Chief of Information Security

ISO New England Inc.•Holyoke, MA

17h•$290,000 - $335,600•Hybrid

About The Position

ISO New England is the independent system operator responsible for ensuring the safe and reliable flow of electricity in our region and planning for the future of the electric grid. We are at the forefront of New England’s ongoing transition to clean energy. The Chief of Information Security (CIS) reports to the VP, Information and Cyber Security Services and provides enterprise leadership for ISO New England’s cybersecurity program, safeguarding information assets, technology infrastructure, and critical operational capabilities that support the reliable operation of the region’s bulk electric system and wholesale markets. This is a builder and transformer role responsible for setting the vision for cybersecurity, executing on that vision, and advancing a modern, risk-based program aligned with regulatory requirements and the evolving threat landscape impacting critical infrastructure. Reporting at the executive level, the CIS leads all aspects of cybersecurity—including risk management, threat detection and response, security architecture, identity and access management, cloud security, and security awareness—while serving as a visible spokesperson for cybersecurity across the organization. The role works across IT and business functions to build consensus, integrate best practices, and ensure technology decisions and execution reflect strong cybersecurity principles. The CIS also advises executive leadership and the Board of Directors on cyber risk, incidents, and strategic initiatives in clear business terms.

Requirements

Bachelor’s degree in cybersecurity, information systems, engineering, or business with technical concentration
Significant progressive experience in cybersecurity and information security experience in cybersecurity or relevant information systems roles, with demonstrated responsibility for securing complex computing environments
Experience supporting critical infrastructure or other highly regulated environments preferred
Strong understanding of enterprise cybersecurity and information technology best practices
Understanding of cybersecurity frameworks and regulatory standards
Demonstrated understanding of cybersecurity of cloud-based assets and resources
Detailed understanding of NIST cybersecurity model
Proven analytical and problem-solving skills
Demonstrated leadership skills and competency managing, diverse teams, building consensus, fostering an inclusive environment, empowering teams, and integrating cybersecurity best practices across functions
Ability to research and evaluate the state of cybersecurity to inform development of a multi-year security strategy
Provide technical directions to personnel
Demonstrated ability to communicate complex technical and risk‑based concepts effectively to executive leadership, the Board of Directors, and diverse stakeholder groups.
Willingness to obtain and hold a Department of Energy secret security clearance
Ability and willingness to respond to escalations

Nice To Haves

Master’s degree or MBA preferred
CISA, CISSP, or SANS certifications preferred but not required

Responsibilities

Set the enterprise cybersecurity vision, strategy, and execution roadmap aligned to ISO New England’s mission, risk tolerance, and regulatory obligations
Lead, manage, and develop the ISO Cyber Security organization as an inclusive leader, ensuring personnel have the direction, resources, and support needed to carry out the cybersecurity vision and empowering the team to do their best work
Oversee security operations, including threat monitoring, incident response, and operational resilience
Act as a spokesperson and advocate for cybersecurity across the organization, building consensus, integrating best practices, and ensuring IT execution reflects cybersecurity by design
Serve as principal cybersecurity advisor to executive leadership and the Board; partner with external agencies, regulators, and law enforcement as required