Jobs · Information Technology · Massachusetts

Chief Information Security Officer (CISO)

Bitsight · Boston, MA · 1 mo ago
Information Technology$280k–$375k/yrFull-time

About the role

The Chief Information Security Officer (CISO) will lead and evolve Bitsight’s global security program. This role is both inward-facing and outward-facing, requiring a leader who can balance internal enterprise defense with external market influence.

Responsibilities

  • Security Operations, Risk Management & Resilience: Oversee security across endpoints, IAM, cloud infrastructure (AWS/Azure), SaaS applications, and data protection programs. Lead incident response, threat detection, and vulnerability management. Ensure our program keeps pace with a rapidly changing threat landscape, including AI-assisted phishing, GenAI attacks, and automated reconnaissance. Enable secure and responsible adoption of AI across the enterprise, balancing innovation velocity with appropriate governance, risk management, and protection of proprietary data assets. Define governance for secure enterprise AI adoption, including protecting proprietary datasets and responsible internal AI usage.

  • Secure-by-Design: Drive security architecture practices in close partnership with Engineering, Product, and Product Security teams. Lead enterprise risk assessments, mitigation planning, third-party risk, and business continuity initiatives.

  • Product Influence & Customer Trust: Partner closely with Engineering, Product, IT, Legal, GRC, People, Finance, and Go-To-Market teams to operationalize security initiatives across the business. Serve as an executive security sponsor in high-value customer, prospect, partner, and renewal conversations. Support customer trust initiatives, security reviews, audits, and executive briefings. Partner with Product and Research teams to inform Bitsight’s strategy around AI-powered cyber risk, emerging threat behaviors, and how customers can better understand and manage exposure in a changing threat environment.

  • Executive Advisory: Translate complex technical telemetry and AI-driven threats into clear business risk, options, and actionable guidance for the CEO, CFO, and Board. Establish security KPIs, metrics, and reporting frameworks to measure program effectiveness, operational maturity, and business impact. Partner with Legal, Privacy, and GRC to ensure rigorous adherence to SOC 2, ISO 27001, NIST, privacy obligations, and emerging global AI regulations.

  • Market Voice & Ambassadorship: Serve as one of the public faces of Bitsight’s security and AI strategy, representing the company with customers, analysts, industry groups, regulators, and media. Influence market understanding of how organizations can defend against AI-powered risks through better measurement, governance, prioritization, and continuous risk visibility. Build strategic relationships with fellow security leaders, analysts, regulators, and partners across the cybersecurity ecosystem.

Requirements

  • Extensive Security Leadership: 10+ years of experience in cybersecurity, information security, or risk management, including 5+ years leading enterprise, corporate, or product-adjacent security organizations in high-growth SaaS, cloud, technology, or cybersecurity companies.

  • Program Scaling & Maturation: Proven experience building, scaling, and maturing modern security programs across cloud-native, data-rich, and globally distributed environments.

  • Technical & Threat Leadership: A deep, hands-on background in modern cloud-native security including: IAM, incident response, DLP, and vulnerability management. Expert-level understanding of the evolving threat landscape, specifically AI-enabled risks such as GenAI attacks and automated reconnaissance.

  • Compliance & Governance: Strong, practical experience with compliance and governance frameworks, including SOC 2, ISO 27001, NIST, and related standards.

  • Boston Presence: Ability to be in our Boston headquarters regularly to collaborate with the executive team and lead the local security culture.

Qualifications

  • Leadership, Culture & Presence: An exceptional communicator with sound judgment and the ability to serve as a steady hand during crises, combined with a deep commitment to mentorship, cross-functional collaboration, and driving a robust security culture at scale.

  • Risk Translation & Strategic Focus: The ability to translate complex technical risks—including AI-driven threats—into clear business impact, options, tradeoffs, and actionable guidance. Contributes credibly to product, market, and thought leadership discussions without losing focus on day-to-day operational security execution.

  • Market Instincts & Intellectual Curiosity: A student of how LLMs and automation are changing the adversary's playbook. Leverages this curiosity alongside strong customer-facing instincts to build trust with sophisticated security, risk, and executive buyers.

Skills

  • Strategic Thinking: Ability to think strategically and translate complex technical risks into actionable business guidance.

  • Operational Excellence: Proven track record of improving security operations and processes.

  • Customer-Centric: Ability to build and maintain strong relationships with customers and partners.

  • Adaptability: Flexibility to adapt to rapidly changing security landscapes and technologies.

  • Collaboration: Strong interpersonal and communication skills to work effectively with cross-functional teams.

Benefits

  • Competitive Base Salary Range: US $280,000 to $375,000 annually for US-based employees.

  • Annual Bonus & Commission Plan: Eligible for participation in a bonus or commission plan.

  • Equity Grant: Eligible for an equity grant.

  • Benefits Package: Includes medical, dental, and vision insurance; paid parental leave; flexible time off; a 401(k) plan with employee and company contribution opportunities; life and disability insurance; and tuition reimbursement.

Pay

A competitive base salary range of US $280,000 to $375,000 annually for US-based employees.

Schedule

Full-time work schedule.

Similar jobs