Immediate – Remote – Chief Information Security Officer – (CISO) with 15+years certification is must – Preferred East Coast

Job Description

Company: Spruce Technology Inc.

Location: US

Dear All,

Good day.

We have immediate join open for Chief Information Security officer with the below details as follows:

Interested do please me your update resume to contact details : shahATsprucetechDOTcom and (Nine Seven Three) (Five Two Eight) (Five Seven Seven Eight)

Title: Chief Information Security Officer – (CISO) with 15 + years certification is must

Remote – 100%

Duration:12 months

Immediate joiner

Client – State of client

Open – 6 positions onboarding

Job Description

The Chief Information Security Officer (CISO) is responsible for establishing and maintaining the organization’s enterprise vision, strategy, and cybersecurity program to ensure information assets, technologies, and data are adequately protected. The CISO leads security governance, risk management, compliance, incident response, and cybersecurity operations across the organization.

Key Responsibilities

Cybersecurity Strategy & Leadership

Develop and implement the organization’s information security strategy and roadmap.

Align cybersecurity initiatives with business objectives and regulatory requirements.

Advise executive leadership and the board on cyber risks and mitigation strategies.

Build and lead high-performing cybersecurity teams.

Security Governance & Compliance

Establish security policies, standards, and procedures.

Ensure compliance with industry regulations and standards such as:

ISO 27001

NIST

GDPR

PCI-DSS

SOC 2

Lead internal and external security audits.

Risk Management

Identify, assess, and mitigate cybersecurity risks.

Conduct enterprise risk assessments and vulnerability management programs.

Develop business continuity and disaster recovery strategies.

Security Operations

Oversee Security Operations Center (SOC), SIEM, endpoint security, and threat intelligence.

Ensure proactive monitoring, detection, and response to cyber threats.

Manage incident response and forensic investigations.

Cloud & Infrastructure Security

Secure cloud platforms, networks, applications, and enterprise infrastructure.

Implement Zero Trust and identity access management strategies.

Evaluate security architecture and emerging technologies.

Vendor & Third-Party Security

Assess third-party security risks.

Ensure vendors comply with organizational security requirements.

Security Awareness

Promote cybersecurity awareness and training programs across the organization.

Required Qualifications

Bachelor’s degree in

Computer Science

Information Security

Cybersecurity

Information Technology

Related field

Master’s degree preferred (MBA or Cybersecurity specialization is an advantage).

15–20+ years of IT/security experience.

10–15+ years in senior cybersecurity leadership roles.

Required Certifications

Preferred / Highly Valued Certifications

Certified Information Systems Security Professional (CISSP)

Certified Information Security Manager (CISM)

Certified in Risk and Information Systems Control (CRISC)

Certified Cloud Security Professional (CCSP)

ISO/IEC 27001 Lead Implementer

ISO/IEC 27001 Lead Auditor

Certified Ethical Hacker (CEH)

GIAC Security Leadership Certification (GSLC)

AWS Certified Security – Specialty

Microsoft Certified: Cybersecurity Architect Expert

Source: BeBee