Deputy CISO

Seattle, WA

ExtraHop

ExtraHop provides cloud-native cybersecurity solutions to help enterprises detect and respond to advanced threats—before they compromise your business.

View company page

ExtraHop is on a mission to protect and propagate trust by revealing the cybertruth: the truth about the attackers already inside an organization’s network, the truth about what they’re doing, and how to stop them at top speed. We partner with every customer, every day, to reveal it. Are you ready to join us?

The Deputy Chief Information Security Officer is responsible for assisting the Chief Risk,
Security, and Information Security Officer (CRSISO) in overseeing the day-to-day operations of
the Information Security Office as well as collaboratively supporting the managers of GRC and
Physical/Personnel Security teams.
The Deputy CISO reports to the Chief Risk, Security, and Information Security Officer (CRSISO)
and is responsible for day-to-day operations to support and augment the CRSISO’s overall
responsibilities. The Deputy CISO is the functional backup to the Chief Risk, Security, and
Information Security Officer, and will act in that capacity in the absence of the CRSISO. This
position requires strong written and oral communication skills, as well as the ability to
communicate detailed technical information in a manner comprehensible by individuals at
varying degrees of experience and skill. The role requires the ability to speak confidently in
front of large groups and with senior management, vendors and service providers. The Deputy
CISO also contributes to the IT security strategy and roadmap, ExtraHop Product security
strategy and roadmap, and will be required to demonstrate strong program and project
management skills.
Responsibilities require leadership, communication, and project management experience, as
well as expertise in assessing and improving information security processes.
Duties and Responsibilities
● Collaborate with the GRC team, the Federal Engagement Team, and R&D to develop
the FedRAMP Program
● Collaborating with the CRSISO to develop and implement the organization's
cybersecurity strategy and program.
● Collaborating with the GRC team to develop and maintain corporate level enterprise IT
security policies.
● Collaborating with R&D, the Director of Product Security, to ensure implementation of all
Product Security controls in both the SaaS product and in the appliances.
● Managing and overseeing cybersecurity operations, such as threat intelligence, incident
response, vulnerability remediation, and enterprise IT security.
● Evaluating and implementing cybersecurity tools and technologies to support the
organization's security program.
● Collaborating with the GRC Team, Internal Audit/Vulnerability Manager, to address,
assess, evaluate, prioritize, and mitigate identified vulnerabilities in both the Enterprise
IT and Product environments.
● Assessing cybersecurity risks and collaborating with the GRC manager to ensure the
organization's compliance with applicable regulations and standards.

● Working with the CRSISO to lead and mentor a team of cybersecurity professionals,
including hiring, training, and mentoring.
● Acting as the CRSISO's representative in their absence and making decisions on behalf
of the CRSISO.
● Oversee the creation and maintenance of appropriate controls in the following areas:
o Network and communications
o Systems Knowledge
o Threat and vulnerability management
o Identity and access management
o Endpoint protection
o Application and data security for enterprise IT applications
o Network protection
o Cloud security

Qualifications and Experience
● 15 years experience in information technology, with 5+ years experience in information
security
● 5+ years experience in Director, VP, or CISO level leadership
● Preferred certifications: CISSP, CISM, EC-CISO
● Bachelors in CS or IS required;
● Federal certification skills: Experience with and a deep understanding of the FedRAMP
process, the DODIN-APL process, and NIAP process.
● Technical skills: Strong technical skills are required for this role, including knowledge of
security technologies, network security, cloud security, and application security.
Experience with risk assessment and incident response is also important.
● Leadership skills: As a Deputy CISO, you will be responsible for leading and managing a
team of security professionals. Strong leadership skills are required, including the ability
to communicate effectively, build relationships, and inspire others to achieve results.
● Business acumen: Understanding the organization's business and its objectives is
important for a Deputy CISO. This includes knowledge of the organization & products,
services, customers, and partners, as well as its regulatory and compliance
requirements.
● Analytical skills: A Deputy CISO must be able to analyze complex security risks and
threats, as well as security incidents and breaches, and develop strategies to mitigate
the risks and respond to these incidents.
● Communication skills: Excellent communication skills are required for this role, including
the ability to communicate technical concepts to non-technical stakeholders, present to
senior management, and influence key decision-makers.

