12,064 Ciso jobs in the United States

Med Tech Solutions (MTS) is a leading healthcare technology company focused on delivering innovative technology solutions that improve the ability to provide patient care and support our health care providers. We work exclusively with healthcare organizations across the United States, providing comprehensive and cost-effective HIT and cloud solutions. Many of our staff have extensive experience working in healthcare – that’s helped MTS provide a deep bench of IT expertise to a client base that includes community health centers, ambulatory and specialty clinics, integrated networks, associations, and other healthcare-focused organizations. Please visit ( for more background information. MTS is growing! We are seeking a Chief Information Security Officer (CISO) to join our team. This position will be responsible for maintaining a corporate-wide Cybersecurity Program to ensure that MTS and client assets are adequately protected. The CISO will play a critical role in developing and implementing the organization's information security strategy, ensuring compliance with HITRUST and HIPAA standards, and managing security risks. This role will further develop Security Product including MTS HIPAA Security Consulting Services, along with related Marketing and Sales plans to grow the business while addressing client security needs. This position may be remote. Essential Duties and Responsibilities Develop and implement a strategic, comprehensive Cybersecurity Program that aligns with HITRUST, HIPAA and other relevant standards such as NIST and CIS. Oversee the development, implementation, and maintenance of security / technical policies and procedures. Conduct risk assessments and implement risk mitigation strategies. Ensure all employees, contractors, partners, and other third parties receive required security and HIPPA training. Identify, analyze and document IT-related risks and control exceptions across the enterprise and propose mitigation plans to the Executive Leadership team. Manage and lead the Security Incident Response Team. Partner with business leadership and product development to help deliver effective cybersecurity solutions to clients that protect against threats, propel transformation, and drive growth. Provide internal audits to ensure compliance with HITRUST controls. Evaluate the processes, procedures and tools used to review and test information system controls and security across multiple business systems and third-party supplier IT systems, including hybrid cloud solutions. Provide regular reports on the organization’s cybersecurity program and material risks to the board of directors. Conduct regular training a awareness programs for staff on security best practices and compliance requirements. Maintain an accurate inventory of all individuals with access to confidential information and all uses and disclosures of such information. Act as a liaison to the information systems department to ensure alignment between security and privacy practices. Requirements : Minimum 8 -12 years broad information security experience including background in Healthcare and HITRUST / HIPAA expertise. Previous experience as corporate CISO, or Deputy CISO. Experience with HIPAA, HITRUST, SOC2, CIS, ISO 27001, NIST 800-53, PCI DSS, SSAE 18, MITRE ATT&CK, and / or other risk-centric standards and frameworks desirable. CISM, CISA, CISSP, CHPSE, HCISSP, Security+, CRISC, CGEIT, or other relevant certifications desired. Excellent oral, written communication, and presentation skills with an ability to present security- related concepts to C-Level Executives and non-technical audience. Expertise delivering webinars and other public speaking engagements. Extensive background in all aspects of IT architecture, private / public cloud and infrastructure security principles, and application security. Strong financial and business acumen with understanding of a multi-faceted business operation. Strong influencing skills to get things done and inspire business transformation evolving work environment. Create a job alert for this search Chief Information Security Officer • Valencia, CA, US #J-18808-Ljbffr

Chief Information Security Officer (CISO) Apply locations San Jose time type Full time posted on Posted 2 Days Ago job requisition id R00594 Job Details: Job Description: Role Overview: We are seeking a dynamic and experienced Chief Information Security Officer to lead the process of all assurance activities related to the availability, integrity, and confidentiality of customer, business partner, employee, and business information in compliance with the organization's information security policies. A key element of the CISO's role is working with executive management to determine acceptable levels of risk for the organization. This position is responsible for establishing and maintaining a corporate-wide information security management program to ensure that information assets are adequately protected. About the Role: Strategic Leadership: Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program Work directly with the business units to facilitate risk assessment and risk management processes Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems Provide leadership to the enterprise's information security organization Cross-Functional Collaboration: Partner with business stakeholders across the company to raise awareness of risk management concerns Interact with Global Markets engineering stakeholders to understand and communicate risks to critical infrastructure and systems, defining potential business impact, and tracking commitments to apply effective mitigating controls Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems, and services Implementation Focus: Develop and enhance an information security management framework Drive adoption of application security, technology privacy, privilege management, and vulnerability management controls as part of the Software Development Life Cycle (SDLC) and production management (DevOps) processes. Qualifications: • Minimum of eight to 12 years of experience in a combination of risk management, information security, and IT jobs • Knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST • Excellent written and verbal communication skills and high level of personal integrity • Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams • Experience with contract and vendor negotiations and management including managed services • Experience interfacing with and communicating complex technical security concepts to non-technical audiences • Information security policy, standards, guidelines or procedures development and implementation • Infrastructure, database and/or application security experience • Privilege management (i.e. access and identity management, access re-certification) experience • Control self-assessment, SOX404 technical control assessment, SOC 1/SOC 2 control assessment experience • Strong knowledge of control frameworks and the ability to design and evaluate effectiveness of controls embedded within business processes • Ability to work with large data sets, reporting dashboards and excel worksheets • Industry accepted security certifications including CISSP or CISM or CRISC or equivalent SANS certification • Specific experience in Agile (scaled) software development or other best in class development practices • Experience with Cloud computing/Elastic computing across virtualized environments. Job Type: Contract Employee (Fixed Term) Shift: Shift 1 (United States of America) Primary Location: San Jose Additional Locations: Posting Statement: All qualified applicants will receive consideration for employment without regard to race, color, religion, religious creed, sex, national origin, ancestry, age, physical or mental disability, medical condition, genetic information, military and veteran status, marital status, pregnancy, gender, gender expression, gender identity, sexual orientation, or any other characteristic protected by local law, regulation, or ordinance. About Altera: Altera: Accelerating Innovators Altera, an Intel Company, provides leadership programmable solutions that are easy-to-use and deploy in applications from cloud to edge, offering limitless AI possibilities. Our end-to-end broad portfolio of products including FPGAs, CPLDs, Intellectual Property, development tools, System on Modules, SmartNICs, and IPUs provide the flexibility to accelerate innovation. Altera is helping to shape the future through pioneering innovation that unlocks extraordinary possibilities for everyone on the planet. Don't see the dream job you are looking for? Click " Get Started " below to drop off your contact information and resume and we will reach out to you if we find the perfect fit. #J-18808-Ljbffr

Chief Information Security Officer (CISO)

Vistrada is looking to hire strong Chief Information Security Officers (CISO). The CISO will provide strategic cybersecurity guidance and oversight to Vistrada clients by leading and managing their cybersecurity programs to help protect their infrastructure, data, people, and customers. Candidates should have extensive knowledge of cybersecurity best practices, industry standards, and regulations. They should also have strong communication, leadership, and project management skills, as well as the ability to work collaboratively with internal and external stakeholders.

Job Responsibilities and Common Duties Include:

• Apply consultative and leadership skills to build high rapport with clients and team members.

• Provide expert security advisory, compliance and security program oversight, oversee security/compliance assessments, and prepare high-quality reports (including gap analysis, POAM, recommendations, and remediation planning).

• Lead and manage a team of security analyst(s) providing oversight, direction, expertise, and mentoring.

• Provide virtual chief information security officer services.

• Support clients on a fractional owner model.

• Act as an extension of client’s information security management and governance function.

• Develop, implement, and oversee information security programs.

• Assess, identify requirements for, and make recommendations on security controls and technologies.

• Develop security roadmaps and plans of action.

• Vendor and third-party risk management program support and due diligence.

• Develop business continuity and incident response plans.

• Focus on key performance indicators, metrics, security dashboards.

• Assist With Business Development.

• Work with potential new clients to understand and define business and technology needs, provide subject matter expertise to answer client’s questions and concerns, and identify and align services with client’s needs.

• Support statements of work, identify resource requirements, assumptions, estimates, and assist with responses to Requests for Proposals (RFPs).

• Identify client’s security and technology needs and identify business development opportunities as outcomes of assessment activities.

• Develop expert level content, participate in panel discussions and public speaking events, and attend conference exhibitor opportunities.

• Architect high quality security solutions to the needs of clients.  

• Perform other duties that may be assigned by management. 

Required Experience / Skills:

• 10+ years of CISO experience working in related field(s).

