The Bonadio Group is currently seeking a Director of Information Security to lead and manage Bonadio’s information security strategies, initiatives, and operations. This role is pivotal in protecting our firm’s digital assets, ensuring compliance with regulatory requirements, and fostering a culture of cybersecurity awareness.

Responsibilities

Develop, implement, and maintain a comprehensive information security strategy aligned with organizational goals. 

Establish and enforce policies, procedures, and guidelines to ensure information security and data privacy. 

Identify, assess, and mitigate security risks across the organization’s IT infrastructure. 

Conduct regular risk assessments, vulnerability scanning, and penetration testing to identify vulnerabilities. 

Working with the firm’s Chief Risk Officer to implement risk mitigation plans and corrective actions. 

Ensure compliance with relevant laws, regulations, and industry standards (e.g., GDPR, CCPA, HIPAA, SOC-2, ISO 27001, NIST & Zero Trust frameworks)

Manage relationships with regulatory bodies and auditors.

Develop and maintain an incident response plan to address and mitigate security breaches and cyberattacks.

Lead the investigation and resolution of security incidents, including post-incident analysis and reporting. 

Build on and lead a high-performing information security team, including recruitment, training, and mentorship.

Continue to foster a culture of security awareness across all levels of the firm through training and communication.

Qualifications 

Required:

Accredited BS/BA degree in Information Security, Information Technology or equivalent.

At least 10 years of experience in information security, with at least five years in a leadership role.

Knowledge of all cybersecurity and information security related regulations applicable to The Bonadio Group (HIPAA, NY SHIELD, NIST)

Relevant certifications such as CISSP, CISM, CISA, or equivalent.

Knowledge of information security frameworks, technologies, and best practices.

Proven experience in risk management, compliance, and incident response.

Ability to travel to various firm offices. 

The salary range for this position is between $165,000 to $175,000 and is commensurate with experience.

Hours Of Operation:

Our office hours are from 8:00 a.m. until 5:00 p.m. Monday through Friday

Our summer hours are from 8:00 a.m. until 5:00 p.m. Monday through Thursday, and from 8:00 a.m. until 12:00 p.m. on Fridays  

We pride ourselves on our flexibility; however, the ability to work additional hours will be needed at peak times
 

At The Bonadio Group, we believe that an inclusive work environment allows all of our people to achieve their greatest potential and the greatest results for our clients and communities. Bonadio is committed to the principle of equal treatment and opportunity for all people. The Firm is committed to fostering and managing diversity in the workplace as an integral part of its practice and service to clients. The Firm values the rich variety of perspectives and experiences offered by those of different backgrounds. This diversity strengthens our institution and enables it to better respond to our clients’ needs in an increasingly global profession. 

In the fast-changing accounting industry, The Bonadio Group is always on the cutting edge of growth and innovation. With our great mentoring and training programs, you’ll be exposed to diversity of work, the ability to tackle more interesting issues, and have a path to Partnership.  You’ll be working with great people and great clients where you can truly make a difference.  Apply online, get on board, and grow with us.  You’ll be glad you did!

All communications from The Bonadio Group regarding recruitment and hiring will come from an @bonadio.com email address and our process includes a discussion with our Talent Management team. If you have any questions or concerns, please contact us immediately at (800) 487-7624 or careers@bonadio.com. 

EOE/AA Disability/Veteran