Immediate - Remote - Chief Information Security Officer - (CISO) with 15+years certification is must - Preferred East Coast
Posted 6 days ago by Spruce Technology Inc.
Negotiable
Undetermined
Remote
Remote
Summary: The Chief Information Security Officer (CISO) role is focused on establishing and maintaining the organization's cybersecurity vision, strategy, and program. This position requires a seasoned professional with over 15 years of experience and relevant certifications to lead security governance, risk management, compliance, and incident response. The role is fully remote and involves overseeing the organization's cybersecurity operations and teams. Immediate availability is required for this position, which is part of a larger onboarding effort for multiple roles.
Key Responsibilities:
- Develop and implement the organization’s information security strategy and roadmap.
- Align cybersecurity initiatives with business objectives and regulatory requirements.
- Advise executive leadership and the board on cyber risks and mitigation strategies.
- Build and lead high-performing cybersecurity teams.
- Establish security policies, standards, and procedures.
- Ensure compliance with industry regulations and standards such as ISO 27001, NIST, GDPR, PCI-DSS, and SOC 2.
- Lead internal and external security audits.
- Identify, assess, and mitigate cybersecurity risks.
- Conduct enterprise risk assessments and vulnerability management programs.
- Develop business continuity and disaster recovery strategies.
- Oversee Security Operations Center (SOC), SIEM, endpoint security, and threat intelligence.
- Ensure proactive monitoring, detection, and response to cyber threats.
- Manage incident response and forensic investigations.
- Secure cloud platforms, networks, applications, and enterprise infrastructure.
- Implement Zero Trust and identity access management strategies.
- Evaluate security architecture and emerging technologies.
- Assess third-party security risks and ensure vendor compliance with security requirements.
- Promote cybersecurity awareness and training programs across the organization.
Key Skills:
- Bachelor’s degree in Computer Science, Information Security, Cybersecurity, Information Technology, or a related field.
- Master’s degree preferred (MBA or Cybersecurity specialization is an advantage).
- 15–20+ years of IT/security experience.
- 10–15+ years in senior cybersecurity leadership roles.
- Certifications such as CISSP, CISM, CRISC, CCSP, ISO/IEC 27001 Lead Implementer, ISO/IEC 27001 Lead Auditor, CEH, GSLC, AWS Certified Security – Specialty, and Microsoft Certified: Cybersecurity Architect Expert.
Salary (Rate): undetermined
City: undetermined
Country: undetermined
Working Arrangements: remote
IR35 Status: undetermined
Seniority Level: undetermined
Industry: IT
Dear All,
Good day.
We have immediate join open for Chief Information Security officer with the below details as follows:
Interested do please me your update resume to contact details : shahATsprucetechDOTcom and (Nine Seven Three) (Five Two Eight) (Five Seven Seven Eight)
Title: Chief Information Security Officer - (CISO) with 15 + years certification is must
Remote - 100%
Duration:12 months
Immediate joiner
Client - State of client
Open - 6 positions onboarding
Job Description:
The Chief Information Security Officer (CISO) is responsible for establishing and maintaining the organization’s enterprise vision, strategy, and cybersecurity program to ensure information assets, technologies, and data are adequately protected. The CISO leads security governance, risk management, compliance, incident response, and cybersecurity operations across the organization.
Key Responsibilities
Cybersecurity Strategy & Leadership
Develop and implement the organization’s information security strategy and roadmap.
Align cybersecurity initiatives with business objectives and regulatory requirements.
Advise executive leadership and the board on cyber risks and mitigation strategies.
Build and lead high-performing cybersecurity teams.
Security Governance & Compliance
Establish security policies, standards, and procedures.
Ensure compliance with industry regulations and standards such as:
ISO 27001
NIST
GDPR
PCI-DSS
SOC 2
Lead internal and external security audits.
Risk Management
Identify, assess, and mitigate cybersecurity risks.
Conduct enterprise risk assessments and vulnerability management programs.
Develop business continuity and disaster recovery strategies.
Security Operations
Oversee Security Operations Center (SOC), SIEM, endpoint security, and threat intelligence.
Ensure proactive monitoring, detection, and response to cyber threats.
Manage incident response and forensic investigations.
Cloud & Infrastructure Security
Secure cloud platforms, networks, applications, and enterprise infrastructure.
Implement Zero Trust and identity access management strategies.
Evaluate security architecture and emerging technologies.
Vendor & Third-Party Security
Assess third-party security risks.
Ensure vendors comply with organizational security requirements.
Security Awareness
Promote cybersecurity awareness and training programs across the organization.
Required Qualifications
Bachelor’s degree in:
Computer Science
Information Security
Cybersecurity
Information Technology
Related field
Master’s degree preferred (MBA or Cybersecurity specialization is an advantage).
15–20+ years of IT/security experience.
10–15+ years in senior cybersecurity leadership roles.
Required Certifications
Preferred / Highly Valued Certifications
Certified Information Systems Security Professional (CISSP)
Certified Information Security Manager (CISM)
Certified in Risk and Information Systems Control (CRISC)
Certified Cloud Security Professional (CCSP)
ISO/IEC 27001 Lead Implementer
ISO/IEC 27001 Lead Auditor
Certified Ethical Hacker (CEH)
GIAC Security Leadership Certification (GSLC)
AWS Certified Security – Specialty
Microsoft Certified: Cybersecurity Architect Expert