• Expert knowledge of cybersecurity frameworks and regulations including: NIST, ISO, CMMC, PCI, COBIT, DFARS, HIPAA, etc.

• Hands-on incident response coordination and oversight experience.

• Strong understanding of IT Risk and components, including application, infrastructure, network, and vendors.

• Bachelor’s degree in Computer Science, Accounting, MIS, or comparable work experience.

• Develop and present management level materials to effectively communicate and message to stakeholders.

• Relevant certifications such as CISA, CISM, or CISSP, or similar experience.

The annual pay range for this role is $150,000 - 200,000.

Company Background:  

Vistrada is a business, technology and management services firm dedicated to helping clients plan, design and implement initiatives supporting Cybersecurity, Business Transformation, Integrated Risk Management, and Managed Services. Vistrada provides seasoned expertise and a flexible team structure allowing agility and responsiveness to support client’s evolving needs.

Our company operates nationally today with resources centered around NYC, Albany NY, Austin TX, Chicago, IL and Salt Lake City, UT. We have many resources who operate remotely and onsite as needed in a wider geography. Our business organization has four verticals and multiple cross competencies headed by leaders with more than 20+ years of experience on average

Powered by JazzHR

Job Type

Full-time

Description

Job Description

Med Tech Solutions (MTS) is a leading healthcare technology company focused on delivering innovative technology solutions that improve the ability to provide patient care and support our health care providers. We work exclusively with healthcare organizations across the United States, providing comprehensive and cost-effective HIT and cloud solutions. Many of our staff have extensive experience working in healthcare - that's helped MTS provide a deep bench of IT expertise to a client base that includes community health centers, ambulatory and specialty clinics, integrated networks, associations, and other healthcare-focused organizations. Please visit ( for more background information.

MTS is growing! We are seeking a Chief Information Security Officer (CISO) to join our team. This position will be responsible for maintaining a corporate-wide Cybersecurity Program to ensure that MTS and client assets are adequately protected. The CISO will play a critical role in developing and implementing the organization's information security strategy, ensuring compliance with HITRUST and HIPAA standards, and managing security risks. This role will further develop Security Product including MTS HIPAA Security Consulting Services, along with related Marketing and Sales plans to grow the business while addressing client security needs. This position may be remote.

Essential Duties and Responsibilities

• Develop and implement a strategic, comprehensive Cybersecurity Program that aligns with HITRUST, HIPAA and other relevant standards such as NIST and CIS.
• Oversee the development, implementation, and maintenance of security/technical policies and procedures.
• Conduct risk assessments and implement risk mitigation strategies. Ensure all employees, contractors, partners, and other third parties receive required security and HIPPA training.
• Identify, analyze and document IT-related risks and control exceptions across the enterprise and propose mitigation plans to the Executive Leadership team.
• Manage and lead the Security Incident Response Team.
• Partner with business leadership and product development to help deliver effective cybersecurity solutions to clients that protect against threats, propel transformation, and drive growth.
• Provide internal audits to ensure compliance with HITRUST controls. Evaluate the processes, procedures and tools used to review and test information system controls and security across multiple business systems and third-party supplier IT systems, including hybrid cloud solutions.
• Provide regular reports on the organization's cybersecurity program and material risks to the board of directors.
• Conduct regular training a awareness programs for staff on security best practices and compliance requirements.
• Maintain an accurate inventory of all individuals with access to confidential information and all uses and disclosures of such information.
• Act as a liaison to the information systems department to ensure alignment between security and privacy practices.

• Minimum 8 -12 years broad information security experience including background in Healthcare and HITRUST / HIPAA expertise.
• Previous experience as corporate CISO, or Deputy CISO.
• Experience with HIPAA, HITRUST, SOC2, CIS, ISO 27001, NIST 800-53, PCI DSS, SSAE 18, MITRE ATT&CK, and/or other risk-centric standards and frameworks desirable.
• CISM, CISA, CISSP, CHPSE, HCISSP, Security+, CRISC, CGEIT, or other relevant certifications desired.
• Excellent oral, written communication, and presentation skills with an ability to present security- related concepts to C-Level Executives and non-technical audience. Expertise delivering webinars and other public speaking engagements.
• Extensive background in all aspects of IT architecture, private/public cloud and infrastructure security principles, and application security.
• Strong financial and business acumen with understanding of a multi-faceted business operation.
• Strong influencing skills to get things done and inspire business transformation
• evolving work environment.

The University seeks highly qualified candidates for the role of Chief Information Security Officer. As a prospective candidate, you are expected to carefully read this job description and eliminate yourself from the candidate pool if the duties and responsibilities are not a good match for you. POSITION SUMMARY The Chief Information Security Officer (CISO) provides strategic leadership and operational oversight for the University’s information security program. This role is responsible for safeguarding digital assets, ensuring regulatory compliance, and fostering a culture of cybersecurity awareness across the University. Reporting to the Chief Information Officer (CIO) and as a member of the leadership team of Information Technology Services (ITS), the CISO works collaboratively with University leadership to align information security initiatives with academic and administrative goals. The CISO develops and leads outreach, communication, and education efforts to raise campus-wide awareness of information security risks, requirements, and solutions; provides strategic and technical guidance and assistance in the design and implementation of appropriate security processes for campus-wide information systems ; creates and keeps current information security policies and incident response protocols to help ensure the confidentiality, availability and integrity of all information assets; and leads the University’s monitoring, detection, and mitigation of potential security threats. D UTIES AND RESPONSIBILITIES Develop, maintain, and enforce cybersecurity policies, standards, and procedures that ensure confidentiality, integrity, and availability of information systems. Develop security architecture and maintain a risk-mitigation approach to securing ITS assets. Collaborate with ITS leadership, legal, audit, and academic units to ensure alignment between security and institutional priorities, aligned with the principles of academic freedom that remain core to a national doctoral and professional University. Conduct security awareness education and training programs that promote a security-conscious culture across the University. Serve as the primary advisor to University leadership on information security risks and mitigation strategies. Partner with campus stakeholders to integrate information security into the lifecycle of all technology projects. Direct incident response activities and collaboration with other ITS units in the development of disaster recovery and business continuity plans. Coordinate with law enforcement, governmental agencies, and insurance providers on cybersecurity matters. Monitor emerging threats and coordinate proactive responses to potential vulnerabilities. Provide oversight of, in collaboration with the School of Engineering and Computing, the internal student-run security operations center and external threat detection and response services. Lead cybersecurity risk assessments and oversee internal/external audits, cybersecurity maturity assessments, and penetration tests. Stay current with information security issues and regulatory changes affecting higher education at the state and national level, participate in national policy and practice discussions, and communicate to campus on a regular basis about those topics. Engage in professional development to maintain continual growth in professional skills and knowledge essential to the position. Performs other related duties as required or dictated by responsibilities. QUALIFICATIONS AND EXPERIENCE 8-10 years of progressive information security experience with 3+ years in a leadership or managerial role. Experience in higher education or a research environment is preferred. A strategic grasp of information security at both institutional and operational levels. Capability to articulate a vision for information security that engages all constituents, satisfies internal and external requirements, and enables the University’s ongoing pursuit of excellence and innovation in its academic and research fields. Proven experience managing a small team of technology associates. This role has management responsibility for an Information Security Architect and a Senior Network Security Specialist. Professional certifications such as CISSP, CISM, or CRISC. Familiarity with NIST, ISO 27001, and EDUCAUSE security frameworks. Strong understanding of compliance standards such as FERPA, HIPAA, GDPR, and GLBA. Excellent interpersonal and communication skills, with the ability to present complex security topics to diverse audiences. #J-18808-Ljbffr

Paysera is the first fintech company in Lithuania and an EU licensed e-money institution. We provide fast, convenient, and affordable financial services globally. Our services range from a payment gateway for e-shops, a finance management app, and money transfers worldwide. With over 1 million app installs and growing, we aim to become an industry-leading super app that provides financial and lifestyle services across the globe. At Paysera, we are a start-up minded team, which means we thrive in a fast-paced environment and seek open communication while placing great focus on establishing our core company values. Join our vibrant international team of 500 people across 15 different cities worldwide.

The CISO (Chief Information Security Officer) is a senior-level executive responsible for developing and implementing an information security program, which includes procedures and policies designed to protect enterprise communications, systems and assets from both internal and external threats.

• Responding to data breaches and other security incidents;
• Anticipating, assessing, and actively managing new and emerging threats;
• Developing, implementing, and maintaining security processes within departments, especially IS/IT;
• Working with other executives across different departments to align security initiatives with broader business objectives;
• Establishing and revising the information security strategy, policy, and standards for change management;
• Facilitating and coordinating necessary countermeasures to change management and control initiatives;
• Establishing security requirements for change management and control directives;
• Coordinating overall communication and awareness strategy for change management;
• Establishing and coordinating appropriate interest group forums;
• Coordinating the implementation of new or additional security controls;
• Acknowledging change impact assessments;
• Working as an internal and external security expert;
• Becoming a trusted business advisor;
• Becoming a teacher, mentor, and colleague in other departments;
• Establishing a security focus team as required;
• Maintaining a secure environment like PCI-DSS;
• Implementing position-related projects like SIEM;
• Conducting and/or coordinating security audits internally and externally;
• Performing routine daily tasks using ChatGPT or a similar tool.

• Analysis of standards, legal acts, and other documents establishing cyber and data security standards;
• Ensuring compliance with established cyber and data security requirements;
• Identification, analysis, and assessment of risks arising from data processing and information security;
• Identifying, assessing, and proposing improvements to missing cyber and data security capabilities;
• Gathering information on cyber and data security;
• Analysis of cyber and data security threats;
• Participation in the development of cyber and data security capabilities;
• Preparation of company policies on information security issues;
• Cooperation with the supervisory authority in the field of personal data protection;
• Submission of quarterly reports to the Head of the Institution;
• Execution of other work assigned by the immediate supervisor;
• Working as part of the Information Systems Department on security-related projects;
• Implementing security-related processes within other departments;
• Hiring security personnel as required;
• Creating periodic reports on the company's security situation;
• Assisting the company as a main contact for external audits like PCI-DSS certification.

Work-life Balance: strive for balance with flexible working hours and hybrid work possibilities.

Comprehensive Health Care: get covered by private health insurance after six successful months with us.

Safety Net: accident and emergency insurance.

Wellness Support: access the Stebby health and wellness services after your probation.

Global Work Opportunities: join workations and utilise a work-from-anywhere approach.

Continuous Development: participate in regular skill-building workshops and training sessions.

Innovation Empowerment: get support and freedom to experiment with various AI tools.

Office Extras: enjoy office perks like fresh and healthy snacks, VR headsets, and more.

Engaging Workplace Culture: take part in regular team-building events and fun office initiatives.

In compliance with legislation, we would like to indicate that for the present position we are willing to offer a monthly salary from 3000 to 5000 EUR gross. The exact amount depends on the experience, education, and competences of the future employee. Only selected candidates will be contacted, but we are grateful to all who send their CV.

