CrawlJobs Logo
Robert Half Logo Robert Half · IT - Administration

VP of Information Security & Risk Management

United States, Nashville · Job Posted June 15, 2026
Apply Position
Job Link Share

Job Description

We are looking for an accomplished security executive to lead the organization’s information security, risk management, and compliance efforts from an enterprise perspective. This role will shape a forward-looking security strategy that supports business goals, strengthens regulatory alignment, and promotes resilient operations across the company. Based in Nashville, Tennessee, this leader will work closely with executives, internal teams, clients, and external partners to guide decision-making, elevate governance, and oversee response readiness.

Job Responsibility

  • Develop and lead a company-wide information security and risk management roadmap that supports strategic business objectives and long-term growth
  • Convert executive priorities into practical security programs, measurable initiatives, and effective control frameworks across the enterprise
  • Establish meaningful performance and risk metrics to evaluate security maturity, track progress, and inform leadership decisions
  • Direct governance, risk, and compliance activities by maintaining policies, standards, and control practices that meet regulatory and organizational expectations
  • Oversee audit preparation, regulatory reviews, and corrective action plans to ensure timely remediation and sustained compliance
  • Provide executive leadership during cybersecurity incidents by guiding escalation, communication, containment, and recovery efforts
  • Lead senior security teams responsible for monitoring threats, managing vulnerabilities, and reducing enterprise risk through coordinated operational execution
  • Represent the organization in security-related discussions with clients, vendors, and business partners, including assessments, due diligence, and contractual security matters
  • Build and develop a high-performing security leadership structure by mentoring managers and directors, setting priorities, and aligning resources to business needs

Requirements

  • Extensive leadership experience in information security, cybersecurity, risk management, or a closely related executive function
  • Demonstrated success creating enterprise security strategies and translating them into scalable programs and operational results
  • Strong knowledge of governance, risk, and compliance practices, including policy development, control oversight, and audit support
  • Experience leading executive-level incident response coordination and working across technical and business teams during high-impact events
  • Ability to engage effectively with senior leadership, clients, vendors, legal teams, and cross-functional stakeholders on security and risk matters
  • Familiarity with core security technologies and concepts, including network security tools such as Cisco ASA Firewall and broader cyber defense practices
  • Proven leadership capabilities in building teams, developing talent, and driving accountability within complex organizational environments
  • Working knowledge of IT strategy and the ability to collaborate within Agile Scrum or similarly structured delivery environments

What we offer

  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • free online training
Robert Half - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

VP of Information Security & Risk Management

8 matching positions

New

Vp Of Information Security & Risk Management

We are looking for an accomplished security executive to lead the organization’s...
Location
Location
United States , Nashville
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive leadership experience in information security, cybersecurity, risk management, or a closely related executive function
  • Demonstrated success creating enterprise security strategies and translating them into scalable programs and operational results
  • Strong knowledge of governance, risk, and compliance practices, including policy development, control oversight, and audit support
  • Experience leading executive-level incident response coordination and working across technical and business teams during high-impact events
  • Ability to engage effectively with senior leadership, clients, vendors, legal teams, and cross-functional stakeholders on security and risk matters
  • Familiarity with core security technologies and concepts, including network security tools such as Cisco ASA Firewall and broader cyber defense practices
  • Proven leadership capabilities in building teams, developing talent, and driving accountability within complex organizational environments
  • Working knowledge of IT strategy and the ability to collaborate within Agile Scrum or similarly structured delivery environments
Job Responsibility
Job Responsibility
  • Develop and lead a company-wide information security and risk management roadmap that supports strategic business objectives and long-term growth
  • Convert executive priorities into practical security programs, measurable initiatives, and effective control frameworks across the enterprise
  • Establish meaningful performance and risk metrics to evaluate security maturity, track progress, and inform leadership decisions
  • Direct governance, risk, and compliance activities by maintaining policies, standards, and control practices that meet regulatory and organizational expectations
  • Oversee audit preparation, regulatory reviews, and corrective action plans to ensure timely remediation and sustained compliance
  • Provide executive leadership during cybersecurity incidents by guiding escalation, communication, containment, and recovery efforts
  • Lead senior security teams responsible for monitoring threats, managing vulnerabilities, and reducing enterprise risk through coordinated operational execution
  • Represent the organization in security-related discussions with clients, vendors, and business partners, including assessments, due diligence, and contractual security matters
  • Build and develop a high-performing security leadership structure by mentoring managers and directors, setting priorities, and aligning resources to business needs
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • Fulltime
Read More
Arrow Right

