AFG Companies is at the forefront of cutting-edge technology in the automotive retail industry, developing new technologies that will transform the entire automotive retail industry business ecosystem.
We seek a highly skilled and experienced individual to serve as Chief Information Officer (CIO). This executive leader oversees all of AFG Companies' information security and our entire information technology (IT) strategy. The successful candidate has proven experience and expertise in information security, having served as a Chief Information Security Officer (CISO) or equivalent role. The successful candidate also has a working knowledge of modern Information Technology architectures, including hardware, software, and networking for local business systems, software engineering development platforms, and cloud services.
The CIO is responsible for developing and implementing information security policies, from risk management and policy development to compliance and incident response planning. The CIO is also responsible for developing and implementing the entire IT strategy, overseeing all IT vendors and staff, and managing budgets. This includes responsibility for all software, hardware, and infrastructure, including software and hardware upgrades and network optimization, as well as the overall management of data. As a successful candidate, you will be responsible for aligning AFG's Information Technology strategies with our business objectives, ensuring seamless integration of information systems. You will ensure optimal performance, security, and efficiency of our technology infrastructure while fostering a culture of continuous improvement and innovation.
As a successful candidate, you will be instrumental in shaping the organization's technological direction and driving growth through innovation and efficiency gains.
Duties and Responsibilities: Develop and implement strategic plans for the organization's technology roadmap, aligning with business goals and objectives. Collaborate with executive team members to identify ways IT can assist the company in achieving business and financial goals.
Establish robust security measures to protect the organization's data and information assets, ensuring compliance with relevant regulations and standards. Specific duties include the following:
Continuous Monitoring and Incident Response - Regularly monitor our security controls and processes to ensure they remain effective.
- Stay informed about security threats, vulnerabilities, and industry best practices.
- Maintain an incident response plan.
- Handle security incidents promptly and effectively.
Updates and Changes - Keep our policies, procedures, and controls up to date.
- Adapt to changes in technology, regulations, and business operations.
Risk Management - Continuously assess risks related to security, availability, processing integrity, confidentiality, and privacy.
- Adjust controls as needed based on risk assessments.
Employee Training - Regularly train employees on security awareness and compliance.
- Ensure they understand their role in maintaining compliance.
Annual Audits - Conduct annual SOC 2 audits to assess compliance.
- Engage a third-party auditor to evaluate our controls and provide an independent assessment.
- Ensure compliance with government regulations that apply to systems operations.
- Information Technology Innovation
Lead the exploration and implementation of emerging information technologies to drive innovation and maintain a competitive edge in the market.
- Infrastructure Management
Oversee the design, implementation, and maintenance of scalable and reliable IT infrastructure, including networks, servers, storage, and cloud services.
Oversee and manage day-to-day IT operations, including third-party help desk support, system administration, and network management, to ensure the smooth functioning of all technology systems.
Evaluate and manage relationships with technology vendors, ensuring the best possible value and service delivery.
- Budgeting and Cost Management
Develop and manage the information technology budget, optimizing resource allocation and expenditures for maximum efficiency and effectiveness.
- Collaboration and Communication
To ensure alignment and synergy, foster collaboration and communication between IT, Technology, and other business units.
Qualifications: - Bachelor's degree in Computer Science, Information Technology, Engineering, or related field. An advanced degree (MBA, MS) is preferred.
- Proven experience (8+ years) in senior leadership roles in IT and technology departments, with a track record of successfully driving technology initiatives and innovation.
- Proven experience in information security, having served in a Chief Information Security Officer (CISO) or equivalent role.
- Strong understanding of business processes and the ability to translate business requirements into technology solutions.
- Excellent leadership, communication, and interpersonal skills, with the ability to effectively manage and inspire teams.
- In-depth knowledge of information security best practices, infrastructure management, and software development methodologies.
- Extensive experience with Microsoft, AWS, and Azure technology stacks.
- Experience with budgeting, cost management, and vendor relationship management.
- Relevant certifications (e.g., CISSP, CCISO, ITIL, or similar) are a plus.