Chief Information Security Officer

Executive / CISO
Washington, District of Columbia, US
May 17, 2026
$248000 - $400000 / year
Full Time
Apply Now

Job Description

Company: Public Company Accounting Oversight Board (PCAOB)

Location: Washington, US

Join Us and Make a Difference in Global Investor Protection

The Public Company Accounting Oversight Board (PCAOB) is a nonprofit organization established by Congress. We oversee the audits of public companies and SEC‑registered brokers and dealers to protect investors and advance the public interest by ensuring independent, accurate, and informative audit reports.

Who We Are

Our mission focuses on modernizing audit standards, enhancing audit inspections, and strengthening enforcement of PCAOB rules and other related laws. People are at the heart of our work, and we strive to uphold the highest standards in audit quality while keeping investor families and futures in mind.

What We Offer

At the PCAOB, we offer a highly competitive compensation and benefits package focused on the health and financial well‑being of our valued team members.

• Salary range: $248,100 – $400,000 per year (Washington, DC or New York, NY). Performance‑based discretionary awards may also be available.

• Hybrid work option – staff assigned to Washington, DC or New York, NY office.

• Generous paid time off – up to 6 weeks annually plus 12 federal holidays, 2 floating holidays and a year‑end break (Dec 28–31, 2026).

• Competitive 401(k) match and savings options – up to 7 % of eligible compensation, with immediate vesting and dollar‑for‑dollar matching. Roth in‑plan conversion available.

• Comprehensive health benefits – medical, dental, vision plans.

• Paid family leave – up to 16 weeks of paid parental leave and up to 16 weeks of paid caregiver leave.

• Life insurance – basic life and AD&D insurance, with supplemental options.

• Education benefits – eligibility for Public Service Loan Forgiveness (PSLF), student‑loan repayment assistance, college tuition assistance, and coach program support.

• Well‑being and family resources – mental‑health resources, paid volunteer time, emergency child/adult backup care, family‑forming assistance, discounted gym memberships, employee assistance program (EAP), health advocate program.

• Commuter benefits – tax‑free employer subsidy and pre‑tax employee deductions.

Position Summary

We have a full‑time Chief Information Security Officer (CISO) position in the Office of Technology (OT). The role is located at our Washington, DC headquarters or New York, NY office and reports to the Chief Information Officer (CIO). The CISO will participate in the PCAOB leadership team, advise the CIO, PCAOB executive leadership, and the Board on all information security and cybersecurity matters, and will lead the development and implementation of a comprehensive security strategy.

Responsibilities

• Lead the strategic planning, implementation, monitoring, reporting, and continuous improvement of the PCAOB’s information security program.

• Collaborate with PCAOB leadership and divisions to mature a PCAOB‑wide information‑security organization.

• Work closely with risk, compliance, legal, and business stakeholders to secure innovation and the use of artificial intelligence.

• Promote automation for configuration and deployment in support of Security Operations (SecOps) and manage institutional‑wide security processes.

• Assess and recommend IT general and security controls for the PCAOB and its technology systems.

• Develop and administer technical cybersecurity standards and tools that align with existing PCAOB policies and frameworks.

• Design and implement a tactical structure for the Security Operations Center (SOC).

• Establish annual and long‑term cybersecurity and compliance goals, KPI metrics, and a multi‑year roadmap aligned with data and technology strategies.

• Identify, assess, and prioritize IT risks, vendor and third‑party risks, and partner with OERM on mitigation plans.

• Lead a technical team that implements security controls across the PCAOB.

• Develop and implement frameworks and policies to safeguard sensitive data per the PCAOB’s Information Sensitivity Classification.

• Collaborate with the CRO to report OERM risk to the Board, supporting business objectives.

• Maintain a modern compliance model for cybersecurity safeguards, including access controls, MFA, encryption, asset classification, change management, patch management, network segmentation, firewalls, detection technologies, insider threat protection, logging, and vulnerability management.

• Support security assessments, tabletop exercises, penetration tests, playbook development, and red/purple‑team exercises.

• Act as the primary control point during significant information‑security incidents, convening the Security Incident Response Team (SIRT) as required.

• Lead education and awareness programs and advise leaders on security best practices.

• Review new technologies for security compliance.

• Perform supervisory duties – resource allocation, performance evaluation, personnel decisions, conflict resolution, and training needs.

• Other duties as assigned.

Qualifications

• Bachelor’s degree or equivalent experience in information technology, engineering, computer science, cybersecurity, or a related field.

• 15+ years of cybersecurity experience, 5+ years in progressive leadership roles.

• 7+ years of experience supporting reference architectures in Microsoft Technology environments.

• 5+ years of Agile experience managing Scrum/Kanban teams.

• 5+ years of cloud computing / elastic computing experience across virtualized environments.

• Knowledge of Data Loss Prevention (DLP) programs and best practices.

• Hands‑on experience implementing NIST, ISO, SOX, PCI, or other frameworks.

• Knowledge of security architectures and compliance practices with Microsoft Azure, CASB, and zero‑trust environments.

• Experience with contract and vendor negotiations and managed‑services management.

• Experience in planning, organizing, and developing IT security system technologies.

• Ability to explain information‑security, cyber‑security, and data‑privacy issues to non‑technical audiences.

• Proven ability to develop, coach, and mentor staff with clear feedback.

• Proven record of strategic planning, functional transformation, and conflict management.

• A self‑starter capable of handling multiple open assignments with autonomy.

• In‑depth experience harmonizing diverse interests.

• Strong analytical and reasoning skills; ability to present evidence and impartiality.

• Ability to represent the organization internally and externally, translating business needs into technology solutions.

• Occasional travel to PCAOB regional offices.

• Superior verbal and written communication skills.

• Must be legally authorized to work in the United States without employer sponsorship.

Preferred Qualifications

• CISM, CISSP, CRISC, or other relevant certification.

Leadership/Management Skills And Abilities

• Ability to work in matrixed and Agile operating frameworks.

• Ability to thrive amid change and drive continuous improvement.

• Drive a positive “tone at the top” and hold others accountable.

• Consistently align behavior with the highest ethical standards.

• Motivate and inspire employees at all organizational levels.

• Demonstrated success in building and maintaining positive relationships internally and externally.

• Strong credibility, organization, problem‑solving, and clear communication.

• Balance and emotional intelligence across diverse divisions and offices.

• Resolve conflict timely and productively.

Equal Employment Opportunity

All PCAOB employees are entitled to an equal‑opportunity and professional work environment free of discrimination and harassment. We consider qualified applicants with criminal histories in a manner consistent with applicable law.

Source: JobLeads

Related Jobs