VP, Information Security

Carex is partnering with a Financial Services industry partner to identify a VP,...
Location
Location
United States , Madison
Salary
Salary:
Not provided
carexconsulting.com Logo
Carex Consulting Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience developing and executing enterprise-wide information security strategies for mid to large organizations
  • Proven senior leadership experience with accountability for security governance, risk management, and operational execution
  • Deep knowledge of financial services regulations, privacy laws, and security frameworks such as NIST CSF, ISO 27001, CIS Controls, or comparable standards
  • Demonstrated expertise in threat management, vulnerability management, security operations, and modern ransomware defense strategies
  • Strong hands-on experience with cloud security architecture across IaaS, PaaS, and SaaS platforms, including identity and access management and zero-trust concepts
  • Experience leading enterprise incident response efforts in collaboration with executive leadership, Legal, Compliance, and Privacy teams
  • Background designing and overseeing third-party risk management programs and vendor security assessments
  • Bachelor’s degree required
  • Professional security certification such as CISSP strongly preferred
Job Responsibility
Job Responsibility
  • Lead the development and execution of a multi-year information security strategy aligned with business priorities and regulatory requirements
  • Build, mentor, and lead a high-performing information security team while fostering enterprise-wide security accountability
  • Establish and mature security governance, risk management, and control frameworks aligned with recognized industry standards
  • Provide executive-level reporting on security posture, risk exposure, and remediation progress
  • Partner closely with Legal, Compliance, and Privacy leadership to align security controls with regulatory obligations and financial services requirements
  • Support regulatory examinations, audits, and legal reviews related to cybersecurity and data protection
  • Oversee enterprise security operations, including threat detection, vulnerability management, endpoint protection, and incident response
  • Lead breach response coordination and tabletop exercises involving executive and cross-functional stakeholders
  • Establish and maintain secure cloud architectures across IaaS, PaaS, and SaaS environments
  • Strengthen identity and access management across hybrid and cloud environments using modern security principles
  • Fulltime
Read More
Arrow Right

Vp - Ai Security & Risk Manager

The Technology department at our client is responsible for creating and continuo...
Location
Location
United States , New York
Salary
Salary:
150000.00 - 175000.00 USD / Year
rennerbrown.com Logo
Renner Brown
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, Data Science, or a related field
  • advanced degree a plus
  • At least 7–10 years of experience in information security, technology risk, or a related field, with a minimum of 3 years focused on AI systems, machine learning security, or AI governance
  • Deep understanding of the AI and LLM landscape, including foundation model architecture, agentic systems, RAG pipelines, and the risk implications of each
  • Hands-on experience evaluating AI platforms and products, including the ability to assess vendor claims about model behavior, data handling, and security controls with appropriate skepticism
  • Familiarity with AI risk frameworks and emerging standards, including NIST AI RMF, MITRE ATLAS, OWASP LLM Top 10, and ISO/IEC 42001
  • Experience with vendor risk management in a regulated financial services environment, including contract negotiation support and third-party security assessments
  • Knowledge of relevant regulatory frameworks including DORA, SOX, SEC cybersecurity disclosure rules, and GDPR/CCPA as they apply to AI data flows
  • Strong technical skills sufficient to evaluate AI system architecture, API security, data pipeline design, and access control models without reliance solely on vendor documentation
  • Excellent communication skills, with the ability to translate highly technical AI risk concepts into clear, decision-ready language for senior leadership, Legal, and Compliance
Job Responsibility
Job Responsibility
  • Own and maintain the firm's AI risk framework, covering model risk, data privacy, adversarial threats, third-party AI, and regulatory compliance
  • Develop and enforce AI usage policies in collaboration with Legal and Compliance, including acceptable use, data classification requirements, and prompt handling standards
  • Maintain an inventory of AI tools deployed firm-wide — both sanctioned and shadow — and assess associated risk profiles
  • Provide regular AI risk reporting to the Head of Technology Risk and senior leadership, including emerging threat trends, vendor posture changes, and control gaps
  • Monitor the evolving regulatory environment for AI (EU AI Act, SEC guidance, DORA, NY DFS) and advise on compliance obligations and required controls
  • Lead security and risk assessments of vendors introducing AI capabilities into existing or new platforms, including evaluating model transparency, data handling practices, and auditability
  • Develop and maintain a structured AI vendor evaluation framework, incorporating criteria for model governance, output reliability, data residency, and incident response obligations
  • Partner with Procurement and Legal to ensure AI-specific provisions are reflected in vendor contracts, including data usage restrictions, model change notifications, and liability terms
  • Maintain a tiered risk register of third-party AI integrations, with ongoing monitoring for material changes to vendor AI functionality, architecture, or ownership
  • Engage directly with vendor security and product teams to assess AI-related controls and drive remediation of identified gaps
  • Fulltime
Read More
Arrow Right

