Vice President, Information Security (Hybrid)
Job Description Westat is an employee-owned corporation providing research services to agencies of the U.S. Government, as well as businesses, foundations, and state and local governments. Westat's research, technical, and administrative staff of more than 2,000 is located at our headquarters in Rockville, Maryland, near Washington, DC.
Westat is seeking a Vice President, Information Security to join our Technology & Digital Solutions team, reporting directly to the CIO.
The Vice President, Information Security is tasked with the oversight and management of the organization's information security program. This role entails the development and implementation of security policies, procedures, and strategies aimed at safeguarding the company's data, systems, and networks from cyber threats. The Vice President will lead a team of security professionals, conduct risk assessments and security audits, and ensure compliance with relevant regulations and standards. Success in this position requires extensive experience in information security, strong leadership capabilities, and effective communication skills with both technical and non-technical stakeholders.
This position is based at Westat's Corporate headquarters in Rockville, Maryland and is hybrid, requiring 3 days on-site each week. Westat will be relocating to Bethesda, Maryland in late 2025.
Key Responsibilities:
Strategy, Governance & Leadership
- Design and execute a comprehensive information security strategy.
- Communicate security risks and strategies to senior leadership.
- Create and maintain an annual budget for information security.
- Work closely with business units and departments, including legal.
- Conduct annual performance reviews and develop professional development plans.
- Provide coaching, leadership, and professional development for staff.
Compliance, Risk & Asset Management
- Ensure compliance with laws, regulations, and standards (e.g., NIST, CMMC, FISMA, ISO27001, HIPAA, GDPR).
- Oversee compliance documentation (e.g., SSP, POA&M).
- Develop and implement risk mitigation plans.
- Maintain a comprehensive inventory of IT and information assets.
- Develop and enforce security policies, procedures, and standards.
Security Operations & Incident Response
- Develop and maintain an incident response plan and conduct drills.
- Lead incident response efforts for detection, containment, and remediation.
- Plan and oversee annual penetration testing activities.
- Oversee the design and implementation of secure IT architecture.
Security Awareness & Training
- Develop and deliver training programs to promote security awareness.
Basic Qualifications:
- 10 years of information security leadership experience in a government contracting environment.
- Demonstrated technical expertise in cloud security models, as well as in depth knowledge of legal and regulatory requirements and cybersecurity frameworks (e.g., NIST, HIPAA, CMMC, FISMA, ISO27001, FedRAMP)
- Demonstrated leadership, communication, and strategic planning skills, this includes experience leading large departments, including mentorship and professional development of staff.
- Experience in managing security operations, incident response, and risk management.
- Proven ability to manage budgets, lead cross-functional teams, and oversee third-party vendors.
- Ability to demonstrate strategic vision combined with experience developing and executing business strategy.
Preferred Qualifications:
- Bachelor's degree
- Relevant certifications (CISSP, CISM, CISA)
- Familiarity with emerging technologies such as zero trust architecture, AI/ML security.
- Expertise in cloud native security and application security
Internally this position is documented at Vice President, Technology and Digital Solutions. Westat offers a well-rounded and comprehensive benefits program focused on wellness and work/life balance. Subject to plan requirements, employees may participate in:
- Employee Stock Ownership Plan
- 401(k) Retirement Plan
- Paid Parental Leave
- Vacation Leave (20 days per year)
- Sick Leave (10 days per year)
- Holiday Leave (7 government holidays and 2 floating holidays per year)
- Professional Development
- Health Advocate
- Employee Assistance Program
- Travel Accident Insurance
- Medical Insurance
- Dental Insurance
- Vision Insurance
- Short Term Disability Insurance
- Long Term Disability Insurance
- Life and AD&D Insurance
- Critical Illness Insurance
- Supplemental Life Insurance
- Flexible Spending Account
- Health Savings Account
This opportunity will be posted for a minimum of 5 days and applications will be accepted on an ongoing basis. Westat is an Equal Opportunity Employer and does not discriminate on the basis of race, creed, color, religion, sex, national origin, age, veteran status, disability, marital status, sexual orientation, citizenship status, genetic information, or any other protected status under applicable law. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
#LI-WST1
#HYBRID Career Area Computer Systems and Applications Pay Range The anticipated salary range for this role is $180k-$238k and will be commensurate with experience.
|
Westat
medical insurance, dental insurance, life insurance, vision insurance, flexible benefit account, parental leave, vacation time, sick time, short term disability, long term disability, 401(k), retirement plan
Jul 07, 2025