Chief Information Security Officer
Chief Information Security Officer
Location: Remote in the United States
United States Citizenship Required
Active Government Security Clearance is a Plus
Summary BlueVoyant is looking for a Chief Information Security Officer to drive the success of our security and risk management offerings. The CISO will enable the company to reach this objective by developing and implementing the security strategy and practices to be followed across the enterprise. The CISO will be engaged in all aspects of corporate and product-focused operational security to both defend the organization and enable positive customer outcomes. This work will include internal reviews, compliance certifications, and incident response actions. The CISO is expected to lead an internal team of IT and Security professionals to deliver on these objectives. The individual will also be part of the C-suite team reporting to the CEO and the General Counsel while working directly with the CTO and internal business line leaders. The role has global responsibility, and may be performed remotely, with periodic travel to BlueVoyant’s New York, NY headquarters. Responsibilities and Duties
Lead BlueVoyant’s internal IT and Security Operations teams to deliver secure and successful business outcomes.
Develop and implement BlueVoyant’s information security strategy and roadmap by building a robust security architecture and policies based on business needs, risk assessments, and regulatory requirements.
Establish and maintain enterprise security policies, standards, and procedures aligned with business objectives and industry best practices.
Continually assess emerging security threats and adjust security strategies accordingly.
Identify, evaluate, and prioritize security risks across the organization.
Develop and maintain a risk management framework to mitigate risks effectively.
Manage the risk management program through planning, developing, coordinating, and implementing information technology disaster recovery and business continuity planning.
Oversee the design, implementation, and maintenance of security controls, technologies, and processes.
Coordinate incident response activities and lead efforts to mitigate security incidents.
Conduct regular security assessments and audits to ensure compliance and effectiveness.
Help ensure compliance with relevant laws, regulations, and industry standards (e.g., GDPR, HIPAA, ISO 27001).
Establish and maintain governance structures to support effective information security management.
Develop and deliver security awareness programs to educate employees about their roles and responsibilities in maintaining security.
Liaise with internal and external auditors and regulators in reviewing special investigations results, internal audits, research studies, forecasts, and modelling exercises to provide direction and guidance.
Develop and mentor the next generation of cybersecurity professionals.
Skills & Competency Requirements
Strong understanding of cybersecurity principles, frameworks, and technologies, including but not limited to NIST, ISO, CIS Controls, SIEM, IDS/IPS, DLP, encryption, and commercial cloud security.
Excellent leadership, communication, and interpersonal skills, with the ability to collaborate effectively across departments and influence stakeholders at all levels of the organization.
Strong analytical and problem-solving skills, with the ability to make risk-based decisions in a fast-paced environment.
Proven ability to lead and develop a diverse team of cybersecurity professionals.
Ability to quickly acclimate and confidently assert Information Security leadership in a fast-paced and rapidly changing environment.
Education & Professional Qualifications
Advanced degree from a recognized university in Computer Science, Information Technology, or a related field.
Minimum of 10 years of progressive cybersecurity experience, including at least 5 years in senior leadership roles, with a track record of successfully implementing and managing cybersecurity programs.
Experience in regulated industries (e.g., healthcare, finance, government) and familiarity with applicable regulations (e.g., HIPAA, GDPR, SOX) is a plus.
Industry certifications such as CISSP, CISM, CISA, or equivalent are highly desirable.
About BlueVoyant At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. Led by CEO, Jim Rosenthal, BlueVoyant’s highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts. BlueVoyant services utilize large real-time datasets with industry leading analytics and technologies. Founded in 2017 by Fortune 500 executives, including Executive Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Philippines, San Francisco, London, Budapest, and Latin America. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. BlueVoyant uses AI-assisted tools within our applicant tracking system to help identify candidates whose experience and skills best match the requirements of a role. This technology provides hiring teams with additional insights to support fair and efficient hiring decisions. Please note that all applications are reviewed by a member of our hiring team, and final hiring decisions are made by humans, not AI. By submitting your application, you acknowledge that AI tools may assist in the evaluation of your resume as part of the recruitment process. For more information on how we process your personal data, please review our Candidate Privacy Notice available at https://www.bluevoyant.com/candidate-privacy-notice. All employees must be authorized to work in the United States. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. Disclaimer: Please note that pursuant to contractual requirements and applicable law, in order for employees to perform work on some of the company’s federal contracts, U.S. citizenship is required. Accordingly, an employee’s ability to perform work on such contracts is contingent upon the company’s verification of the employee’s citizenship status. Furthermore, individuals may be subject to additional background checks and fingerprinting.
