Chief Information Security Officer (CISO)

Remote (USA)

Hatch IT

hatch I.T. is a specialized technology recruiting firm supporting emerging tech startups that need to grow their engineering, data, and product teams.

View company page

hatch IT is partnering with Deepwatch to find a Chief Information Security Officer (CISO). See details below:

About the Role
We are seeking an experienced and dynamic Chief Information Security Officer (CISO) to lead our internal cybersecurity efforts and IT team as we continue to grow and expand our managed security services such as MDR. The ideal candidate will have a proven track record of strategic leadership, extensive knowledge of cybersecurity practices, and a deep understanding of the evolving threat landscape. As the CISO, you will play a pivotal role in shaping our security strategies, ensuring compliance, and fostering a culture of security excellence within the organization.

In addition to internal security objectives, the CISO will participate in select customer pursuits. In this capacity, the CISO will be engaged in large, complex customer pursuits and complement the sales and engineering teams.

About the Company
Deepwatch is the leader in managed security services, protecting organizations from ever-increasing cyber threats 24/7/365. Powered by Deepwatch’s cloud-based security operations platform, Deepwatch provides the industry’s fastest, most comprehensive detection and automated response to cyber threats together with tailored guidance from dedicated experts to mitigate risk and measurably improve security posture. Hundreds of organizations, from Fortune 100 to mid-sized enterprises, trust Deepwatch to protect their business. 

ITAR Compliance
“This position will have access to customer data and as such is subject to International Traffic in Arms Regulations (ITAR). Upon application, candidates will be asked to confirm that they are a U.S. Person as defined by the following:
-A citizen of the U.S.;
-A lawful permanent resident of the United States; 
-A person admitted to the United States as a refugee; or
-A person that has been granted asylum by the United States government.”

The intent of this requirement is not to verify employment eligibility overall, but to ensure compliance with import/export regulations. If you do not meet these requirements, we encourage you to apply for other open roles at Deepwatch. This information will be verified upon offer of employment.”

What kind of benefits does Deepwatch offer?
Deepwatch is excited to provide benefits designed to support team members and their families. Including:
-Medical, dental, vision, and disability insurance
-Flexible Time Off (FTO), 9 company holidays, sick leave and 8-Weeks Paid Parental Leave
-Unique professional development benefits, starting at $3,000 annually
-Wellness contests and monthly educational programs
-401(K) retirement program with employer match-

In this role, you’ll be responsible for:

  • Strategic Leadership: Develop and execute a comprehensive cybersecurity strategy aligned with the company's business goals and risk tolerance.
  • Client Collaboration: Act as a cybersecurity advisor to clients, providing insights into threats, vulnerabilities, and best practices to enhance their security posture.
  • Compliance: Ensure the company's adherence to relevant industry regulations and compliance frameworks, such as GDPR, HIPAA, NIST, PCI, SOC 2, ISO-27001 and others.
  • Security Architecture: Collaborate with the technology and engineering teams to design and implement secure IT and network infrastructure.
  • Incident Management: Lead internal incident response efforts, coordinating with cross-functional teams to minimize the impact of security incidents and ensure timely resolution.
  • Security Awareness: Drive a culture of security awareness and education among employees and clients, promoting cybersecurity best practices.
  • Vendor Management: Evaluate and manage third-party security vendors, tools, and technologies to enhance the overall security ecosystem.
  • Risk Assessment: Conduct regular risk assessments and vulnerability assessments to identify potential weaknesses and prioritize security improvements.

In this role, you’ll get to:

  • Act as a role model of Deepwatch’s Core Values
  • Identify, evaluate and report on legal and regulatory, IT, and cybersecurity risk to information assets, while supporting and advancing Deepwatch’s mission
  • Lead day to day internal security operations, incident response, threat intelligence, and architect our security tech stack
  • Lead Enterprise IT and Program Management functions to achieve strategic goals and deliver high-impact solutions. 
  • Provide reporting on the current status of the information security program to business leaders and the board of directors as part of a strategic enterprise risk management program
  • Lead the enhancement of product security throughout the SDLC, ensuring secure coding practices and providing vigilant oversight
  • Ensure that security programs are in compliance with relevant laws, regulations, and policies
  • Engage with external communities to maintain good perspective on information security practices at peer organizations and the threat environment
  • Monitor the external threat environment for emerging threats and advise relevant stakeholders on the appropriate courses of action
  • Work closely with the legal/compliance team to ensure that all practices and policies related to IT security are free from bias and discrimination, appropriate understanding of regulatory requirements, and appropriate risk mitigation strategies while following global laws, standards and regulations
  • Ensure high levels of employee engagement, operational excellence, commitment to continuous learning and appropriate succession planning
  • Embody the Deepwatch Leadership Attributes of ownership, delivering results, hiring and developing the best talent in the industry, having the ability to disagree and then commit, while earning trust
  • Work with customers to help them understand their technical requirements and act in an advisory capacity to help solve technical challenges
  • Partner with sales to act as a trusted advisor to customers and partners
  • Drive thought leadership opportunities with marketing 
  • Champion Deepwatch solutions as one of our thought leading technical experts with customers, at industry conferences, and with industry press and analysts

To be successful in this role you’ll need to:

  • Have a Bachelor’s degree or work equivalency with a technical concentration (e.g., Computer Science). An Information Technology Master’s degree is preferred
  • Demonstrate deep knowledge of Managed Detection and Response (MDR) services and their application in safeguarding organizations 
  • Have information security technology leadership experience across a broad range of technical environments and business models with a track record of delivering results in a complex and diverse environment
  • Have experience and willingness to lead internal IT and program management functions
  • Establish credibility within the organization, as well as with customers and partners. Must have the managerial skills to work effectively across all functions and levels of the organization
  • Hold a CISO, Deputy CISO or VP or executive level equivalent title
  • Exhibit excellent communication skills with the ability to convey complex technical concepts to both technical and non-technical stakeholders
  • Demonstrate skills in complex decision-making, problem-solving and planning, analytical thinking and innovation skills
  • Influence stakeholders with strong acumen for relationship building and people management skills
  • Perform technical architecture assessments to identify gaps or potential threat vectors
  • Engage with public audiences including the ability to act as an industry thought leader with customers, prospects and analysts
  • Have experience with cyber insurance policy selection and implementation
  • Understand business processes including role design and checks and balances in IT Operations to make security a way of doing business
  • Have experience delivering product security in one or more public clouds (AZURE, AWS, GCP)
Don't think you're 100% qualified for this position? Studies have shown that women and people of color are less likely to apply to jobs unless they meet every single qualification. At hatch I.T., we're dedicated to helping companies build diverse, inclusive and authentic workplaces, so if your experience doesn't perfectly align with every qualification in the job description, we encourage you to apply anyway. You may just be the right candidate for this or other roles.

If you are interested in learning more about this company or any Startups/Small Businesses in the area, please contact us and check us out here!! 
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: AWS Azure Cloud Compliance Computer Science GCP GDPR HIPAA Incident response NIST Product security Risk assessment Risk management SDLC SOC SOC 2 Strategy Threat intelligence Vendor management Vulnerabilities

Perks/benefits: 401(k) matching Career development Conferences Flex vacation Health care Insurance Medical leave Parental leave

Regions: Remote/Anywhere North America
Country: United States
Job stats:  34  4  0
Category: Leadership Jobs

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.