Why We Need You

The CISO, reporting into the CTO, will lead our security organization that is responsible for our product security operations, securing the technology and products, and supporting corporate development, sales, compliance, and IT teams. The CISO will provide strategic direction, technical expertise, and operational leadership to ensure that our company's information security and compliance programs are effective, efficient, and aligned with our business objectives. This will require a close partnership with the CIO organization (also reports to the CTO) to coordinate product security, compliance and risk (owned by CISO) with corporate information security (owned by CIO). The successful candidate will have a strong technical background and experience in bringing technical solutions to address security-related issues while communicating and managing security risks across the leadership teams.

The CISO function works closely with many departments across PagerDuty including products, engineering, legal, sales, compliance, IT, and internal audit to manage identified risks and partner to mitigate vulnerabilities in software, systems, architecture, processes and practices. 

How You Impact Our Vision:

• Recruit, retain and develop top talent; enable and empower them to thrive
• Ensure alignment of the information security and compliance programs with industry standards, best practices, and regulatory requirements
• Develop and maintain policies, procedures, and guidelines for information security and compliance
• Develop and maintain technical solutions to address security risks, threats, and vulnerabilities
• Manage and respond to security investigations, incidents, breaches, and other related events
• Develop and maintain relationships with internal and external stakeholders, including regulators, industry groups, and third-party vendors
• Develop and deliver training and awareness programs for employees, contractors, and partners
• Ensure that the company's risk management program is integrated with the information security and compliance programs and clearly communicated to leadership teams
• Develop and maintain metrics and key performance indicators (KPIs) to measure the effectiveness of the information security and compliance programs
• Strategic partnership with corporate development and sales that help the company grow and lead the market

About You (Skills and Experience) - more details on the skills of the ideal candidate

• You have led and grown security organizations at an executive level in high-growth public SaaS companies 
• Excellent communication, interpersonal, and leadership skills
• Demonstrated ability to work in a fast-paced, dynamic environment
• Demonstrated experience in developing and maintaining information security and compliance programs and policies
• Successful in partnering closely with Product/Engineering teams to drive security programs
• Experience as a builder or breaker in your past
• Current security certifications, including CISSP, CISM, or equivalent
• Experience leading functions in your organization that cover:
• Securing highly dynamic cloud environments (AWS, Azure, Google)
• Securing high-velocity workflows in Continuous Integration and Continuous Deployment environments
• Security Operations and Controls
• Leading and directing technical staff in the execution of security programs and project initiatives
• Crafting and leading compliance programs for the business
• Customer trust deeply engaged with our sales and legal teams
• Business continuity management, and disaster recovery
• Performing and leading information security related audits
• Strong knowledge of information security frameworks, standards, and best practices, including FedRAMP, NIST, ISO 27001, SOC 2, and GDPR