Chief Information Security Officer

Link Logistics Real Estate ("Link") is a leading operator of last-mile logistics real estate. Established by Blackstone in 2019, the company connects consumption, technology, and the supply chain across its portfolio, which spans more than half a billion square feet. With more than 5 percent of U.S. GDP flowing through our spaces, we leverage our scale, proprietary data and insights, and foundational focus on sustainability to drive success for our customers' businesses and deliver value for our stakeholders. Link Logistics strives to be the most equitable and inclusive industrial real estate company in the business. We put our people, customers, and communities first and find ways to make a conscious, positive impact where we live and work, prioritizing diversity, equity and inclusion (DEI) across our workforce to deliver an optimal employee experience. Every day, we work to reinvent and lead our industry forward by thinking bigger and challenging the status quo.

Because we believe that good business must be synonymous with doing good, strong environmental, social and governance practices are foundational to our identity as a firm. These practices include setting ambitious goals to combat climate change, partnering with local nonprofits, and prioritizing internal diversity, equity, and inclusion efforts. We seek to use our position, ideas, and influence to drive progress in our industry and the wider world. At Link, we give our customers space to grow-and we give people space to grow, too.

As the Chief Information Security Officer for the firm, your primary responsibility will be to develop, oversee, and operate Link's Technology and Data Cyber Security program and function. You will be expected to create the cyber security strategy, stakeholder it with Link and Blackstone executives and build a plan to implement, operate, and enhance it in response to the changing cyber, technology, and business threat landscape. The role reports to the Chief Technology Officer.

RESPONSIBILITIES:

Lead the Enterprise Information Security Group. Drive the design and execution of the information security strategy, work in partnership with various key stakeholders (Risk Management, Technology, Lines of Businesses, etc.)
Serve as the senior spokesperson for information security, including communicate key issues, risks and progress to governance committees, business executives, Regulators and the Board of Directors.
Build and Lead the Information Security Steering Committee.
Monitor and measure progress and highlight/escalate issues.
Build, retain and develop a team of top talent.
Design and operate a Cyber Securities Operations Center to promptly identify and respond to security issues/anomalies. Execute and maintain response processes to ensure timely response to detected cybersecurity events. Contain and mitigate incidents and newly identified vulnerabilities.
Build and run a risk assessment program that includes comprehensive technical assessments of applications and infrastructure, penetration tests and security architecture assessments. Ensure the provision of data security subject matter expertise to project teams to ensure early identification of data security requirements. Categorize and prioritize assessment risks for remediation.
Design and run an information security metrics/reporting program. In addition, produce information security reports as required, including Regulatory reports.
Ensure readiness for regulatory and internal audit examinations. Timely respond to inquiries and ensure suitability and timely execution of corrective action plans.
Build and run training and awareness programs to educate and alert staff, third parties and clients to key risks and the behaviors and actions required to mitigate risks.
Work closely with the leaders of the business and IT, influence design, ensure the provision of subject matter expertise, and co-own implementation of initiatives.
Actively engage with industry associations and develop industry relationships. Stay abreast of evolving threats/risks.
Oversee the Enterprise Information Security Group's projects and guide the projects to on-time and on-budget delivery. Ensure transparency of key project risks.
Serve as the owner of the information security policy and oversee the policy exception management process. Evolve policy and standards to account for new technologies, changing regulations, threats and risks.
Design, maintain, and support IT Controls framework and associated standards.
Build strong and effective relationships with key Head Office staff and support initiatives to advance information security capabilities.
Contribute to the leadership team success by influencing decisions, leading and supporting initiatives.
COMPETENCIES: Ability to collaborate and instill trust with stakeholders across the organization.
Aptitude to influence stakeholders, partners, and cross functional leaders both within Technology and across the organization.
Strong analytical and problem-solving skills.
Comfortable interacting directly with organizational executive leadership, with the ability to clearly articulate complex cyber security topics in a digestible and actionable way.
Strategic mindset with comprehensive planning and organizational skills.
Ability to effectively lead a team, build and sustain a high performing culture.
QUALIFICATIONS: Bachelor's degree in computer science, cybersecurity, information technology or a related field.
15+ years of experience in enterprise cybersecurity successfully executing on multiple programs in complex technical and organizational environments and possessing a deep understanding of cybersecurity concepts, threat landscape, risk management, and cloud technologies.
Minimum of 5+ years of people management and team leadership
Experience setting strategy and leading a team to execute on functional goals and initiatives.
CISSP, CISM, SSCP, GCIH or other industry standard certifications and credentials

EEO Statement

The Company is an equal opportunity employer. In accordance with applicable law, we prohibit discrimination against any applicant, employee, or other covered person based on any legally recognized basis, including, but not limited to: veteran status, uniformed servicemember status, race, color, caste, immigration status, religion, religious creed (including religious dress and grooming practices), sex, gender, gender expression, gender identity, marital status, sexual orientation, pregnancy (including childbirth, lactation or related medical conditions), age, national origin or ancestry, citizenship, physical or mental disability, genetic information (including testing and characteristics), protected leave status, domestic violence victim status, or any other consideration protected by federal, state or local law. We are committed to providing reasonable accommodations, if you need an accommodation to complete the application process, please email [email protected].