vCISO

We are seeking a Virtual Chief Information Security Officer (vCISO) to lead and elevate our clients’ cybersecurity initiatives. The vCISO will work with clients to develop and implement security strategies, manage cyber risks, ensure compliance with regulatory standards, and act as a critical liaison between the security team and other organizational units. This role also involves expanding the vCISO model across service lines and bundles, serving as a cornerstone for advanced and complete cybersecurity solutions. As a client-facing vCISO, you will play a pivotal role in safeguarding organizational assets. As a practice leader, you’ll lead our internal team of consultants, driving innovative security solutions for our clients. This position offers a unique opportunity to shape cybersecurity strategies and influence the broader adoption of advanced security practices. If you are a former CISO and a visionary leader with a passion for excellence in cybersecurity, we encourage you to apply.

Key Responsibilities:

• Design and oversee the execution of security strategies, policies, and procedures tailored to client organizational goals.

• Serve as an Evangelist by advocating for our organization, products, and cybersecurity mission.

• Engage customers, partners, and the broader community through storytelling, thought leadership, and public speaking.

• Build strong relationships to foster trust, loyalty, and long-term partnerships.

• Empower organizations to embrace cybersecurity as a critical enabler of growth and innovation.

• Use compelling narratives to drive change and inspire stakeholders to adopt advanced security practices.

• Align cybersecurity initiatives with overall business strategies to enhance resilience and efficiency.

• Conduct comprehensive cyber risk assessments to identify vulnerabilities and potential threats.

• Collaborate with stakeholders to implement risk mitigation strategies and maintain a secure environment.

• Guide organizations in meeting compliance benchmarks and regulatory requirements, including industry-specific standards.

• Regularly review and update security policies to align with evolving legal and regulatory frameworks.

• Act as a bridge between the security team and other departments to ensure cohesive cybersecurity integration.

• Communicate complex security concepts to non-technical stakeholders effectively

.• Map organizational strategies and security measures to cybersecurity frameworks (e.g., NIST, ISO 27001).

• Provide insights and recommendations for continuous improvement in security posture.

• Lead efforts to scale the vCISO model across diverse service lines and bundled offerings beyond Essentials.

• Serve as an anchor for Due Diligence Advanced and Complete releases, ensuring comprehensive security solutions.

Qualifications:

• Proven experience in a senior cybersecurity role, preferably as a CISO or vCISO.

• In-depth knowledge of cybersecurity frameworks, regulations, and risk management practices.

• Exceptional communication and interpersonal skills to collaborate across various organizational levels.

• Strong analytical and strategic planning abilities.

• Relevant certifications such as CISSP, CISM, or CISA is highly desirable.

Preferred Skills:

• Expertise in scaling cybersecurity models and managing service line expansions.

• Familiarity with industry-specific compliance requirements and emerging threat landscapes.

Application Instructions: To apply, please submit your resume and cover letter through our online application portal. Applications will be reviewed on a rolling basis until the position is filled.

Salary range: $170,000 - $210,000 + 20% annual bonus

Benefits include:

• 401(k)
• AD&D Insurance
• Dental Insurance
• Disability insurance
• Health insurance
• Life insurance
• Vision insurance
• Flex PTO program
• Paid certification and continuing education

Work schedule: Monday through Friday

Work hours: 40 hours a week

A little about DirectDefense

Since coming together in 2011 to form DirectDefense, our team has been committed to offering Cybersecurity defense strategies that are unmatched in the industry. Whether we are performing assessments of networks, platforms, and applications or applying managed services to improve your organization’s security posture, we are focused on providing world-class services that don’t just work–they work for you.

OUR MISSION

We establish partnerships with our clients based on trust and results. We leverage our deep industry knowledge and expertise to identify and remediate blind spots in your security program, provide meaningful visibility of your entire enterprise, and align your organization with security best practices and compliance standards.

OUR VISION

We aim to secure organizations across all industries against advanced threats and attacks in today’s world. Acting in partnership with organizations, we will provide unmatched information security services designed to improve your overall security posture, close gaps, and track vulnerabilities on an ongoing basis through continued education and support.

In accordance with applicable state laws, we are providing a good-faith estimate of the compensation range for this role. The anticipated salary range for this position is $170,000 to $210,000 per year. Actual compensation will be based on a variety of factors, including but not limited to the candidate’s qualifications, experience, skills, and location. This position may also be eligible for bonus incentives and a comprehensive benefits package.