The CISO, reporting into the CTO, will lead our security organization that is responsible for our security operations, securing the technology and products, and supporting corporate development, sales, compliance, and audit teams. You will lead all information security and data protection initiatives. The CISO function works closely with various teams across PagerDuty including products, engineering, legal, sales, compliance, and audit to manage inherent risks and mitigate vulnerabilities in software, systems, architecture, processes and practices. We are looking for someone who can bring technical expertise and risk management experience while at the same time a critical, action oriented leader that is comfortable working cross functionally.
The security organization goals and primary responsibilities are:
- Protection of the confidentiality, availability, and integrity of customer data and building/maintaining customer trust.
- Partner with product/engineering, corporate operations, and employees to build and maintain a security-aware culture where everyone understands and plays their part
- Provide thought leadership on modern security operations and be an industry leader in creating trust through security.
- Supporting go-to-market initiatives in both pre- and post-sales motions to leverage security and compliance as a mechanism for business value
- Achieve and maintain core certifications that credentialize PagerDuty in the marketplace and increase PagerDuty's total addressable market
- Define, measure, and report on security program KPIs that illustrate program maturity and what 'good' looks like, to employees, senior leadership, and the Board/Audit Committee
- Build a diverse and inclusive security team that scales efficiently as the company grows and creates opportunities for career growth & advancement
How You Impact Our Vision:
- Retain and recruit top talent; enable and empower them to thrive
- Strong partnership across Engineering, Product, Marketing, Finance, and People organizations
- Align your organization's goals with PagerDuty in a manner that provides clarity of purpose, motivation, and inspires creativity ensuring the security function provides organizational value
- Create and own the long term vision and strategy that is communicated regularly to inspire confidence and generate excitement
- Anticipate strategic and scaling related challenges with thoughtful long term planning through collaboration with key stakeholders
- Embrace opportunities to take new risks to learn quickly
- Support a culture that allows the organization to champion the customer, aim higher, and continuously improve in everything it does
- Consistent delivery against commitments, with ample visibility into progress, challenges, and outcomes
- Strategic partnership with corporate development activities that help the company grow and lead the market
Requirements of role:
- You have led and grown security organizations at an executive level in high growth SaaS environments at scale
- Experience as a builder or breaker in your past
- Current security certifications, including CISSP or CISM are helpful.
- Experience with:
- Securing highly dynamic cloud environments is useful (AWS, Azure, Google Compute)
- Securing high velocity workflows in Continuous Integration and Continuous Deployment environments
- Security Operations and Controls
- Leading and directing technical staff in the execution of security program and project initiatives
- Crafting and leading compliance programs for the business
- Business continuity management, and disaster recovery
- Performing and leading information security related audits
- Familiarity with GDPR, ISO27001, SOC, and FedRAMP are all useful for this role