Location: Lithuania, Bulgaria, Ukraine, Poland, Georgia

CISO (Chief Information Security Officer) About us: Paysera is the first fintech company in Lithuania and an EU licensed e-money institution. We provide fast, convenient, and affordable financial services globally. Our services range from a payment gateway for e-shops, a finance management app, and money transfers worldwide. With over 1 million app installs and growing, we aim to become an industry-leading super app that provides financial and lifestyle services across the globe. At Paysera, we are a start-up minded team, which means we thrive in a fast-paced environment and seek open communication while placing great focus on establishing our core company values. Join our vibrant international team of 500 people across 15 different cities worldwide. The CISO (Chief Information Security Officer) is a senior-level executive responsible for developing and implementing an information security program, which includes procedures and policies designed to protect enterprise communications, systems and assets from both internal and external threats. Your key responsibilities: Responding to data breaches and other security incidents; Anticipating, assessing, and actively managing new and emerging threats; Developing, implementing, and maintaining security processes within departments, especially IS/IT (e.g., automated or manual security checks for delivered production code for products and services); Working with other executives across different departments to align security initiatives with broader business objectives and mitigate the risks various security threats pose to the organization's mission and goals; Establishing and revising the information security strategy, policy, and standards for change management and control with input from interest groups and subsidiaries; Facilitating and coordinating the necessary countermeasures to change management and control initiatives and evaluating such policies and standards; Establishing the security requirements for change management and control directives and approving the change management and control standards and change control/version control products; Coordinating the overall communication and awareness strategy for change management; Establishing and coordinating appropriate interest group forums to represent, feedback, implement, and monitor change management and control initiatives; Coordinating the implementation of new or additional security controls for change management; Acknowledging the change impact assessments; Working as an internal and external security expert; Becoming a trusted business advisor; Becoming a teacher, mentor, and colleague in other departments related to the position responsibilities; Establishing a security focus team as required; Maintaining a secure environment like PCI-DSS; Implementing position-related projects like SIEM by directly coordinating assigned team and/or specialists through project management and delivery processes; Conducting and/or coordinating security audits internally and externally; Performing routine daily tasks using ChatGPT or a similar tool to enhance efficiency and productivity. What we're looking for: Analysis of standards, legal acts, and other documents establishing cyber and data security standards adopted by the Republic of Lithuania, the EU, and other international organizations; Ensuring compliance with established cyber and data security requirements; Identification, analysis, and assessment of risks arising from data processing and information security; Identifying, assessing, and proposing improvements to missing cyber and data security capabilities; Gathering information on cyber and data security; Analysis of cyber and data security threats; Participation in the development of cyber and data security capabilities; Preparation of company policies on information security issues; Cooperation with the supervisory authority in the field of personal data protection; Submission of quarterly reports to the Head of the Institution; Execution of other work assigned by the immediate supervisor; Implementing direct duties in accordance with the requirements of applicable legal acts, the procedures of the Institution, and other internal acts regulating the performance of the employee's functions and duties; Working as part of the Information Systems Department on security-related projects as a Project Manager; Implementing security-related processes within other departments; Hiring security personnel as required; Creating periodic reports on the company's security situation; Assisting the company as a main contact for external audits like PCI-DSS certification. For candidates: Only selected candidates will be contacted, but we are grateful to all who send their CV. Location: Lithuania, Bulgaria, Ukraine, Poland, Georgia Depends on candidate's experience and competence. #J-18808-Ljbffr

Chief Information Security Officer (CISO) Vistrada is looking to hire strong Chief Information Security Officers (CISO). The CISO will provide strategic cybersecurity guidance and oversight to Vistrada clients by leading and managing their cybersecurity programs to help protect their infrastructure, data, people, and customers. Candidates should have extensive knowledge of cybersecurity best practices, industry standards, and regulations. They should also have strong communication, leadership, and project management skills, as well as the ability to work collaboratively with internal and external stakeholders. Job Responsibilities and Common Duties Include : Apply consultative and leadership skills to build high rapport with clients and team members. Provide expert security advisory, compliance and security program oversight, oversee security / compliance assessments, and prepare high-quality reports (including gap analysis, POAM, recommendations, and remediation planning). Lead and manage a team of security analyst(s) providing oversight, direction, expertise, and mentoring. Provide virtual chief information security officer services. Support clients on a fractional owner model. Act as an extension of client’s information security management and governance function. Develop, implement, and oversee information security programs. Assess, identify requirements for, and make recommendations on security controls and technologies. Develop security roadmaps and plans of action. Vendor and third-party risk management program support and due diligence. Develop business continuity and incident response plans. Focus on key performance indicators, metrics, security dashboards. Assist With Business Development. Work with potential new clients to understand and define business and technology needs, provide subject matter expertise to answer client’s questions and concerns, and identify and align services with client’s needs. Support statements of work, identify resource requirements, assumptions, estimates, and assist with responses to Requests for Proposals (RFPs). Identify client’s security and technology needs and identify business development opportunities as outcomes of assessment activities. Develop expert level content, participate in panel discussions and public speaking events, and attend conference exhibitor opportunities. Architecthigh quality securitysolutions to the needsof clients. Perform other duties that may be assigned by management. Required Experience / Skills : 10+ years of CISO experience working in related field(s). Expert knowledge of cybersecurity frameworks and regulations including : NIST, ISO, CMMC, PCI, COBIT, DFARS, HIPAA, etc. Hands-on incident response coordination and oversight experience. Strong understanding of IT Risk and components, including application, infrastructure, network, and vendors. Bachelor’s degree in Computer Science, Accounting, MIS, or comparable work experience. Develop and present management level materials to effectively communicate and message to stakeholders. Relevant certifications such as CISA, CISM, or CISSP, or similar experience. The annual pay range for this role is $150,000 - 200,000. Company Background : Vistrada is a business, technology and management services firm dedicated to helping clients plan, design and implement initiatives supporting Cybersecurity, Business Transformation, Integrated Risk Management, and Managed Services. Vistrada provides seasoned expertise and a flexible team structure allowing agility and responsiveness to support client’s evolving needs. Our company operates nationally today with resources centered around NYC, Albany NY, Austin TX, Chicago, IL and Salt Lake City, UT. We have many resources who operate remotely and onsite as needed in a wider geography.Our business organization has four verticals and multiple cross competencies headed by leaders with more than 20+ years of experience on average Powered by JazzHR 802giW6b3U Create a job alert for this search Chief Information Security Officer • New York, NY, US #J-18808-Ljbffr