VP of Technology

We are looking for an experienced technology executive to lead enterprise infras...
Location
Location
United States , San Antonio
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Systems, Computer Science, or a closely related field
  • At least 5 years of success leading large, distributed technology teams in complex and growing environments
  • Strong knowledge of data center operations, core infrastructure, network monitoring, and management platforms
  • Hands-on understanding of cloud, PaaS, and virtualization technologies, including public cloud and server, storage, network, and desktop virtualization
  • Familiarity with security and governance standards such as NIST, NIST 800-53, ISO standards, and ITIL service management practices
  • Experience applying Agile, Scrum, and/or Waterfall project delivery approaches in enterprise technology programs
  • Solid foundation in database administration, disaster recovery planning, systems engineering, and quality assurance methods
  • Excellent written and verbal communication skills with the ability to influence senior stakeholders, develop teams, and manage vendor relationships
Job Responsibility
Job Responsibility
  • Lead the creation, maintenance, and testing of disaster recovery and business continuity strategies to reduce operational risk and support uninterrupted services
  • Advise executive leadership on technology direction, infrastructure priorities, and long-term investments across core technical domains
  • Oversee the development of operational standards, technical documentation, and internal communications that promote consistency and accountability
  • Establish and refine service management practices that track system performance, identify improvement opportunities, and raise service quality for schools and administrative offices
  • Direct infrastructure and platform initiatives involving data centers, cloud environments, virtualization, networking, and enterprise systems
  • Prepare and deliver updates, recommendations, and performance insights for board meetings and executive presentations
  • Manage audit readiness efforts by coordinating evidence collection, reviewing controls, and supporting compliance-related activities
  • Lead cross-functional teams and external vendors to execute technology projects, strengthen operational maturity, and drive organization-wide change
  • Champion the use of industry frameworks and best practices in security, project delivery, quality assurance, and systems design
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • 401(k) plan
  • Fulltime
Read More
Arrow Right

