Chief Information Security Officer

Devo replaces traditional SIEMs with a real-time security data platform. Its integrated platform serves as the foundation of security operations and includes data-powered SIEM, SOAR, and UEBA. AI and intelligent automation help security teams work faster and smarter so they can make the right decisions in real time. Headquartered in Boston, Mass., Devo is backed by Insight Partners, Georgian, and Bessemer Venture Partners. Learn more at www.devo.com.Job Summary: Devo is searching for a Vice-President, CISO. The ideal candidate requires a working knowledge of information security technologies and experience in an enterprise-grade software development organization. In this role you will proactively work with the CISO team as well as Product Engineering teams to help implement practices that meet defined policies and standards for information security. Additionally, you will be responsible for overseeing the application security function to ensure that security tools and standards are integrated into the development lifecycle. You will also be managing the product information security program to build and execute product-level cyber strategy, training, processes, and fundamentals to increase and mature our cyber risk posture. Additionally, supporting the business to ensure that information security risks are understood as part of any Merger and Acquisition activity.Responsibilities

• Monitor and make recommendations to improve the enterprise information security risk management program, facilitating information security governance topics and status
• Support achievement of business goals by prioritizing data, application/product security and coordinating the evaluation, and deployment of current and future security technologies.
• Assess and propose solutions to enhance a strategic, comprehensive enterprise wide cyber and information security program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization.
• Help with the enforcement of security policies, standards, guidelines, and procedures based on industry-standard best practices as well as assess and deploy emerging technologies that enable the firm to better manage and monitor the security posture.
• Build strong relationships with stakeholders across the company in order to enhance appropriate security controls to protect the enterprise and product, making sure data security remains a top priority.
• Partner closely with business stakeholders, especially technology and risk, to ensure that all applications and platforms are developed with security in mind and that appropriate security controls have been implemented.
• Work cross functionally to evaluate and prepare the security function for current and future acquisitions, mergers, and new business ventures.
• Building and implementing strategy, working with external stakeholders, including customers, vendors and regulators regarding assurance and diligence reviews.
• Work closely with IT, Infrastructure, Cloud Ops, and other technology teams in the product lines to help secure information, computer, network, cloud, and processing systems.
• Lead a small team of InfoSec professionals and mentor the more junior teams to ensure their continued success.

Requirements

• 10+ years’ experience within the information security domain.
• CISM, CISA, GIAC, CISSP, or similar certifications
• Clear understanding of the evolving needs within the cybersecurity function and strong relationships with the vendor and security community.
• Effective and comfortable working with various stakeholders without full accountability or reporting.
• Experience integrating mergers and acquisitions preferred.
• Highly technical, confident at the operational management level.
• Experience with highly sensitive data and maintaining its security as a top priority; understanding big data and technology at scale.
• Understanding of public and private cloud, security tools to monitor and support cloud adoption, and the latest tools and methodologies as it relates to cloud security.
• Strong quantitative and analytical abilities.
• Forward thinking; ability to think outside the box to anticipate potential new threats and remain creative in solutions delivery.
• Ability to anticipate the unknown, willingness to see past the present and continually innovate and create new ways to remain at the forefront of security.
• Strong leader, team player, contributor, and collaborator.
• Prior experience in a regulated environment preferred but not required.
• Proponent of continuous improvement process and the ability to challenge the status quo.

Background Experiences:

• Recognized capacity to manage multiple initiatives simultaneously (and shift back and forth effectively among activities) to produce positive results in a dynamic environment prioritizing and managing from development to submission
• Demonstrated experience creating and delivering professional presentations to both technology and business executives
• Ability to manage people and processes through influence (vs. direct authority) to optimize resources
• Collaborative approach to driving success across geographically dispersed teams

Why work at Devo?

• Be part of an international company with a strong team culture that celebrates success. Share our core values: Be bold - Be Inventive - Be humble - Be an ally.
• Work in an environment that will challenge you and enable you to grow as a professional with training and professional development to help you reach your goals.
• Comprehensive Benefits including Healthcare 401K,  Employee Stock Option plan,  Employee referral program, and so much more!