Chief Information Security Officer (CISO) (The Security Sentinel)
apply.workable.com - ATS, San Francisco, CA, United States
Are you a seasoned cybersecurity expert with the strategic vision to protect an organization’s most critical assets? Do you have the leadership skills to build and lead a world-class security team while navigating the complex landscape of modern threats? If you’re a leader who thrives on safeguarding data, systems, and people, then our client has an exciting role for you. We’re searching for a Chief Information Security Officer (CISO) (aka The Security Sentinel) to take charge of our information security strategy and ensure our defenses are second to none.
Imagine leading the security efforts of a dynamic company where your expertise will shape the future of information protection. As the CISO at our client, you’ll be responsible for designing, implementing, and managing a comprehensive security program that covers everything from network security to incident response. This role isn’t just about managing risks—it’s about leading a team to build a security culture that is proactive, resilient, and aligned with our business goals.
Key Responsibilities:
- Information Security Strategy: Develop and implement a comprehensive information security strategy that aligns with our company’s goals and regulatory requirements. You’ll create a roadmap that ensures our systems, data, and assets are secure from current and emerging threats.
- Team Leadership and Development: Lead, mentor, and develop a team of security professionals, fostering a culture of vigilance, innovation, and continuous improvement. You’ll ensure that your team has the skills, tools, and support they need to defend against cyber threats effectively.
- Risk Management and Compliance: Identify, assess, and manage risks to the organization’s information assets. You’ll ensure compliance with relevant regulations (such as GDPR, HIPAA, PCI-DSS) and industry standards, implementing best practices to protect sensitive information.
- Incident Response and Management: Lead the development and execution of a robust incident response plan, ensuring that the company can quickly and effectively respond to security breaches. You’ll oversee all aspects of incident management, from detection and containment to recovery and post-incident analysis.
- Security Architecture and Operations: Oversee the design and implementation of security architectures and controls that protect the organization’s IT infrastructure, applications, and data. You’ll ensure that security measures are integrated into every aspect of our operations, from network security to endpoint protection.
- Security Awareness and Training: Develop and lead a comprehensive security awareness program that educates employees on security best practices and their role in protecting the organization. You’ll foster a culture of security-mindedness across all departments.
- Collaboration and Communication: Work closely with other C-level executives, IT teams, and business units to align security initiatives with business objectives. You’ll communicate security risks, strategies, and requirements to stakeholders at all levels of the organization.
Required Skills:
- Cybersecurity Mastery: Extensive experience in information security, including deep knowledge of security frameworks, threat landscapes, and best practices. You’re proficient in areas such as network security, encryption, identity management, and incident response.
- Leadership Excellence: Proven experience leading and mentoring security teams, with a track record of building strong security cultures. You’re the kind of leader who can inspire a team to stay vigilant and proactive.
- Strategic Vision: Ability to develop and implement a security strategy that aligns with business goals and anticipates future challenges. You’re always thinking ahead, ensuring that our defenses are robust and adaptable.
- Compliance and Risk Management: Strong understanding of regulatory requirements and industry standards related to information security. You’re skilled in identifying and mitigating risks while ensuring compliance with laws and regulations.
- Incident Response Expertise: Experience leading incident response efforts, including the development of incident response plans, threat detection, and post-incident recovery. You’re calm under pressure and effective in crisis situations.
- Communication Skills: Exceptional ability to communicate complex security concepts to both technical and non-technical stakeholders. You make the intricate understandable, ensuring that everyone is on the same page.
- Humor: A great sense of humor, because we believe in fostering a work environment that is both productive and enjoyable. If you can keep the team calm and focused during security challenges, you’re our kind of leader.
Educational Requirements:
- Bachelor’s or Master’s degree in Cybersecurity, Information Technology, or a related field. Equivalent experience with a proven track record in information security leadership is also valued.
- Certifications such as CISSP, CISM, CISA, or similar are highly desirable. If you’ve contributed to security research, open-source projects, or published papers, that’s a bonus.
Experience Requirements:
- 10+ years of experience in information security, with at least 5 years in a leadership role such as CISO, Director of Security, or similar. You’ve successfully led security teams and managed comprehensive security programs.
- Proven experience in managing security for large-scale IT environments, particularly in industries such as finance, healthcare, or technology.
- Experience with cloud security, threat intelligence, and security operations centers (SOCs) is highly desirable.
Benefits:
- Health and Wellness: Comprehensive medical, dental, and vision insurance plans with low co-pays and premiums.
- Paid Time Off: Competitive vacation, sick leave, and 20 paid holidays per year.
- Work-Life Balance: Flexible work schedules and telecommuting options.
- Professional Development: Opportunities for training, certification reimbursement, and career advancement programs.
- Wellness Programs: Access to wellness programs, including gym memberships, health screenings, and mental health resources.
- Life and Disability Insurance: Life insurance and short-term/long-term disability coverage.
- Employee Assistance Program (EAP): Confidential counseling and support services for personal and professional challenges.
- Tuition Reimbursement: Financial assistance for continuing education and professional development.
- Community Engagement: Opportunities to participate in community service and volunteer activities.
- Recognition Programs: Employee recognition programs to celebrate achievements and milestones.