Chief Information Security Officer (CISO)

In this role, you’ll be responsible for:

• Strategic Leadership: Develop and execute a comprehensive cybersecurity strategy aligned with the company's business goals and risk tolerance.
• Client Collaboration: Act as a cybersecurity advisor to clients, providing insights into threats, vulnerabilities, and best practices to enhance their security posture.
• Compliance: Ensure the company's adherence to relevant industry regulations and compliance frameworks, such as GDPR, HIPAA, NIST, PCI, SOC 2, ISO-27001 and others.
• Security Architecture: Collaborate with the technology and engineering teams to design and implement secure IT and network infrastructure.
• Incident Management: Lead internal incident response efforts, coordinating with cross-functional teams to minimize the impact of security incidents and ensure timely resolution.
• Security Awareness: Drive a culture of security awareness and education among employees and clients, promoting cybersecurity best practices.
• Vendor Management: Evaluate and manage third-party security vendors, tools, and technologies to enhance the overall security ecosystem.
• Risk Assessment: Conduct regular risk assessments and vulnerability assessments to identify potential weaknesses and prioritize security improvements.

In this role, you’ll get to:

• Act as a role model of Deepwatch’s Core Values
• Identify, evaluate and report on legal and regulatory, IT, and cybersecurity risk to information assets, while supporting and advancing Deepwatch’s mission
• Lead day to day internal security operations, incident response, threat intelligence, and architect our security tech stack
• Lead Enterprise IT and Program Management functions to achieve strategic goals and deliver high-impact solutions. 
• Provide reporting on the current status of the information security program to business leaders and the board of directors as part of a strategic enterprise risk management program
• Lead the enhancement of product security throughout the SDLC, ensuring secure coding practices and providing vigilant oversight
• Ensure that security programs are in compliance with relevant laws, regulations, and policies
• Engage with external communities to maintain good perspective on information security practices at peer organizations and the threat environment
• Monitor the external threat environment for emerging threats and advise relevant stakeholders on the appropriate courses of action
• Work closely with the legal/compliance team to ensure that all practices and policies related to IT security are free from bias and discrimination, appropriate understanding of regulatory requirements, and appropriate risk mitigation strategies while following global laws, standards and regulations
• Ensure high levels of employee engagement, operational excellence, commitment to continuous learning and appropriate succession planning
• Embody the Deepwatch Leadership Attributes of ownership, delivering results, hiring and developing the best talent in the industry, having the ability to disagree and then commit, while earning trust
• Work with customers to help them understand their technical requirements and act in an advisory capacity to help solve technical challenges
• Partner with sales to act as a trusted advisor to customers and partners
• Drive thought leadership opportunities with marketing 
• Champion Deepwatch solutions as one of our thought leading technical experts with customers, at industry conferences, and with industry press and analysts

To be successful in this role you’ll need to:

• Have a Bachelor’s degree or work equivalency with a technical concentration (e.g., Computer Science). An Information Technology Master’s degree is preferred
• Demonstrate deep knowledge of Managed Detection and Response (MDR) services and their application in safeguarding organizations 
• Have information security technology leadership experience across a broad range of technical environments and business models with a track record of delivering results in a complex and diverse environment
• Have experience and willingness to lead internal IT and program management functions
• Establish credibility within the organization, as well as with customers and partners. Must have the managerial skills to work effectively across all functions and levels of the organization
• Hold a CISO, Deputy CISO or VP or executive level equivalent title
• Exhibit excellent communication skills with the ability to convey complex technical concepts to both technical and non-technical stakeholders
• Demonstrate skills in complex decision-making, problem-solving and planning, analytical thinking and innovation skills
• Influence stakeholders with strong acumen for relationship building and people management skills
• Perform technical architecture assessments to identify gaps or potential threat vectors
• Engage with public audiences including the ability to act as an industry thought leader with customers, prospects and analysts
• Have experience with cyber insurance policy selection and implementation
• Understand business processes including role design and checks and balances in IT Operations to make security a way of doing business
• Have experience delivering product security in one or more public clouds (AZURE, AWS, GCP)