Chief Information Security Officer (CISO)

Information Technology United States


Position at Smarsh

Chief Information Security Officer

Smarsh empowers its customers to manage the risk and unleash the intelligence in their digital communications. Our growing community of over 6500 organizations in regulated industries counts on Smarsh every day to help them spot compliance, legal or reputational risks in 80+ communication channels, before those risks become regulatory fines or headlines.  Relentless innovation has fueled our journey to consistent leadership recognition from analysts like Gartner and Forrester, and our sustained, aggressive growth has landed Smarsh in the annual Inc. 5000 list of fastest-growing American companies since 2008.

The Chief Information Security Officer is a highly visible and has the ability to shape the way our company functions and operates from a security perspective. The CISO will be empowered to implement information security compliance processes and procedures while also being the subject matter expert in all things security and will be part of the Executive Leadership Team. 

Essential Functions

  • Accountable for company-wide strategy on information security practices, policies, procedures, staff, security compliance, budget, and the tactical execution of those strategies.
  • Manage information security organization including hiring, performance management, and staff development.
  • Collaborate as a peer with leaders of IT, Software Engineering, Software QA, Product Management, Legal, and other senior management to ensure all aspects of our security program are effectively implemented, reviewed, and maintained.
  • Ensure compliance with security standards, audits, and regulatory requirements including FedRAMP, SSAE18 SOC2, ISO 27001/2, and the requirements of our clients and business partners.
  • Provide input and support from the Information Security perspective on privacy laws and regulations including GDPR, CCPA and other related state and federal laws.
  • Coordinate responses to customer security questionnaires, RFPs and Audits.
  • Meet with customers as a peer to sales in establishing the company’s security systems and processes.
  • Ownership of information security: compliance, operations, audits, third party provider compliance, and testing.
  • Collaborate with Information Technology in support of Disaster Recovery and Business Continuity.
  • Serve as primary liaison to key vendors, business partners, customers, and prospects on information security matters, including but not limited to possible mergers and acquisitions.
  • Periodic reporting on our security program, material risks, etc. to executive management.
  • Responsible for company-wide information security risk management, incident management, security education and other related topics as appropriate.
  • Manage response to evolving security threats and compliance requirements.
  • Function as CISO and other designated roles as required.
  • Other duties as assigned.

Supervisory Responsibility

This position has supervisory responsibilities.

Travel

No travel is required for this position.

Education and Experience

  • An MBA in a technology-related field, or equivalent work or education experience.
  • A minimum of 10 years’ experience in an information or cyber security role including experience managing a successful team.
  • Relevant certifications CISSP, CISA, CCISO, CIPM and CGEIT are desired, in lieu of at least 10 years in an Information / Cyber security and or IT Compliance leadership role.
  • Experience with NIST and/or FedRAMP Security Framework.
  • Experience with mission critical 24/7 SaaS application.
  • Proven track record and experience in development and execution of information security policies and procedures
  • Or equivalent combination of education and experience.

Additional Eligibility Qualifications

  • Ability to take-ownership - you love your job and pride yourself in doing it well
  • Motivated by challenging projects
  • Enjoy problem solving
  • Ability to focus on short term and long-term goals while not losing sight of the details
  • Intellectually inquisitive
  • You like to get things done and you like empowering others to get things done

About our Culture

Smarsh hires lifelong learners with a passion for innovating with purpose, humility and humor. Collaboration is at the heart of everything we do. We work closely with the most popular communications platforms and the world’s leading cloud infrastructure platforms. We use the latest in AI/ML technology to help our customers break new ground at scale. We are a global organization that values diversity, and we believe that providing opportunities for everyone to be their authentic self is key to our success. Smarsh leadership, culture, and commitment to developing our people have all garnered Comparably.com Best Places to Work Awards. Come join us and find out what the best work of your career looks like.