Chief Security Officer - Remote - USA
United States (Remote)
Grafana Labs
Grafana is the open source analytics & monitoring solution for every database.About the role:
We are looking for a Chief Information Security Officer to lead our Security team, reporting to the CTO. You will be responsible for developing and implementing security strategies across the Security Engineering, Assurance and Security Operations teams, as well as liaising with other teams delivering parts of our overall security posture. The ideal candidate will have a proven track record of building and/or implementing and improving the maturity of security programs in Cloud-based SaaS organizations and possess excellent leadership and communication skills. You must have significant engineering acumen as this is a highly technology-driven role.
Grafana and the LGTM stack continue to be highly successful open source projects and on-premise products, with over a million instances of our application running in the wild. Grafana is also the main frontend for Grafana Cloud where users can visualize their telemetry data as well as use our opinionated solutions for easier troubleshooting of both their infrastructure and their applications.
Responsibilities:
- Define and optimize the security strategy in concert with your leadership team, ICs and stakeholders across the business
- Work with customers and prospects to address security concerns. Supporting GTM where significant deals require input from the CISO to close.
- Regular 1:1s, coaching and mentoring to ensure your team members are motivated, happy and engaged. Providing continuous feedback to ensure that they can add value while maintaining high standards
- Collaborating with our Engineering Leaders and other organization stakeholders to help define and influence wider product strategy, roadmaps and designs
- Lead effective risk management and compliance programs
- Be actively engaged with significant incidents, including preparation, simulation, response, and affected customer notification and communications
- Maintain executive, board, and investor relations with regard to security
Requirements:
- You have previous experience as a CISO or CSO at a B2B, cloud-based SaaS company; IPO experience is a plus
- While the core focus of the role is on leadership, strategy, and executive communications, you should have enough technical skills/understanding of our stack to manage and challenge a highly technical team and help them arrive at strong decisions
- You approach security with a DevOps mindset. You prefer security by enablement, automation, and guardrails over gates and roadblocks
- You have familiarity with securing and operating on public Cloud (AWS, GCP, Azure) providers, with Kubernetes, and with securing combined open-source software (OSS) and SaaS products
- You will be comfortable working with engineering teams who have a strong sense of autonomy in their decision-making, be it technical or product-focused
- You possess domain knowledge of common information security, business continuity and privacy management frameworks, regulatory requirements and applicable standards such as ISO 27001, SOC 2, HIPAA, GDPR, PCI, FedRamp, SOX, etc. You have experience maintaining these standards while maintaining operational efficiency
- You are an excellent written and verbal communicator. You can articulate complex cybersecurity concepts to both technical and non-technical audiences. You are adept as translating security problems to business impact
Bonus Points:
- A technical background, ideally as a software engineer, before transitioning into security & leadership
- Experience with highly regulated industries such as healthcare, the US government and publicly listed companies
- Working knowledge of Grafana Labs OSS projects and products. Experience in using observability tooling to solve security problems.
- Experience working with OSS communities
- Experience securing large scale distributed systems
In the UK, the Base compensation range for this role is $223,600 - $267,000. Actual compensation may vary based on level, experience, and skillset as assessed in the interview process. Benefits include equity, bonus (if applicable) and other benefits listed here.
*Compensation ranges are country specific. If you are applying for this role from a different location than listed above, your recruiter will discuss your specific market’s defined pay range & benefits at the beginning of the process
About Grafana Labs: There are more than 20M users of Grafana, the open source visualization tool, around the globe, monitoring everything from beehives to climate change in the Alps. The instantly recognizable dashboards have been spotted everywhere from a NASA launch and Minecraft HQ to Wimbledon and the Tour de France. Grafana Labs also helps more than 3,000 companies -- including Bloomberg, JPMorgan Chase, and eBay -- manage their observability strategies with the Grafana LGTM Stack, which can be run fully managed with Grafana Cloud or self-managed with the Grafana Enterprise Stack, both featuring scalable metrics (Grafana Mimir), logs (Grafana Loki), and traces (Grafana Tempo). Benefits: For more information about the perks and benefits of working at Grafana, please check out our careers page. Equal Opportunity Employer: At Grafana Labs we’re building a company where a diverse mix of talented people want to come, stay, and do their best work. We know that our company runs on the hard work and the dedication of our passionate and creative employees. If you're excited about this role but your experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyways. We will recruit, train, compensate and promote regardless of race, religion, color, national origin, gender, disability, age, veteran status, and all the other fascinating characteristics that make us different and unique. We believe that equality and diversity builds a strong organization and we’re working hard to make sure that’s the foundation of our organization as we grow. For information about how your personal data is used once you’ve applied to a job, check out our privacy policy.Tags: Automation AWS Azure CISO Cloud Compliance DevOps FedRAMP GCP GDPR Grafana HIPAA ICS ISO 27001 Kubernetes Loki Monitoring Open Source Privacy Risk management SaaS Security strategy SOC SOC 2 SOX Strategy
Perks/benefits: Career development Equity Salary bonus
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs