Chief Information Security Officer

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Security, Engineering, or related field (Master’s preferred).
• Relevant security certifications: CISSP, CISM, CISA, CRISC, CCISO, or equivalent.
• 12+ years of progressive experience in information security, risk management, or IT leadership.
• 5+ years in a senior leadership role with responsibility for enterprise-wide security.
• Experience in the service & technology sector, preferably with SaaS, cloud, or managed services environments.
• Proven track record of managing security for large-scale global organizations.

Nice To Haves

• Strong executive presence and ability to influence at the board level.
• Deep expertise in cybersecurity frameworks (NIST, CIS, ISO) and regulatory compliance.
• Business acumen to balance security with customer experience and operational efficiency.
• Crisis management and decision-making under pressure.
• Exceptional communication and stakeholder management skills.
• Ability to foster trust with clients, regulators, and partners through security leadership.

Responsibilities

• Develop, implement, and manage the enterprise information security strategy, policies, and programs.
• Serve as the primary advisor to executive leadership and the board on cybersecurity risks, threats, and mitigation strategies.
• Align security initiatives with business objectives, customer trust expectations, and regulatory requirements.
• Establish and oversee information security governance, risk management, and compliance frameworks.
• Ensure compliance with industry standards such as ISO 27001, SOC 2, GDPR, HIPAA, PCI-DSS, and other regional regulations.
• Lead vendor risk management processes and ensure third-party security compliance.
• Direct the monitoring, detection, and response to cybersecurity incidents, ensuring minimal business impact.
• Oversee security operations centers (SOCs), vulnerability management, and incident response teams.
• Implement business continuity and disaster recovery planning related to cybersecurity.
• Collaborate with product and engineering teams to embed security by design into technology solutions and services.
• Build and maintain customer trust through transparent security practices, certifications, and audits.
• Lead security assurance programs for clients, including responding to RFPs, due diligence, and security questionnaires.
• Build, lead, and mentor a high-performing global security team.
• Drive a company-wide security culture through training, awareness, and proactive communication.
• Partner with HR, Legal, and Compliance to manage insider risk and ethics in security practices.
• Evaluate, implement, and manage advanced security tools and technologies (e.g., SIEM, SOAR, IAM, EDR, Cloud Security).
• Stay ahead of emerging cybersecurity threats, trends, and regulations.
• Foster innovation by enabling secure adoption of new technologies (e.g., AI/ML, cloud, IoT).

Benefits

• Unlimited PTO
• Medical, dental, and vision coverage
• Retirement planning
• Discounts and perks for tickets, travel, merchandise and more
• Corporate volunteering hours and matching contributions to charities