Information Security Lead

We’re hiring a Lead of Information Security, reporting to the VP of Technical Op...
Location
Location
United States , Philadelphia
Salary
Salary:
Not provided
Proscia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in information security, including direct experience improving, and contributing to GRC programs
  • Proven expertise in regulatory frameworks such as ISO 27001, SOC 2, GDPR, HIPAA, FedRAMP, TX-RAMP, StateRAMP or similar
  • Hands-on experience with vulnerability management tools, incident response, and security audits
  • Experience embedding security into software development lifecycles—DevSecOps principles applied in practice
  • Experience selecting, implementing, and managing security tooling (e.g., XDR, SIEM, endpoint, code scanning, etc.)
  • Exceptional communication and influencing skills across technical and non-technical teams
  • A high degree of autonomy and ownership—comfortable leading cross-functional efforts and prioritizing in a dynamic environment
  • You already use AI tools in your security work—for policy drafting, threat analysis, log review, control validation, or however it fits your practice
  • Experience with cloud-native environments (AWS preferred)
  • Experience building with or on top of LLMs, AI agents, or agentic pipelines
Job Responsibility
Job Responsibility
  • Manage and evolve vulnerability management— tooling, reporting, and remediation governance
  • Serve as a consultative security leader for Engineering, Product, and Customer teams—governing system designs, architecture, and implementation through a security-first lens
  • Implement AI native tooling to improve detection and response capabilities without incurring an increased demand on resources
  • Partner with Engineering to implement developer-friendly security tools that improve security posture and reduce compliance burdens without slowing velocity
  • Oversee incident response preparation, processes, and execution—ensuring coordinated action, effective communication, and the kind of thorough post-incident analysis that prevents the same problem twice
  • Under the direction VP, TechOps, improve the Proscia Information Security Program, with a focus on governance, risk, and compliance (GRC) across the Concentriq suite of applications and Proscia’s business applications
  • Contribute to security policy development across regulated and non-regulated markets—implementing agentic workflows where it accelerates your research and stress-testing, iterating with stakeholders, and maintaining the rigor and compliance standards our customers expect
  • Influence and execute on the company’s regulatory roadmap—seeking new certifications and frameworks (e.g., ISO 27001, SOC 2, HITRUST) in response to customer and market demands
  • Enable other teams to answer security-related questions from customers, prospects, and partners providing expert information security guidance
  • Anticipate and adapt to industry and regulatory trends, including how AI is reshaping both the threat landscape and the defender’s toolkit—and surface emerging requirements before they become urgent
What we offer
What we offer
  • Competitive pay
  • Savings options
  • Schedule options
  • Insurance options that promote long-term health and personal growth
  • Office environment designed for creativity and agility with walls as notepads and couches for collaboration
  • Located in the heart of Philadelphia with views of the city
  • Fulltime
Read More
Arrow Right

VP of Technology

We are looking for an experienced technology executive to lead enterprise infras...
Location
Location
United States , San Antonio
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Systems, Computer Science, or a closely related field
  • At least 5 years of success leading large, distributed technology teams in complex and growing environments
  • Strong knowledge of data center operations, core infrastructure, network monitoring, and management platforms
  • Hands-on understanding of cloud, PaaS, and virtualization technologies, including public cloud and server, storage, network, and desktop virtualization
  • Familiarity with security and governance standards such as NIST, NIST 800-53, ISO standards, and ITIL service management practices
  • Experience applying Agile, Scrum, and/or Waterfall project delivery approaches in enterprise technology programs
  • Solid foundation in database administration, disaster recovery planning, systems engineering, and quality assurance methods
  • Excellent written and verbal communication skills with the ability to influence senior stakeholders, develop teams, and manage vendor relationships
Job Responsibility
Job Responsibility
  • Lead the creation, maintenance, and testing of disaster recovery and business continuity strategies to reduce operational risk and support uninterrupted services
  • Advise executive leadership on technology direction, infrastructure priorities, and long-term investments across core technical domains
  • Oversee the development of operational standards, technical documentation, and internal communications that promote consistency and accountability
  • Establish and refine service management practices that track system performance, identify improvement opportunities, and raise service quality for schools and administrative offices
  • Direct infrastructure and platform initiatives involving data centers, cloud environments, virtualization, networking, and enterprise systems
  • Prepare and deliver updates, recommendations, and performance insights for board meetings and executive presentations
  • Manage audit readiness efforts by coordinating evidence collection, reviewing controls, and supporting compliance-related activities
  • Lead cross-functional teams and external vendors to execute technology projects, strengthen operational maturity, and drive organization-wide change
  • Champion the use of industry frameworks and best practices in security, project delivery, quality assurance, and systems design
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • 401(k) plan
  • Fulltime
Read More
Arrow Right

