Chief Security Officer
Lausanne, Switzerland
Nexthink
Discover what your employees need, see what they experience, know how they feel. Deliver IT that delights.Company Description
Nexthink is the global leader in digital employee experience management. Our products allow enterprises to create highly productive digital workplaces for their employees by delivering optimal end-user experiences. Through a unique combination of real-time analytics, automation and employee feedback, Nexthink gives IT teams the insight they need to empower and even delight people at work.
Headquartered in Switzerland with US headquarters in Boston, Nexthink also has offices in France, UK, Germany, Spain and UAE. Our growing team of Nexthinkers is proud to be making the digital work lives of over sixteen million employees across 1,000 customers more productive.
Job Description
Nexthink is looking for a Chief Security Officer who is an expert in working with development teams to build secure SaaS products and is enthusiastic about securing an enterprise’s information and data. The candidate will guide and grow a global team of about ten security and compliance experts, owning all aspects of the security function. A successful candidate will have well-developed technical fundamentals in cloud security and be involved in securing software development and deployment processes.
Reporting to the CTO and working closely with Architecture, Development, SRE, Legal, Support, Product Management, and Sales management in guiding the security function for Nexthink.
Hybrid role to be based in Boston, Lausanne or Madrid, relocation package available
Key Responsibilities
- Collaborate closely with Product, IT, Legal, and other departments to align security initiatives with company objectives
- Act as a main point of contact for security matters with external vendors and partners
- Drive Nexthink's security vision, continually update strategy to meet this vision, and maintain a multi-year security roadmap
- Maintain consistent dialogue and advocate for security best practices while reporting performance efficiency to executive stakeholders
- Direct the implementation of next-gen security solutions and ensure compliance with changing laws and regulations
- Oversee the development of information security policies, standards, and procedures that are aligned with industry best practices
- Evaluate and adapt security measures to mitigate emerging threats and vulnerabilities, with a focus on protecting software integrity and data security for customers
- Guide and mentor a high-performing team, handling performance management, workload balancing, and succession planning
- Provide hands-on technical management in the design, implementation, and application of security measures
- Conduct regular audits and assessments to identify areas for improvement
- Facilitate interdepartmental training and development programs focused on security best practices
- Build and maintain relationships with government agencies and other stakeholders in the security compliance landscape, ensuring compliance with Federal, FedRAMP, and DoD regulations
- Develop and execute cloud security policies, including incident response protocols
- Manage operational and capital budgets for the cyber security department.
- Host security briefings for executive stakeholders
- Draft comprehensive yet accessible reports for both technical and non-technical audiences
- Quick adaptability to a fast-paced security landscape, staying abreast of new technologies and best practices
Qualifications
- Advanced degree in technology-related fields like CS or Engineering preferred
- 10+ years of progressive management experience within information security f in a SaaS environment
- Proficient technical background in designing, implementing, and managing security solutions
- Decisive and informed decision-making, coupled with visionary problem-solving abilities
- Exemplary people management skills, including performance monitoring, inspiration, and fostering a positive work environment
- Proven ability to comprehend and comply with security regulations and work with key stakeholders to ensure compliance
- Exhibited ability to secure cloud-based systems and applications, responding to security incidents in the cloud
- Ability to convey security-related concepts to diverse audiences, technical, legal and executive, orally and in writing in an easily understood and actionable manner
- Expert knowledge in compliance frameworks: ISO 27001, NIST, CSF, Fedramp, GDPR, and privacy-related laws preferred
- Formal certifications such as CompTIA Security+, CISSP, CISM, CISA, and/or CEH are preferred
- Knowledge of Agile software engineering best practices
- #LI-Hybrid
Additional Information
At Nexthink, we believe actions are stronger than words regarding diversity, inclusivity, and equity in the workplace. Nexthinkers are multinational and multilingual and come from all walks of life. We are committed to hiring a genuinely representative workforce that can create solutions and foster innovation for the modern digital employee experience. Join us today!
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Analytics Audits Automation CEH CISA CISM CISSP Cloud Compliance CompTIA DoD FedRAMP GDPR Incident response ISO 27001 Monitoring NIST Privacy SaaS Strategy Vulnerabilities
Perks/benefits: Equity Relocation support Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs