Field CISO

About The Position

Requirements

• Bachelor’s Degree in an IT-related field or equivalent work experience, required.
• 15 or more years of professional experience in cybersecurity or information security.
• Minimum of 3 years serving in a CISO, Deputy CISO, Field CISO, vCISO, or equivalent senior security leadership role with direct accountability for enterprise security outcomes.
• Demonstrated experience engaging directly with executive-level stakeholders (CISO, CIO, CFO, or equivalent).
• Experience supporting or leading client-facing security assessments, advisory engagements, or risk analysis initiatives.
• Advanced knowledge of the MITRE ATT&CK framework, including tactics, techniques, sub-techniques, and control coverage analysis.
• Strong understanding of modern enterprise security architectures, adversary tradecraft, and exposure management concepts.
• Ability to translate technical security findings into business, risk, and financial language appropriate for executive audiences.
• Experience structuring, scoping, and delivering defensible cybersecurity assessments or advisory engagements.
• Working knowledge of security technologies commonly evaluated through assessments, including EDR/XDR, SIEM/SOAR, IAM, PAM, IGA, vulnerability management, secrets management, Non-Human Identity (NHI) management, and GRC platforms.
• Ability to operate effectively in a revenue-influenced, matrixed environment, partnering with sales and delivery teams to support commercial outcomes.
• Strong verbal and written communication skills, with the ability to engage both technical practitioners and senior executives with credibility.
• Working knowledge of applicable regulatory and compliance frameworks, including NIST SP 800-53, NIST CSF, FISMA, CMMC, and Zero Trust guidance.

Nice To Haves

• Active or previously held security certifications (e.g., CISSP, CISM, or equivalent).
• Active or previously held security clearance supporting Federal or DoD client environments.
• Prior experience in a vendor, VAR, consulting, or advisory CISO role.

Responsibilities

• Partner with Account Executives to support identification, qualification, and closure of cybersecurity assessment engagements, including: Cyber Exposure & Defense Optimization (CEDO), Exposure Reality Check (ERC), Shadow AI & Non-Human Identity (NHI) Exposure Assessments.
• Participate in client discovery and qualification calls to identify appropriate assessment entry points (e.g., compliance requirements, renewal cycles, budget reviews, executive inquiries).
• Provide technical and executive-level credibility during pre-sales discussions to support commercial outcomes.
• Address advanced technical and architectural objections during the sales cycle as required.
• Support multi-stakeholder client conversations involving security, IT, compliance, finance, and executive leadership.
• Lead or co-lead assessment outbriefs to CISOs and executive stakeholders, presenting findings in risk, financial, and operational terms.
• Validate technical findings, including MITRE ATT&CK mappings, control coverage analysis, overlap assessments, and exposure identification.
• Ensure assessment outputs are accurate, defensible, and aligned with documented methodology.
• Translate technical findings into clear remediation priorities and recommended next steps.
• Ensure appropriate follow-on conversations (services, advisory, or OEM evaluations) are introduced during or immediately following the outbrief.
• Identify opportunities for post-assessment remediation and advisory services, including but not limited to: Security stack rationalization, Non-Human Identity (NHI) remediation, Secrets management and privileged access initiatives, AI governance and policy development, Zero Trust architecture and identity programs.
• Support scoping of project-based and recurring advisory engagements derived from assessment findings.
• Provide vendor-agnostic guidance connecting findings to appropriate solution categories, while supporting OEM solution pull-through where applicable.
• Serve as a senior advisory resource to clients following assessments, including participation in periodic security reviews or executive discussions as contracted.
• Represent the organization at industry events, roundtables, and sector-specific forums as requested.
• Maintain awareness of regulatory, threat, and compliance developments relevant to supported markets.
• Contribute subject matter expertise to internal teams and, as appropriate, external thought leadership initiatives.
• Perform all other duties, as assigned

Benefits

• Comprehensive Health, Dental, and Vision plans
• Premier 401k retirement plan with corporate matching and a 529 college saving plan
• Tax-advantaged Health Savings Account and Dependent Care Flexible Spending Account options
• Legal Resources
• Generous work/life balance opportunities supported by a PTO bank, paid holidays, leave programs and additional flex time off
• Employee referral program
• Employee recognition, gift and reward program
• Tuition reimbursement for continuing education
• Remote or hybrid work options
• Engaging company events such as team building activities, annual awards and kick-off parties
• Health and wellness-focused activities
• Relaxation Spaces
• In-office gourmet coffee, tea, fresh fruit and healthy snacks
• Corporate GREEN approach – tracking energy consumption for reduction and purchasing only environmentally friendly products for our offices