Chief Information Security Officer Job Description template and pdf with duties [2024]

Job summary 1

The Chief Information Security Officer is responsible for the security and data integrity of all systems in use at the County. Develops and works with appropriate levels of management to implement security standards and procedures. Plans organize and lead security, disaster recovery, and related functions associated with information systems to ensure data confidentiality, data integrity, and data accessibility. Oversees the use of security tools reviews technical designs and serves as the subject matter expert to top management. Serves as the primary point of contact for internal and external resources on IT security-related issues.

Duties & Responsibilities 1

special offer

Download PDF with all 10 Chief Information Security Officer Job Descriptions

Join our webinar: How to improve your recruitment strategy with 100Hires

Develops best practices for all aspects of data security, including physical, network, database, and application.
Reviews and approves all technical designs and implementation plans to ensure compliance.
Develops strategies and provides support for initiatives to continuously improve enterprise data security and assists in the development and regular testing of the enterprise business continuity and disaster recovery plans.
- Mitigate security-related risks and work with appropriate managers to implement corrective actions. Initiates participate in and lead audits to identify areas of vulnerability and oversees the deployment, use, and maintenance of threat and vulnerability tools, including intrusion detection prevention, firewall, virus protection, encryption, user authentication, and audit logs.
- Ensures that the architectural framework meets the County's information security needs.
- Performs other duties as assigned.

Requirements & Skills 1

Job summary 2

The Chief Information Security Officer (CISO) will provide leadership for planning, developing, directing, and operating an innovative, trusted, and reliable information security program to support the confidentiality, integrity, and availability of electronic institutional information at Hospitals and Clinics. The CISO will provide leadership to the security team of staff, which includes identity and access management, risk, and security operations. While the team is high-performing, there is plenty to be accomplished and the ideal candidate will bring a blend of technical acumen, strategic focus, and strong leadership.

Duties & Responsibilities 2

Helping to streamline IAM
Providing information security recommendations during the implementation of Workday
- Improving security awareness training
- Reviewing current third-party contracts for liability issues
- Leading IT security governance

Requirements & Skills 2

Bachelor’s degree required
Ten or more years of IT leadership experience with significant responsibilities in IT security
- Five or more years in a senior-level leadership role
- Relevant security industry certifications (i.e., CISSP, CISM, CISA, CRISC, CHPS)
- Demonstrated familiarity with HIPAA requirements and broad knowledge of integrated healthcare delivery administration

Job summary 3

We are seeking a Chief Information Security Officer to lead global security strategy and operations for the company. You will scale the security and IT organization to meet the needs of a rapidly growing global startup, and apply deep application and infrastructure security experience to help build Fast products efficiently and securely. You will serve as a key member of the Leadership team, reporting to our co-founder.

Duties & Responsibilities 3

Requirements & Skills 3

15+ years of relevant technical experience in application development security, incident response leadership, technical infrastructure security, and security compliance
Demonstrated experience representing an organization's information security program in presentations and discussions with customers, partners, and other external parties
Experience implementing controls and mitigating risks related to GDPR, PCI, and other information security and data privacy standards
Experience implementing cloud security technologies, including encryption, network security, intrusion detection, and digital forensics
- Well-versed in the rapidly evolving threat landscape with a strategic mindset to mitigate threats
- Outstanding communication skills with an ability to build strong narratives to highlight the importance of security to employees internally and customers/shareholders externally, including both technical and non-technical audiences
- Fintech security experience a plus

Job summary 4

As the Chief Information Security Officer, you will be a key member of the leadership team, reporting directly to the CEO, which will drive Company’s security practices to the next level. As we scale, you will build and lead a best-in-class security program and privacy program and team-owning initiatives including governance, risk, compliance, audit, security operations, security engineering, application/product security, and assurance and trust.

Duties & Responsibilities 4

You have a strong understanding of cybersecurity and a shared passion for both security and the Company’s mission, with a thorough knowledge of security best practices, and experience leading a security program including application security, audit, and compliance, partnering with sales and customer security requests and managing through a security crisis
You have been in a leadership role and have had experience driving and scaling a security program in a hyper-growth startup environment
- You’ve collaborated and worked cross-functionally with Engineering, IT, Human Resources, and Legal teams to drive business discussions on how to evolve and improve a company’s digital landscape to stay ahead of potential threats
- You will stay up to date on information security threats and countermeasures and lead a strategic and innovative point of view for security solutions that can be impacted by new technologies
- You will develop and define processes to manage security risk and work on implementing processes and standards to prevent viruses from spreading, as well as preventing hacker intrusion

Requirements & Skills 4

Passion for both security and Company’s mission to end the stress and burnout epidemic
Experience at a leadership level building and scaling a high-functioning security organization
Experience owning company-wide security initiatives like compliance, risk, and privacy

Job summary 5

The Chief Information Security Officer is responsible for the vision and leadership of the company’s Information Technology programs. This role is also responsible for developing, implementing, and overseeing information security policies and procedures to ensure the integrity and availability of the company’s information systems assets.

Duties & Responsibilities 5

Requirements & Skills 5

Bachelor’s Degree from a 4-year institution, with an emphasis in Information technology, is preferred.
Graduation from a technical or junior college or partial university attendance, when combined with a relevant course of instruction and/or relevant work experience in Information Technology is acceptable.
Minimum of ten years of successful experience in a Technical Security role and/or Information Systems Auditing role.
CISSP, CISA, or CISM security certification required.
- Knowledge of ISO 27001, PCI, and COBIT standards are also required.
- Individuals must also have experience working with complex projects and assignments concurrently, excellent written skills, positive attitude and initiative, a high degree of analytical and interpersonal skills, and a teamwork approach.
- Additional experience should include an articulate understanding and success in applying information security policies and procedures to achieve business objectives.

Job summary 6

The Chief Information Security Officer is responsible for determining enterprise information security policy and strategy and ensuring the confidentiality, integrity, and availability of data. Oversees the development, implementation, and enforcement of information security, data privacy, and regulatory compliance-focused standards and procedures. This is the primary individual in charge of information security risk evaluations, audits, and security incident investigations. Under direction, performs work of unusual difficulty identifying, managing, and mitigating the risks presented by Information Security Threats; performs related work as assigned.

Duties & Responsibilities 6

Requirements & Skills 6

Bachelor's Degree in Computer Science or related field, and five years experience in information security, risk, and/or compliance; or any equivalent combination of education, training, and experience which demonstrates the ability to perform the duties of the position.
Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) or Certified in Risk and Information Systems Control (CRISC) or Certified in the Governance of Enterprise IT (CGEIT)

Job summary 7

The Chief Information Security Officer serves as the advisor to the process owner of the appropriate second-line assurance activities not only related to confidentiality, integrity, and availability, but also to the safety, privacy, and recovery of information owned or processed by the business in compliance with regulatory requirements. The Chief Information Security Officer understands that securing information assets and associated technology, applications, systems and processes in the wider ecosystem in which the organization operates is as important as protecting information within the organization's perimeter. A key element of the Chief Information Security Officer's role is working with executive management to determine acceptable levels of risk for the organization.

Duties & Responsibilities 7

Requirements & Skills 7

Bachelor’s degree in related business or technical areas, or equivalency of education and work experience
Minimum of seven to 10 years of experience in a combination of risk management, information security, and IT or OT jobs (at least five must be in a senior leadership role)
- Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and non-technical audiences at various hierarchical levels, ranging from board members to technical specialists
- Strategic leader and builder of both vision and bridges, and able to energize the appropriate teams in the organization
- Security certifications desired (e.g., CISSP, GIAC, CEH, etc)

Job summary 8

The Chief Information Security Officer (CISO) is responsible for providing both oversight and direction for the management of information security risks across the organization with a particular focus on establishing, maintaining, and overseeing the security policies and processes to ensure information assets and technologies are protected, but also loss control measures, safety, disaster preparedness, and recovery.

Duties & Responsibilities 8

Review and update minimum annually.
Internal programs and policies for customer and member data protection.
Processes and plans for vulnerability and breach management including response processes.
Software and infrastructure development and maintenance processes including integrated security and vulnerability testing as well as the patch management process and controls.
Assess and manage subcontractor information security risks.
- Oversee cybersecurity assessments with ongoing initiatives to resolve any gap analysis results, establish, and maintain our cybersecurity posture, risk appetite, and improvement strategies.
- Collaborate with Directors of Corporate Compliance, Health Information, and Internal Audit to ensure adequate training programs and periodic privacy and security audits of internal operations, delegated entities, and business associates.
- Work with, and influence project teams and business contacts regarding security controls and risk mitigation techniques related to information security.

Requirements & Skills 8

Analytical, critical thinking, and problem-solving skills needed to identify and assess risk and develop appropriate risk mitigation strategies
Demonstrated experience exercising considerable judgment, common sense, and resourcefulness
Demonstrated experience with risk management strategies, disciplines, and methodologies
Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate
- Ability to manage multiple projects while maintaining superior results
- Ability to set direction, manage expectations and lead cross-functional teams
- Bachelors or better in Computer Science

Job summary 9

The Chief Information Security Officer serves as the process owner of all assurance activities related to the availability, integrity, and confidentiality of customer, business partner, employee, and business information in compliance with the organization's information security policies. A key element of the CISO's role is working with executive management to determine acceptable levels of risk for the organization. This position is responsible for establishing and maintaining a corporate-wide information security management program to ensure that information assets are adequately protected.

Duties & Responsibilities 9

Develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program.
Work directly with the business units to facilitate risk assessment and risk management processes.
Develop and enhance an information security management framework.
Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems, and services.
- Provide leadership to the enterprise's information security organization.
- Partner with business stakeholders across the company to raise awareness of risk management concerns.
- Assist with the overall business technology planning, providing current knowledge and future vision of technology and systems.

Requirements & Skills 9

Degree in business administration or a technology-related field required.
Professional security management certification
Minimum of eight to 12 years of experience in a combination of risk management, information security, and IT jobs
Knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST.
Excellent written and verbal communication skills and a high level of personal integrity
Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams.
- Experience with contract and vendor negotiations and management including managed services.
- Specific experience in Agile (scaled) software development or other best-in-class development practices.
- Experience with Cloud computing/Elastic computing across virtualized environments.

Job summary 10

We are hiring a Chief Information Security Officer (CISO) to lead security across the company, which includes the retail and B2B business units. The CISO is responsible for safeguarding the company’s most critical information and implementing modern security policies, practices, and technologies in the organization.

Duties & Responsibilities 10

Executive Leadership – Serve as the lead security executive for Staples, responsible for leading an effective corporate-wide initiative and instilling a culture of security throughout the company. This will require close relationships with the Executive Chairman, CEO, and executive leadership team.
- Strategic Security Program – Create a strategic security roadmap outlining necessary resources and requirements, with leadership buy-in, to build and sustain a world-class security program inclusive of a SOC, a GRC program, and strong I&AM policies. This role will be responsible for coordinating security strategy among different company departments, including the business unit leaders, Engineering, Human Resources, and Legal.
- Technical Integration – The CISO will advise and implement security technologies into a modern Dev Ops organization and integrate security into the CI/CD lifecycle. Cloud security is also a critical aspect of the cloud migration effort.
- Communication & Coordination – The CISO will need to translate technical risks into interpretable organizational risks for a wide range of corporate audiences, including the Board and senior leadership.

Requirements & Skills 10

Minimum 5 years of experience as a corporate CISO or security leadership with executive management responsibilities and digital transformation leadership or equivalent experiences.
Management of team size 50+.
Relevant experience across modern engineering/product teams or within technology organizations. Cloud security and DevSecOps expertise are highly relevant.
Proven track record implementing the following programs: incident response, threat intelligence, DLP/DR/BCP, IAM, information privacy, SOC management, security architecture, security policy/advocacy, and risk assessments.
Relevant compliance expertise for the industry, and familiarity of, or certifications including ISO, SOX, CISSP, NIST, PCI.
- Technical foundation (EE/CS degree or equivalent experience), but also a business mindset and an innate ability to translate technical vulnerabilities into broader organizational risks for senior leadership.
- Superior written and verbal communication skills. Ability to serve broadly as a security advocate and authority.
- Security industry connectivity to hire great talent, and build a world-class team. Serve as an external security evangelist for the company.

Chief Information Security Officer Job Description

Job summary 1

Duties & Responsibilities 1

Requirements & Skills 1

Job summary 2

Duties & Responsibilities 2

Requirements & Skills 2

Job summary 3

Duties & Responsibilities 3

Requirements & Skills 3

Job summary 4

Duties & Responsibilities 4

Requirements & Skills 4

Job summary 5

Duties & Responsibilities 5

Requirements & Skills 5

Job summary 6

Duties & Responsibilities 6

Requirements & Skills 6

Job summary 7

Duties & Responsibilities 7

Requirements & Skills 7

Job summary 8

Duties & Responsibilities 8

Requirements & Skills 8

Job summary 9

Duties & Responsibilities 9

Requirements & Skills 9

Job summary 10

Duties & Responsibilities 10

Requirements & Skills 10

Start Using
100hires for Free

Weekly Webinars

Chief Information Security Officer Job Description

Job summary 1

Duties & Responsibilities 1

Requirements & Skills 1

Job summary 2

Duties & Responsibilities 2

Requirements & Skills 2

Job summary 3

Duties & Responsibilities 3

Requirements & Skills 3

Job summary 4

Duties & Responsibilities 4

Requirements & Skills 4

Job summary 5

Duties & Responsibilities 5

Requirements & Skills 5

Job summary 6

Duties & Responsibilities 6

Requirements & Skills 6

Job summary 7

Duties & Responsibilities 7

Requirements & Skills 7

Job summary 8

Duties & Responsibilities 8

Requirements & Skills 8

Job summary 9

Duties & Responsibilities 9

Requirements & Skills 9

Job summary 10

Duties & Responsibilities 10

Requirements & Skills 10

Start Using 100hires for Free

Weekly Webinars

Start Using
100hires for Free