It And Security Risk Officer

Adyen is the financial technology platform of choice for the world's leading com...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
adyen.com Logo
Adyen
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • You have between 5 to 15 years experience with Security and IT risk management, working with(in) the second line risk management in a financial institution, technology company or as a technology risk consultant in a Big 4 firm or comparable
  • You have a clear understanding of Technology and Information Security domains, such as IT Resilience, vulnerability management, Security incident response, secure development, etc. and have an understanding of recognized industry frameworks
  • You feel comfortable explaining risks associated with Information Security or IT areas, to engineers or other business stakeholders, as well as recommending risk mitigations and enabling risk monitoring by building risk indicators
  • You have experience in engaging with regulators or in regulatory projects, with understanding of requirements related to Security and IT risk management for regulated institutions or the payments industry in the APAC region
  • You are passionate and driven about building for risk management, owning projects and objectives in the medium, long term
  • You are practical, innovative, flexible with strong problem-solving capabilities and able to define efficient and effective processes and procedures
  • You have strong written and verbal communication skills
Job Responsibility
Job Responsibility
  • Operates as the Adyen second line Enterprise Risk representative (Risk Officer) in the APAC region, providing strategic leadership and oversight for risk management from our Singapore office
  • Collaborate with the global risk management team to redirect or jointly answer risk management questions and challenges outside of the technology risk domain
  • Provide local Security and IT Risk input to regulatory inquiries on Adyen's IT and security posture, and participate in relevant regional risk activities
  • Execute on the global Information Security and IT Risk Assessments across a number of diverse Security and IT domains and assets, advising on and ensuring risk mitigation actions are implemented
  • Maintain and further develop the Adyen IT and Information Security Policies and contribute to the maturity of the Information Security and IT Risk Framework
  • Engage with key stakeholders and work cooperatively to identify, create, develop or implement mitigations to IT and Security risks, and actions that drive policies adoption and process maturity
  • Collaborate with other Enterprise risk domains, in order to incorporate Security and IT risks into Adyen's risk profile, ensuring those are considered when evaluating company objectives
  • Collaborate with other second-line teams (typically regulatory, compliance and privacy) in the implementation of Security and IT requirements, as well as engage with local auditors or external partners (externally) as a trusted point of contact for the specific risk domains, globally
  • Identify and drive process improvements that enhance scalability and efficiency of the Tech Risk team
  • Represent risk management in local executive boards across APAC together with the VP of Enterprise Risk
  • Fulltime
Read More
Arrow Right

Vp, Information Technology Planning and Delivery

Associa is seeking a role of VP Information Technology Planning and Delivery to ...
Location
Location
United States , Richardson
Salary
Salary:
Not provided
associaonline.com Logo
Associa
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in relevant field
  • 15+ years of progressive IT leadership experience, including senior management roles
  • Demonstrated success leading enterprise-scale technology programs and transformations
  • Experience reporting to or partnering closely with C-suite and executive leadership
  • Familiarity with enterprise delivery frameworks (e.g., Agile, hybrid, waterfall) and modern SDLC practices
  • Hands-on leadership in modernization initiatives (cloud migration, ERP transformation, data & analytics platforms)
  • Experience implementing or governing AI-enabled solutions or advanced analytics platforms
  • Experience operating in large, complex, multi-site enterprises
  • Prior ownership of enterprise PMO alignment and delivery governance at scale
  • Experience driving Agile / DevOps transformation across multiple teams or portfolios
Job Responsibility
Job Responsibility
  • Mobilize, drive and execute multi-year IT strategies aligned with enterprise business objectives and growth plans
  • Establish and oversee IT delivery governance frameworks, standards and policies leveraging practices such as ITIL, COBIT, AI, etc. as applicable
  • Serve as a strategic advisor to executive leadership on technology investments, risks, and opportunities
  • Ensure compliance with IT security, regulatory, and risk management requirements
  • Drive definition and roadmap of digital transformation initiatives, including M&A integrations, modernization of platforms, applications, and data capabilities with corresponding change management required
  • Lead program executive communication and cadence through best practices including steering committees, routine status and tracking, escalations, change control, documentation, etc.
  • Partner with internal and external cross functional transformation leadership to align and drive successful implementation plans
  • Partner with CFO on program financials including ongoing business case management, spend tracking, revenue assumptions and change controls
  • Partner with the Program Management Office to align with enterprise governance expectations
  • Partner with HR leadership on program resourcing including ongoing resource planning, tracking and requirements
Read More
Arrow Right