Chief Information Security Officer (CISO)
San Francisco, CA, USA
Applications have closed
Fluence
Fluence is a global market leader in energy storage products and services, and cloud-based software for renewables and storage assets.We are guided by our passion to transform the way we power our world. Achieving our goals requires creativity, diversity of ideas and backgrounds, and building trust to effect change and move with speed.
We are Leading Fluence currently has thousands of MW of energy storage projects operated or awarded worldwide in addition to the thousands of MW of projects managed by our trading platform—and we are growing every day.
We are Responsible Fluence is defined by its unwavering commitment to safety, quality, and integrity.
We are Agile We achieve our goals and meet our customer’s needs by cultivating curiosity, adaptability, and self-reflection in our teams.
We are Fun We value the diversity in thought and experience of our coworkers and customers. Through honest, forthcoming, and respectful communications we work to ensure that Fluence is an inclusive and welcoming environment for all.
The CISO at Fluence is responsible for developing and implementing a comprehensive cybersecurity strategy that protects the company's data, products, platforms, systems, and networks from cyber threats with a primary focus on risk reduction activities, protecting customer information, and ensuring the resiliency of core technical infrastructure. Demonstrating your vision, domain expertise, and strong leadership skills, you will also contribute to shape the next generation of products and services while upholding the continued trust our customers have placed with us to ensure their assets are secure. The CISO position will report to the Chief Information Officer, partner with the Enterprise Risk Management Group, and interface with the Product, Digital, and Information Technology Teams.
As the Chief Information Security Officer at Fluence, you will:
- Scale the security organization and drive the program to its next level of maturity. Achieve relevant industry certification such as ISO 27001, SOC2 etc.
- Prescribe and ensure implementation of global security standards, policies and processes for the company.
- Develop third party oversight program for hardware, software and services partners.
- Develop and implement a comprehensive information security strategy that aligns with the company's overall goals and objectives.
- Leading a large, multi-level security and compliance organization with a focus on career growth and retention
- Manage the day-to-day operations of the information security team and ensure that security policies and procedures are effectively implemented.
- Conduct regular risk assessments and penetration testing to identify vulnerabilities in the company's systems, products, and networks.
- Manage the Bug Bounty Program and external communication.
- Monitor and analyze security-related data to identify trends, patterns, and potential threats.
- Stay up to date on the latest cyber threats and incident trends and make recommendations to the executive team on how to mitigate them.
- Develop incident response plans and lead incident response efforts when a security incident occurs.
- Act as the primary point of contact for security-related matters and provide guidance to other departments on information security best practices.
- Interface with Fluence customers, auditors and prospects as required.
- Collaborate with other departments, including IT, legal, Product and compliance, to ensure that security measures are integrated into all aspects of the company's operations.
Skills we look for:
- 20+ years of management experience in a combination of risk management, information security and software engineering jobs.
- Bachelor's or graduate degree in information assurance, cybersecurity, information technology, or a related field.
- Demonstrated experience with Application Security, DevOps, or Cloud Security functions as a leader or in a people management role in a Publicly listed company.
- Proven experience working across teams and global regions to achieve company objectives and review goals.
- Strong understanding of security best practices and industry standards, such as OWASP, ISO 27001, NIST, and Data Protection Laws
- Experience in developing and implementing information security policies and procedures.
- Strong knowledge of security technologies, such as WAR, Identity management, intrusion detection, SIEM, and prevention and data loss prevention systems
- Excellent communication and leadership skills, with the ability to effectively communicate complex security concepts to non-technical stakeholders.
- Strong analytical and problem-solving skills.
ERG Opportunities #diversity Unlimited PTOMedical, Dental, Vision, Life and Pet InsuranceGenerous 401K MatchAnnual Bonus IncentiveLong Term Incentive Plan
Questions? Message your Global Talent Acquisition Partner Directly: Ami Vande Velde LinkedInFollow Fluence on LinkedIn: Fluence LinkedInFluence Career Page: Fluence Careers #Remote #energy
Fluence IS AN EQUAL OPPORTUNITY EMPLOYER and fully subscribes to the principles of Equal Employment Opportunity to ensure that all applicants and employees are considered for hire, promotion, and job status without regard to race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, marital or familial status.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Application security CISO Cloud Compliance DevOps Incident response Intrusion detection ISO 27001 NIST OWASP Pentesting Risk assessment Risk management Security strategy SIEM SOC 2 Strategy Vulnerabilities
Perks/benefits: 401(k) matching Health care Salary bonus Team events Unlimited paid time off
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open ISO 27001-related jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open CI/CD-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs