Chief security officer job description

Instrumental works with the world's most admired electronics brands like Bose, Cisco, SolarEdge, and others to significantly reduce the 20 cents of every dollar spent in manufacturing that is wasted. Our mission is to cut that waste in half and we're building a fundamentally new product and technology to do so.

The company is focused on growing our cohort of strategic accounts who are in place and happy and rapidly driving expansion in those accounts through strategy, systems building, people organization, and development. Some of our customers have NRRs in excess of 2-3X - we're looking for a leader who is excited and able to capitalize on the massive opportunity we've created with our technology.

Our C-suite is a lead-from-the-front team that fearlessly tackles gnarly zero-to-one challenges throughout the organization. Oftentimes these are highly cross-functional, or just plain tricky, and we're looking for a business and operational-minded C-level executive who loves driving solutions for these types of problems to complement our existing expertise. This is a C-level position about business building - not purely business scaling: we're looking for an executive who proactively seeks out and identifies problems or risks, uses a deep understanding of the business to create a proportionate response, leverages the right cross-functional teams, and urgently drives to an enduring solution. This individual is a strategist as well as a tactician: they will help to inform the company strategy, and then be able to run with it internally - building out complementary structures, programs, and metrics - potentially rolling up their own sleeves to get things done with urgency.

Given the importance of this role to the overall company objectives and the critical relationships to our executive team and the C-Suite, this is an in-person role based out of our Palo Alto Headquarters, reporting directly to the CEO. The specific role title and exact team scope will be dependent on the candidate and will be collaborated on during the interview process.

What You'll Be Doing:First, you'll dive deeply into our business to understand how our industry works and the value our technology provides for our customers. You'll understand our business model, market, segmentation, customers, and operations and seek out risks and opportunities. You'll be an expert in the business of Instrumental.Then you'll use that knowledge to execute strategically - we aren't seeking a leader who “brings a playbook”, we're looking for someone who will make one based on their deep dive and business acumen: informing the business strategy and building the organizational systems needed to execute on that strategy. This may involve rethinking the definitions of functional roles, reconsidering the business model, redesigning the organization, or any number of other things.Develop and implement structures, programs, and metrics to drive core company goals across the business. Figure out how to turn squishy “feelings” into metrics that predict churn, growth opportunities, and high NRR.Leading and coaching a global team. You'll translate the company strategy - right now our focus is on expansion in strategic accounts - into actionable plans and initiatives, developing systems, metrics, and people as you go. While the exact teams to be included in your scope will be determined as part of the interview process based on your interests and prior experience, you'll work collaboratively with your team, the executive team, cross-functional teams, and leadership to solve challenges as they arrive and proactively drive value for customers. You'll drive scale with great systems, not only people - and lead from the front. You'll bring a strong culture of communication and transparency to a part of the business where it can be tempting to hide problems.You'll establish a high standard of execution in leading by example, in partnership with the founders, motivating others through their own self-directed urgency, fearless zero-to-one problem solving, and energy. You'll keep a finger on the skip-level pulse and hold a high bar for their team: moving quickly to make changes, hiring exceptional people, and creating the kinds of development opportunities for your team that keeps amazing people growing at Instrumental.

We're Looking for Someone Who:Does hard things because they are hard and meaningful.Loves the building stage of startups: rolling up their sleeves, rolling with the punches, and rolling out improvements - all with startup urgency. You have seen what we're building towards in a larger organization, have a win under your belt, and are excited to be part of laying the bricks in the foundation for Instrumental as a partner in our C-Suite.Is a strategist and a tactician. You build your action plan from strategic first principles, and you know how to inspire a team and motivate them to take on challenging goals, while also being willing to dive in yourself to help the team achieve them.Has strong analytics skills and an unquenchable thirst to know what is happening and what will happen, with demonstrated experience identifying KPIs, creating metrics, and building systems.10+ years of leadership experience, including prior experience at the VP-level or equivalent role at one or more high-growth B2B companies, and has a demonstrated specialization in startups. Prior C-level experience is not explicitly required. Has deep business chops and the battle scars to show for it.Has a passion for gadgets, building physical things, or eliminating inefficiencies. Technology experience is a must - with a bonus for direct experience with manufacturing, big data technology, or AI.

We're a growing team that consistently works collaboratively, is supportive of each other, and is highly energized by the opportunity for large impact. We actively work to promote an inclusive environment, valuing passion and the ability to learn. You're encouraged to apply even if your experience doesn't precisely match the job description!
All candidates must have an unrestricted right to work in the U.S.

Please send your resume in WORD format should you be interested in the following 100% Remote Chief Security Officer (CISO) position. This is a full-time role with a salary range of $250K - $300K Plus AWESOME Benefits and Stock. If you are not interested in this position, please pass onto colleagues/associates as we do offer referral fees should they be hired.
Job Title: Chief Security Officer (CISO)

Salary: $250K - $300K

Term: Full-time

3rd Party C2C/Transfer: No

Referral Fee: $500 - Refer qualified colleague, friends, or family.

Please reply with an updated resume in Microsoft Word format

JOB DESCRIPTION

As CISO you will drive the overall security strategy. The CISO will play a leadership role in our ongoing business and technical operations, aligning controls with risks through industry best practices and advancements. This role will cover internal corporate security needs, hands-on analysis, and delivery of secure software development (e.g., penetration testing, code review, evaluation of vendor code audits and other general best practices), and compliance policy and implementation.

In addition to security responsibilities, you will lead the Information Technology operations of the company and take the report of our Developer Operations. You will bring your experience and continued research to drive strategic plans and deployment of company technology and infrastructure.

We are looking for someone with a strong and diverse background, someone who can develop foundational policies and take a “hands-on” and helping approach. You are a seasoned tactical and operational security leader with a proactive ability to mitigate technical and security challenges.

Responsibilities:

Driving the overall security strategy to further mature security including implementing and maintaining Cybersecurity policies and procedures
Establishing organizational technology vision and goals
Developing and managing the company's IT budget
Purchasing technology software, equipment, and accessories
Implementing technology to streamline internal operations, optimizing for strategic benefits Establishing and enforcing IT guidelines and standards
Implementing secure development practices to ensure developed code is secure
Researching and keeping abreast of evolving threats and vulnerabilities and, in collaboration with engineering and technical operations partners, implementing effective solutions against such threats
Leverage assessment of industry security events in the design and deployment of features within codebase
Undertaking regular security reviews and audits; developing and executing plans to address findings
Creating and updating a disciplined, organized, detail-oriented process and documentation for safeguarding information systems and risk interests
Generating policies to ensure compliance with government regulations, possible certifications of systems, and other general compliance and certification needs
Reporting to the executive team and stakeholders of the company's security status, posture, and developments

Qualification Requirements:

Good communication skills with ability to bridge between technical experts and business leaders
Can analyze complex information and develop insights to support our cybersecurity needs
Experience with secure software development tools and practices
Familiarity with open stack platforms and tools
Understanding of information risk standards and practices including ISO2700x and SOC2
Other skills that are great to bring with you but that we can help you develop:
Interest in and knowledge about web3 / blockchain / crypto / metaverse
A growth mindset and an overall positive attitude
Familiarity with open-source programs -IT Operations / DevOps or software development experience
Education and Experience: Bachelor's degree with 10+ years of relevant information/cybersecurity experience. CISSP, CISA or similar certification

The CISO reports to the Senior Vice President, Chief Technology Risk Officer and leads the Cyber Security function which resides in the Technology Risk Office (TRO) organization. This position has a wide expanse of relationships internal and external to Kaiser Permanente (KP) and must balance stakeholders representing complex and varied priorities with security imperatives. The CISO must navigate the organization, its regulators, policies, customers, and other important stakeholders while ensuring that KP has the right tools and controls in place to protect its business operations, data, tools and network against a dynamic threat landscape. Additionally, this executive must demonstrate solid leadership, relationship management, and collaboration competencies, understand how to balance and manage risk, and reflect a consistently compliant and policy driven approach to managing the work. The CISO must: Lead the Cyber Security function to prevent data loss and prevent fraud, and ensure the confidentiality, integrity and availability of all KP-s data and systems. Design and implement security architecture. Provide strategic and operational management of the Cyber Security function. Deliver and support program-wide prioritized risk mitigation activities. Lead incident response and management, including investigations and forensics and implementing controls to prevent relapse. Govern security initiatives and controls to ensure the environment is secure and that corporate leadership understands their importance. Design and govern security policies and security guidance. Provide training and awareness to the Kaiser Permanente enterprise. Implement program and process improvements to strengthen the organization-s security posture. Develop and maintain strong strategic relationships with leadership across the KP enterprise and critical external stakeholders, advisors, and security industry groups.
Essential Responsibilities:

+ Builds and maintains a high performingleadership team with robust succession plans by providing strategic leadership and vision, and professional development of technical and business management staff.

+ Leads development of the Cyber Security strategic roadmap ensuring it is strategically aligned to mitigate current and future security risks for KP. Understands the dynamic threat landscape and strategically adjusts and aligns the roadmap on an ongoing basis to ensure it addresses the changing security risk environment.

+ In partnership with the Chief Technology Risk Officer, VP of Technology Risk Management, and Executive Director, IT Compliance, develops and manages cyber security functions that support the identification, management and remediation of prioritized risk and compliance efforts. Serves as advisor on Cyber Security to senior leadership. Develops and presents strategic risk recommendations.

+ Leads department-wide cyber security strategic and operational planning efforts to integrate into TRO-s multi-year financial and strategic planning efforts. Ensures plans comply with program guidelines and objectives and includes a high degree of stakeholder engagement and achieves threat/risk management goals, operational efficiencies, and clear organizational direction for the Cyber Security function, TRO, and the KP enterprise.

+ Partners with other TRO functions to provide metrics/dashboard reporting for key business management initiatives, and/or other ad hoc information requests to report Cyber Security data and metrics. Strategically advises and shares metrics and analysis with stakeholder groups to optimize visibility of Cyber Security risks and areas of improvement across the KP enterprise.

+ In partnership with the Chief Technology Risk Officer and the TRO Executive Leadership team, ensures Cyber Security is strategically and effectively engaged with stakeholder communities and is meeting stakeholder expectations.

+ In partnership with the Office of the Chief Technology Risk Officer, develops communication approaches and strategies, determines presentation focus and emphasis, and provides inputs to board-level presentations to report on the status of Cyber Security. Primary audiences include the IT Executive Committee, KP business leaders, business operations governance bodies, and other key audiences, as needed.

+ Plans and leads designated people processes and organization performance reporting, and goal setting on behalf of Cyber Security, including performance management, process coordination, talent reviews, etc.

+ Develops long term resource and employee development strategies to ensure workforce is equipped and available to support the execution needs of Cyber Security.

Basic Qualifications:

Experience

+ N/A.

Education

+ Bachelors degree required

License, Certification, Registration

+ N/A

Additional Requirements:

+ N/A.

Preferred Qualifications:

+ Masters degree desired in computer science, business, law, or any other related subject

+ Professional certifications such as the Certified Information Systems Security Professional (CISSP) and Certified Information Security Manager (CISM) are also desired.

COMPANY: KAISER

TITLE: VP, Chief Info Security Officer

LOCATION: Oakland, California

REQNUMBER: 1080083

External hires must pass a background check/drug screen. Qualified applicants with arrest and/or conviction records will be considered for employment in a manner consistent with Federal, state and local laws, including but not limited to the San Francisco Fair Chance Ordinance. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, protected veteran, or disability status.