Company.

We encourage autonomy, professionally passionate discussions of opposing viewpoints, creativity, and transparency. We are O pen, T ransparent, and C onnected.

We are OTC strong. At OTC Markets, we all win together. We invest heavily in employee satisfaction and offer all our employees a highly competitive compensation package.

As a dynamic, growing company that fosters an open culture, we emphasize autonomy, responsibility, innovation, and self-discipline.

We are looking for someone who wants to make an impressive impact at a company known for its reputation on quality and achievement. Responsibilities :

• Develop and implement comprehensive security strategies and policies in a regulated financial environment.
• Lead information security incident response and mitigation strategies, including post-incident analysis and improvement.
• Supervise, mentor, and develop a high-performing security team.
• Collaborate with IT, business departments, and company executives to ensure security measures align with business goals and risk appetite.
• Identify, generate, and report on key metrics to measure the effectiveness of security controls and overall security posture.
• Conduct regular information security risk / vulnerability assessments and oversee security penetration testing.
• Establish and operate a formal governance mechanism to monitor and enforce effective controls for IT processes and functions.
• Implement and manage security automation solutions to enhance threat detection, investigation, and response capabilities.
• Promote and enhance organization-wide security culture through leadership and educational initiatives.
• Develop and manage information security budgets, including cost-benefit analyses for security investments.
• Design and conduct periodic security training and awareness programs for employees at all levels.
• Stay informed about emerging threats and technologies, adjusting security strategies accordingly. Qualifications :
• Bachelor's degree in Computer Science, Information Technology, Cyber Security, or a related field.
• Minimum of 8 years of experience in information security, with at least 3 years in a management role.
• Thorough knowledge of industry frameworks (NIST, ISO etc.), security fundamentals, best practices.
• Relevant certifications such as CISM, CISSP or similar are preferred.
• Demonstrated technical skills in Information Security and IT, including Windows, Linux OS, Networking, Cloud Security, and DevSecOps practices.
• Strong understanding of information security governance, risk management, and compliance.
• Excellent project management skills.
• Proven ability to manage, develop, and inspire high-performance teams.
• Exceptional analytical and problem-solving skills.
• Outstanding written and verbal communication skills, including the ability to articulate complex security concepts to non-technical stakeholders.
• Experience architecting security solutions for complex mission critical environments.
• Expert understanding of network and web protocols, including emerging technologies.
• Hands-on experience with securing AWS cloud infrastructure using CSPM / CNAPP tools.
• In-depth knowledge of IAM and PAM technologies and deployments.
• Proficiency in MDM solutions and securing remote work environments.
• Experience with dynamic and static code scanning tools and secure development practices.
• Understanding of regulatory compliance requirements such as SEC Regulation SCI, PCI DSS, GLBA.
• Experience with Zero Trust architecture and implementation.
• Experience in threat modeling and incident simulation exercises.
• Strong business acumen and ability to align security initiatives with organizational objectives. Salary offered for the position is up to $260,000 and depends on experience.

In addition, the position is eligible for discretionary annual bonus program and equity. BENEFITS : Generous Paid Time Off (PTO) Health, Dental, and Vision Coverage Health Savings Account (HSA) Flexible Spending Accounts (FSA) Dependent & Healthcare Limited Purpose Flexible Spending Account (LPFSA) Generous Paid Parental Leave Program Annual bonus and Stock Incentive Program 401(K) Plan - Retirement Commuter Transit & Parking Program Income Protection (Life Insurance, Short- & Long-Term Disability) Voluntary Benefits (Accident, Critical Illness, & Hospital Indemnity)