Paysera is the first fintech company in Lithuania and an EU licensed e-money institution. We provide fast, convenient, and affordable financial services globally. Our services range from a payment gateway for e-shops, a finance management app, and money transfers worldwide. With over 1 million app installs and growing, we aim to become an industry-leading super app that provides financial and lifestyle services across the globe. At Paysera, we are a start-up minded team, which means we thrive in a fast-paced environment and seek open communication while placing great focus on establishing our core company values. Join our vibrant international team of 500 people across 15 different cities worldwide.

The CISO (Chief Information Security Officer) is a senior-level executive responsible for developing and implementing an information security program, which includes procedures and policies designed to protect enterprise communications, systems, and assets from both internal and external threats.

• Responding to data breaches and other security incidents;
• Anticipating, assessing, and actively managing new and emerging threats;
• Developing, implementing, and maintaining security processes within departments, especially IS/IT (e.g., automated or manual security checks for delivered production code for products and services);
• Working with other executives across different departments to align security initiatives with broader business objectives and mitigate the risks various security threats pose to the organization's mission and goals;
• Establishing and revising the information security strategy, policy, and standards for change management and control with input from interest groups and subsidiaries;
• Facilitating and coordinating the necessary countermeasures to change management and control initiatives and evaluating such policies and standards;
• Establishing the security requirements for change management and control directives and approving the change management and control standards and change control/version control products;
• Coordinating the overall communication and awareness strategy for change management;
• Establishing and coordinating appropriate interest group forums to represent, feedback, implement, and monitor change management and control initiatives;
• Coordinating the implementation of new or additional security controls for change management;
• Acknowledging the change impact assessments;
• Working as an internal and external security expert;
• Becoming a trusted business advisor;
• Becoming a teacher, mentor, and colleague in other departments related to the position responsibilities;
• Establishing a security focus team as required;
• Maintaining a secure environment like PCI-DSS;
• Implementing position-related projects like SIEM by directly coordinating assigned team and/or specialists through project management and delivery processes;
• Conducting and/or coordinating security audits internally and externally;
• Performing routine daily tasks using ChatGPT or a similar tool to enhance efficiency and productivity.

• Analysis of standards, legal acts, and other documents establishing cyber and data security standards adopted by the Republic of Lithuania, the EU, and other international organizations;
• Ensuring compliance with established cyber and data security requirements;
• Identification, analysis, and assessment of risks arising from data processing and information security;
• Identifying, assessing, and proposing improvements to missing cyber and data security capabilities;
• Gathering information on cyber and data security;
• Analysis of cyber and data security threats;
• Participation in the development of cyber and data security capabilities;
• Preparation of company policies on information security issues;
• Cooperation with the supervisory authority in the field of personal data protection;
• Submission of quarterly reports to the Head of the Institution;
• Execution of other work assigned by the immediate supervisor;
• Implementing direct duties in accordance with the requirements of applicable legal acts, the procedures of the Institution, and other internal acts regulating the performance of the employee's functions and duties;
• Working as part of the Information Systems Department on security-related projects as a Project Manager;
• Implementing security-related processes within other departments;
• Hiring security personnel as required;
• Creating periodic reports on the company's security situation;
• Assisting the company as a main contact for external audits like PCI-DSS certification.

Only selected candidates will be contacted, but we are grateful to all who send their CV.

Lithuania, Bulgaria, Ukraine, Poland, Georgia. Depends on candidate's experience and competence.