SecurityBoat StratOps Member (vCISO)
We are looking for highly
skilled cybersecurity professionals to join SecurityBoat
as vCISO consultants on a contract basis. As a vCISO,
you will act as the virtual security leader for our
clients—providing strategic direction, regulatory
compliance support, risk management leadership, and
technical oversight. You will help organizations build,
implement, and manage their entire security program
across cloud and on-prem environments.
This is a
flexible, remote-friendly opportunity ideal for
experienced security leaders who want to work across
diverse industries like fin tech, SaaS, healthcare, and
manufacturing—without the limitations of a full-time
corporate role.
Key Responsibilities:
- Develop and implement comprehensive security policies, procedures, and frameworks (e.g., NIST CSF, ISO 27001, GDPR, HIPAA, PCI DSS).
- Lead cybersecurity risk management efforts, identifying vulnerabilities and proactively addressing security gaps.
- Coordinate incident response activities, manage disaster recovery planning, and oversee cybersecurity incident recovery efforts.
- Educate and mentor client teams, promoting cybersecurity awareness and best practices.
- Continuously evaluate and manage the cybersecurity risk posture, reporting to senior executives and boards.
- Oversee compliance with evolving regulatory requirements and industry-specific standards.
- Strategically guide cybersecurity investments, aligning resource allocation with business objectives.
- Collaborate with client executives to develop a security-centric business culture.
Requirements
- Background in information security, IT, risk management, or related fields. Auditing experience is beneficial.
- 8-10 years of extensive cybersecurity experience with leadership roles (CISO, Security Manager, or similar).
- Deep knowledge of data governance, compliance structures, and cybersecurity frameworks.
- Proven ability to evaluate risks, assign business value to security initiatives, and trigger proactive security improvements.
- Expertise in bridging communication between technical teams and non-technical executives.
- Strong leadership qualities, including mentorship, strategic thinking, and calmness under pressure.
- Previous experience across multiple industries (finance, healthcare, technology) is advantageous.
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA)
- ISO 27001 Lead Auditor/Implementer
Benefits
- Flexible engagements tailored to professional and personal goals.
- Competitive compensation structure.
- Exposure to diverse, industry-leading projects.
- Access to specialized expertise and a collaborative cybersecurity team.
- Professional development opportunities and recognition within the cybersecurity community.
- Cost-effective for clients—reducing hiring, onboarding, and turnover costs