 

$194,000 to $264,095 + Bonus and Benefits

Applicants must be authorized to work for ANY employer in the U.S.  We are unable to sponsor or assume sponsorship of an employment Visa at this time.

 

ABOUT EXTRAHOP 

ExtraHop is the cybersecurity partner enterprises trust to reveal the unknown and unmask the attack. We’re on a mission to protect and propagate trust by revealing the cybertruth, and we partner with every customer, every day, to uncover it. Our Reveal(x) 360 platform is the only network detection and response solution delivering the 360-degree visibility needed to see everything on the network. When organizations have full network transparency with ExtraHop, they can see more, know more, and stop more cyberattacks.

ExtraHop is recognized by leading organizations for both its innovation in the market and its commitment to building a world-class team. We’ve been recognized as a “Customer’s Choice” by Gartner Peer Insights™ Voice of the Customer, and as a Leader in the Forrester Wave®: Network Analysis and Visibility, Q2 2023. ExtraHop has won AI Breakthrough Awards four times (2018-2020, 2023) and our Channel Partner program has received a 5-star rating from CRN for our 2023 Partner Program Guide. Our flagship product, Reveal(x), has received numerous accolades, including a 2022 Edison Award for Cybersecurity

Benefits/perks listed below may vary depending on the nature of your employment with ExtraHop and the country where you work.

  • Health, dental, and vision benefits
  • Honor System PTO and 9 Holidays (US only) + 3 Days of Paid Volunteer Time 
  • Non-Commissioned positions are eligible to participate in annual discretionary bonus plan
  • FSA and Dependent Care Accounts + EAP where applicable
  • Educational Reimbursement 
  • 401k with employer match or Pension where applicable
  • Pet Insurance (US only)
  • Parental Leave (US Only)
  • Hybrid and Remote Work Model

*Candidates should note that the Company may modify reporting relationships, job titles and compensation, including commissions and benefits, from time to time at its sole discretion, as it deems necessary, with or without prior notice.

We are intentional about our culture, diversity, and inclusion, and we welcome everyone to come ready to participate in contributing to this truly unique environment. At ExtraHop, we believe that the best products, services, and companies are built by strong teams that include a diversity of backgrounds, perspectives, ideas, and experiences. We are committed to supporting and enabling growth and opportunity for every employee at every level. This is the foundation of our success. 

We are equally committed to equal employment opportunity, and it is foundational to how we recruit and hire our talented team. Employment is determined based upon capabilities and qualifications without discrimination on the basis of race, creed, color, religion, sex, gender identification and expression, marital status, military status or status as an honorably discharge/veteran, pregnancy (including potential pregnancy, pregnancy-related conditions, and childbearing), sexual orientation, age (40 and over), national origin, ancestry, citizenship or immigration status, physical, mental, or sensory disability , HIV/AIDS or hepatitis C status, genetic information, status as an actual or perceived victim of domestic violence, sexual assault, or stalking, or any other protected class as established by law.

Our people are our most important competitive advantage, leading the charge against nation-states, cyber criminals, and insider threats.

Ready to join us?   #Extrahop #Security #NDR #informationsecurity #cybersecurity #cloudsecurity #infosec #LI-Remote 

Apply now Apply later
  • Share this job via
  • or

Tags: Application security C CISM CISO CISSP Cloud Compliance FedRAMP IAM Incident response Network security Product security R&D Risk assessment SaaS Security strategy Strategy Threat intelligence Vulnerabilities Vulnerability management

Perks/benefits: 401(k) matching Competitive pay Health care Insurance Parental leave Salary bonus

Regions: Remote/Anywhere North America
Country: United States
Job stats:  26  5  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.