MVP, Chief Information Security Officer
Listed on 2026-07-13
-
IT/Tech
Cybersecurity, Information Security, IT Consultant, IT Project Manager
Applicants must have current authorization to work in the United States on a full-time basis.
The Vice President and Chief Information Security Officer's role is to provide vision and leadership for developing and supporting security initiatives and governance of all subsidiaries and joint ventures of Encore Capital Group. This role is responsible for establishing and maintaining a global enterprise-wide information security management program and systems to ensure that information assets are adequately protected. This position is responsible for identifying, evaluating, and reporting on information security risks in a manner that meets compliance and regulatory requirements, and aligns with and supports the risk posture of the enterprise.
The Chief Information Security Officer provides input and guidance on the planning and implementation of enterprise IT systems, business operations, and facility defenses to mitigate security breaches and vulnerability issues based on knowledge of both internal and external environments. This individual is also responsible for identifying issues and risks in existing systems, while directing the administration of security policies, activities, and standards.
This role is an integrator of people, process, and technology.
This role's key stakeholders are the two BU President's, Global and Cabot CIOs, VP Internal Audit, Chief Strategy, Risk and Compliance officer, and the three senior General Counsel's for Encore, MCM and Cabot.
This role will present to the Board on a Quarterly basis. They will lead a team of thirty employees across UK, IE, EU, and US and India.
Evidence of success in this role will be the successful implementation of an Info Sec Roadmap and Strategy, NIST CSF alignment, and developing and leading a strong Info Sec team across the globe, wherein they have as a leader-built trust both internally, with the board and senior leaders regarding the Info Sec program. This role is influential internally and a strong technical leader of Info Sec frameworks and knowledge.
Responsibilities:- Build the network and communicate the vision:
Lead and communicate strategic security plans to achieve business goals by prioritizing defense initiatives and coordinating the evaluation, deployment, and management of current and future security technologies using a risk-based assessment methodology. Provides clear risk mitigating directives for projects and plans as it relates to IT projects and controls. Provides regular reporting on the status of the information security program to enterprise risk, senior business leaders and the board of Directors for Encore part of strategic enterprise risk program in order to drive assurance. - Work closely with the IT department on corporate technology development to fully secure information, computer, network, and processing systems. Assist the IT organization and broader enterprise with maintaining compliance with such security frameworks as PCI DSS, ISO 27001, and SOX / COBIT. 30%
- Establish Governance and Build Knowledge:
Own all assurance & information security governance activities related to the integrity and confidentiality of customer, business partner, employee, and business information in compliance with the organization's information security policies. Leverages the Infosec LT and other governance boards and steering committees to ensure compliance. - Lead the organization:
Develop, track, and control the security services annual operating and capital budgets for purchasing, staffing, and operations. Communicate security strategies and plans to executive team, staff, partners, customers, and stakeholders. - Promote and oversee strategic security relationships between internal resources and external entities, including government, vendors, and partner organizations.
- Operate the function:
Report security performance against established security metrics and key risk indicators. This includes managing and containing information security incidents and events to protect corporate IT assets, intellectual property, regulated data, and the company's reputation. - Develop the Frameworks:
Recommend and implement changes in security policies and…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).