BlueVoyant Candidate Privacy Notice
To understand how we secure and manage your personal data upon submitting a job application, please see our Candidate Privacy Notice, which can be found here - Candidate Privacy Notice
About the job
Apply for this position
Chief Information Security Officer
Chief Information Security Officer
Location: Remote in the United States
United States Citizenship Required
Active Government Security Clearance is a Plus
Summary BlueVoyant is looking for a Chief Information Security Officer to drive the success of our security and risk management offerings. The CISO will enable the company to reach this objective by developing and implementing the security strategy and practices to be followed across the enterprise. The CISO will be engaged in all aspects of corporate and product-focused operational security to both defend the organization and enable positive customer outcomes. This work will include internal reviews, compliance certifications, and incident response actions. The CISO is expected to lead an internal team of IT and Security professionals to deliver on these objectives. The individual will also be part of the C-suite team reporting to the CEO and the General Counsel while working directly with the CTO and internal business line leaders. The role has global responsibility, and may be performed remotely, with periodic travel to BlueVoyant’s New York, NY headquarters. Responsibilities and Duties
Lead BlueVoyant’s internal IT and Security Operations teams to deliver secure and successful business outcomes.
Develop and implement BlueVoyant’s information security strategy and roadmap by building a robust security architecture and policies based on business needs, risk assessments, and regulatory requirements.
Establish and maintain enterprise security policies, standards, and procedures aligned with business objectives and industry best practices.
Continually assess emerging security threats and adjust security strategies accordingly.
Identify, evaluate, and prioritize security risks across the organization.
Develop and maintain a risk management framework to mitigate risks effectively.
Manage the risk management program through planning, developing, coordinating, and implementing information technology disaster recovery and business continuity planning.
Oversee the design, implementation, and maintenance of security controls, technologies, and processes.
Coordinate incident response activities and lead efforts to mitigate security incidents.
Conduct regular security assessments and audits to ensure compliance and effectiveness.
Help ensure compliance with relevant laws, regulations, and industry standards (e.g., GDPR, HIPAA, ISO 27001).
Establish and maintain governance structures to support effective information security management.
Develop and deliver security awareness programs to educate employees about their roles and responsibilities in maintaining security.
Liaise with internal and external auditors and regulators in reviewing special investigations results, internal audits, research studies, forecasts, and modelling exercises to provide direction and guidance.
Develop and mentor the next generation of cybersecurity professionals.
Skills & Competency Requirements
Strong understanding of cybersecurity principles, frameworks, and technologies, including but not limited to NIST, ISO, CIS Controls, SIEM, IDS/IPS, DLP, encryption, and commercial cloud security.
Excellent leadership, communication, and interpersonal skills, with the ability to collaborate effectively across departments and influence stakeholders at all levels of the organization.
Strong analytical and problem-solving skills, with the ability to make risk-based decisions in a fast-paced environment.
Proven ability to lead and develop a diverse team of cybersecurity professionals.
Ability to quickly acclimate and confidently assert Information Security leadership in a fast-paced and rapidly changing environment.
Education & Professional Qualifications
Advanced degree from a recognized university in Computer Science, Information Technology, or a related field.
Minimum of 10 years of progressive cybersecurity experience, including at least 5 years in senior leadership roles, with a track record of successfully implementing and managing cybersecurity programs.
Experience in regulated industries (e.g., healthcare, finance, government) and familiarity with applicable regulations (e.g., HIPAA, GDPR, SOX) is a plus.
Industry certifications such as CISSP, CISM, CISA, or equivalent are highly desirable.
About BlueVoyant At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. Led by CEO, Jim Rosenthal, BlueVoyant’s highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts. BlueVoyant services utilize large real-time datasets with industry leading analytics and technologies. Founded in 2017 by Fortune 500 executives, including Executive Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Philippines, San Francisco, London, Budapest, and Latin America. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. BlueVoyant uses AI-assisted tools within our applicant tracking system to help identify candidates whose experience and skills best match the requirements of a role. This technology provides hiring teams with additional insights to support fair and efficient hiring decisions. Please note that all applications are reviewed by a member of our hiring team, and final hiring decisions are made by humans, not AI. By submitting your application, you acknowledge that AI tools may assist in the evaluation of your resume as part of the recruitment process. For more information on how we process your personal data, please review our Candidate Privacy Notice available at https://www.bluevoyant.com/candidate-privacy-notice. All employees must be authorized to work in the United States. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. Disclaimer: Please note that pursuant to contractual requirements and applicable law, in order for employees to perform work on some of the company’s federal contracts, U.S. citizenship is required. Accordingly, an employee’s ability to perform work on such contracts is contingent upon the company’s verification of the employee’s citizenship status. Furthermore, individuals may be subject to additional background checks and fingerprinting.
BlueVoyant Candidate Privacy Notice
To understand how we secure and manage your personal data upon submitting a job application, please see our Candidate Privacy Notice, which can be found here - Candidate Privacy Notice