RemoteLeaf Logo
Log in Sign up

CISO (Chief Information & Security Officer)

3 weeks, 3 days ago
India
Full-time
Lead
Penetration Tester
Cybersecurity
AWS Azure Cybersecurity DevSecOps Network Security Penetration Testing SIEM
Apply Now
Energy Exemplar

Energy Exemplar

Energy Exemplar is a leading provider of award-winning energy simulation software, including PLEXOS and Aurora, used for modeling electric, gas, and water energy markets worldwide. Their solutions offer in-depth insights for financial industry professi...

Internet Software & Services
251-1K
Founded 1999
View All Jobs 3

Description

  • Develop and implement a comprehensive information security strategy aligned with business objectives.
  • Lead and mentor the Information Security team to ensure effective execution and team success.
  • Oversee and improve the product security program and embed secure development practices across the SDLC.
  • Lead audits and certification efforts for SOC 2, ISO 27001, and similar regulatory requirements.
  • Direct incident detection, response, recovery, communications, and remediation prioritization.
  • Continuously assess cybersecurity risks and implement controls to mitigate them.
  • Ensure compliance with relevant security regulations and standards and represent the company to regulators when needed.
  • Promote security awareness and best practices across the organization.
  • Oversee the adoption and management of security technologies and tooling.
  • Manage third-party and vendor security risk, including security implications of partnerships.
  • Manage security budgets and allocate resources to support security initiatives.
  • Report security program status, needs, and cyber risk trade-offs to senior leadership and stakeholders.

Requirements

  • Bachelor’s degree in Computer Science, Engineering, or a related technical field.
  • 10+ years of experience in information security, including 5+ years in a leadership role.
  • Broad hands-on and senior leadership experience in security, engineering, or DevSecOps management.
  • Deep understanding of security technologies, including intrusion detection, content filtering, threat patterns, security architecture, and application architecture.
  • Strong knowledge of SDLC, application security policies, design, and documentation.
  • Experience with secure coding practices, threat modeling, identity and access management, and security incident response and recovery.
  • Deep knowledge of cloud security, network security, data protection, and security in software development environments.
  • Experience securing and operating across cloud platforms such as Azure and AWS.
  • Knowledge of security tools and monitoring technologies such as IDS and SIEM, with a desire to remain technically hands-on while operating strategically.
  • Deep knowledge of security and compliance frameworks and regulations such as SOC 2, NIST, ISO 270xx, and GDPR.
  • Experience with ethical hacking, computer forensics, information assurance, and intrusion detection/prevention methodologies.
  • Proficiency with static and dynamic analysis tools, vulnerability scanners, and penetration testing.
  • Hands-on experience with secure software development methodologies and DevSecOps practices.
  • Preferred certifications include CISSP, CISA, CISM, CEH, OSCP, or GSEC.
  • Experience building, growing, and maintaining high-performing security teams in the US and India is valued.

Benefits

  • Remote-first flexibility with the ability to work from home, the office, or on the move.
  • Support for work-life balance and autonomy in how and where work gets done.
  • Opportunity to work on a global team with strong ownership and innovation values.
  • Inclusive employer commitment with accommodations available during the recruitment process.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Veracyte

Manager, IT & Cybersecurity GRC

Veracyte 251-1K Pharmaceuticals

Veracyte is hiring a Manager, IT & Cybersecurity GRC to lead enterprise technology controls, IT SOX compliance, and cybersecurity risk governance in a highly regulated environment.

United States Full-time Lead Penetration Tester Program Manager
$145k-$155k
Cybersecurity
16 hours, 4 minutes ago
Cyderes

Senior PAM Consultant

Cyderes 251-1K Professional Services

Cyderes is seeking a Senior Privileged Access Management (PAM) Consultant to assess, design, implement, and support enterprise PAM solutions across identity security environments.

Canada Full-time Senior Penetration Tester
$81k-$104k
Active Directory Linux PowerShell REST API Secrets Management SIEM SQL
16 hours, 49 minutes ago
GuidePoint Security

Senior PAM Engineer - CyberArk (Remote in the US)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring a Senior CyberArk Engineer to deliver client-facing privileged access management solutions across diverse environments for a US-based remote consulting role.

United States Full-time Senior Penetration Tester Security Engineer
Active Directory HashiCorp Vault HIPAA PowerShell Python REST API SIEM
1 day, 16 hours ago
ecosio

Senior Pentester / Red Teamer

ecosio 51-250 Internet Software & Services

ecosio is seeking a Senior Pentester / Red Teamer to proactively assess and strengthen its cloud-native and hybrid security environment through offensive security engagements and automated testing.

United Kingdom Poland Portugal Austria Spain Croatia Germany Hungary Italy Full-time Senior Penetration Tester
AWS Bash CI/CD CrowdStrike Datadog Go Kubernetes Linux LLM Machine Learning Metasploit Penetration Testing Python Serverless
1 day, 17 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers