Chief Information Security Officer (CISO)

Established in 2022, Guardz rapidly emerged as a noteworthy player in the cybersecurity sphere, securing $30M in funding and rallying a dedicated team of 50 industry professionals. Our vision is to foster a safer digital landscape for small and medium businesses across the globe. To this end, we introduced our comprehensive all-in-one Secure & Insure platform in early 2023, and continue to grow and expand our team, our partnerships and our revenue.

We are seeking a skilled and experienced Chief Information Security Officer to join our team. This role is critical to ensuring the protection of our internal systems and ensuring that our innovative platform is backed by the highest standards of security and compliance. The ideal candidate will have a strong background in cybersecurity and proven experience as a CISO. In addition, we are looking for someone who can be a key contributor to the development and refinement of our cybersecurity platform. You will examine our product's features and provide valuable insights to our product and software teams.

Responsibilities:

• Develop and implement security policies and procedures to enhance the security of the company's IT environment.
• Develop, implement, and maintain a comprehensive information security strategy to protect company data, production systems, and networks from threats; ensure compliance with relevant security standards, regulations, and best practices (PCI DSS, SOX, ISO 27001, etc).
• Serve as an internal customer for our cybersecurity platform, providing valuable feedback on new features and product enhancements.
• Collaborate with product development teams to provide insights and recommendations for improving the platform's functionality, usability, and security.
  
  

• 5+ years of experience in cybersecurity roles, experience in a CISO role or equivalent is preferred.
• Relevant certifications (e.g., CISSP, CISM, CompTIA Security+) are highly desirable.
• Deep understanding of cybersecurity principles, including threat detection, incident response, and risk management.
• Network communication, Endpoint security, and device management understanding - EDR, SSO, MDM, Firewalls, Switches, SIEM/SOAR, etc.
• Knowledge and HO experience in cloud platforms security, e.g. AWS/GCP/Azure.
• Proven experience delivering PCI-DSS, SOC 2 Type 1 and Type 2, ISO 27001, and SOX 404 gap assessments and audits, and compliance with privacy regulations like CCPA and GDPR.
• Excellent written and verbal communication skills, with the ability to convey complex technical information to various stakeholders.