Chief Information Security Officer Full Time

At MissionWired, we help clients create revolutionary digital strategies that advance their mission, change our country, and have a positive impact on the world.

We’re digital-obsessed, tech-savvy do-gooders who care deeply about social change. We’ve brought digital strategies to life for nonprofit organizations working around the world, including Save the Children, Sandy Hook Promise, and Friends of the Earth, as well as progressive political organizations, campaigns and candidates. This cycle, we’re excited to support the DGA in flipping and protecting governorships across the country while expanding the Democratic majority in the Senate via our work with the DSCC, Sen. Raphael Warnock, Rep. Val Demings, Sen. Catherine Cortez Masto and Sen. Maggie Hassan.

We’re an equal-opportunity employer and take seriously our commitment to equality and equity. Our efforts to be inclusive and create opportunity don’t end when someone joins us – they begin.

We’ve set our sights on changing the world through our work and with our clients, and representation is at the foundation of what we do. We know that diversity of thought and background makes us stronger. That’s why we’re committed to building and maintaining a diverse community.

Every new team member broadens our perspective and allows us to think bigger. We’ll be at our best when people from underrepresented communities and people with a range of perspectives and lived experiences want to come, stay, and push the boundaries of what’s possible.

Overview: MissionWired is looking for a Chief Information Security Officer responsible for developing and implementing our IT and cybersecurity strategy. The CISO leads the team responsible for day-to-day security operations, defining security architecture and strategy, ensuring compliance and modernization, managing vendor partners, and helping to develop the IT team. We work with large, nationally known partners, who count on us to protect their supporters’ data. It’s a charge we take seriously. We’re looking for someone who can alternate between leading strategic objectives and acting as an individual contributor in areas ranging from system administration to procurement.

This position reports to the Chief Technology Officer, with a dotted-line connection directly to the CEO. This role will partner closely with the leaders of our Engineering, Product, Data Science, and Operations teams to ensure that ownership and implementation of our cybersecurity program is fully cross-departmental.

You will be responsible for:

• Security and IT architecture. Developing the security vision and managing the implementation of best-in-class systems and processes;
• Governance and compliance. Ensuring our security and IT programs meet or exceed industry best practices and have appropriate executive support;
• Application and infrastructure security alignment. In our production environment, implement security controls and measure progress against objectives, including data flows with key partners;
• Leadership and responsibility for the IT and security teams. This includes recruiting new team members and building out career paths for staff.
• Defining and promoting the security and IT roadmap for the organization and integrating with MissionWired’s overall technology and program roadmap;
• Running security operations, including monitoring and alerting of system health and improving security controls;
• Incident response planning and execution, including pre-incident functions like log aggregation and monitoring; and
• Program management of security projects across the organization including engineering, Legal, HR, Operations, and IT.

Must-have qualifications:

• Experience working on security incidents, including working with executive leadership, outside counsel, incident response firms, and ecosystem partners;
• Experience helping teams and organizations refactor their workflows and the tools they use to align with a “secure by default” strategy;
• Experience developing and maintaining a comprehensive information security program using an established framework;
• Experience identifying and managing technical, security, and process debt;
• Hands-on experience with enterprise and production systems and technologies such as Okta, G Suite, AWS, and GCP;
• An ability to work well with a range of people from extremely technical team members to non-technical business leaders; and
• A track record of assessing threats, vulnerabilities, and risks from a business as well as a technical perspective and the ability to develop and champion affordable, efficient, and timely security architectures and solutions that support the organization.

Nice-to-have qualifications:

• Certifications or licenses with any of the following: CCSP, CISSP GDPR, CCPA, NIST, CEH, or similar;
• Experience developing CCPA and GDPR protocols;
• A background in securing tech organizations at multiple levels of scale, from small ephemeral startups to large, well-resourced organizations;
• Experience communicating information security concepts to a broad range of technical and non-technical audiences; and
• Demonstrated success in establishing executive relationships and influencing executive decision making of business and technology leaders.

Salary for this role begins at $170,000 per year, depending on experience.

If you feel you can do the job and are excited about this opportunity but are not sure if you meet all the qualifications, consider applying anyway. We’d love to hear from you!

Tagged as: security engineering