Go to job search

Chief Information Security Officer

Cognism

Chief Information Security Officer

Salary Not Specified

Cognism, City of Westminster

  • Full time
  • Permanent
  • Onsite working

Posted 2 weeks ago, 4 May | Get your application in now before you miss out!

Closing date: Closing date not specified

job Ref: ca8efc30f7f0464c9a6f05384e4622c8

Full Job Description

The CISO is the key leader in the Cognism Information Risk and Security program and is ultimately responsible for the strategy, architecture, processes, and procedures that protect Cognism and client assets. The successful candidate is responsible for creating, training, and retaining Security team members, budget management, developing effective relationships with all Cognism teams and leaders, providing insights into threats, vulnerabilities, risks, and ways to reduce or mitigate these. The successful candidate will collaborate, influence and support both Security teams and the enterprise teams including Development, Product, Sales, and administrative functions.

The successful candidate is responsible for developing policy and standards, and ensuring these are properly communicated to all necessary team members and stakeholders. The successful candidate is responsible for ensuring policy and standards are enforced and governed as needed and reporting on or remediating noncompliance situations. The successful candidate is responsible for developing relationships within the industry and law enforcement as needed. The successful candidate will be hands-on in technical and architecture roles, not just an administrative role.,

  • Provide information risk management and security guidance to security teams, internal groups and development teams.

  • Advise on industry leading practices and internal best practices for secure deployments, security architecture, and integration with security control frameworks.

  • Advises and assists on security architecture and design.

  • Develops and oversees security control objectives.

  • Oversee the implementation and operation of controls to meet identified security control objectives.

  • Advise operations teams supporting computer security incident response activities related to intrusion detection monitoring, scanning, cyber threat reporting, and development/implementation of vulnerability mitigation strategies.

  • Assist in the development of specifications and requirements for complex computer network security for Cognism information and technical infrastructure.

  • Assist Business, IT and vendor management teams in the evaluation of vendor proposals, new and existing security designs, and with support from the Security Architecture Lead, emerging security technologies and systems.

  • Develop trusted advisor relationships for information risk management and security with key stakeholders and internal groups.

  • Act as the customer gateway for security requests and responses.

  • Develop and enhance methods and practices that can be used by security to provide repeatable and scalable engagements.

  • Develop and refine the engagement model and improve end-to-end engagement and satisfaction of business and technology customers and partners.

  • Actively contribute to security knowledge management capabilities to enable IRM internal knowledge sharing and customer self-service capabilities.

  • Maintain visibility across the lines of business and the enterprise, representing security.

  • Using knowledge gained in participation within Cognism initiatives to help appropriately shape the direction of security's overall strategy and accompanying roadmap plans to ensure the closest possible alignment.

  • Selects, assigns, trains, and evaluates direct reports and recommends or initiates associated human resources actions.

  • Develops and recommends budget for the department and administers budget in accordance with Cognism policy. Monitors actual expenditures and addresses variances to approved budget.

  • Develops programs, policies or procedures and oversees implementation as approved.

  • Other duties as assigned., Solves Problems and Makes Good Decisions: Evaluates critical information needed to understand problems, determine probable causes, and develop workable solutions. Accurately assesses the costs, benefits, and risks associated with alternative courses of action and makes high quality and timely decisions.


    • Leads Change: Sees emerging patterns and opportunities. Adapts quickly and easily to new information, changing conditions or unexpected events. Facilitates and communicates change across the team or organization to drive adoption.

    Lives Our Values: Behaves in a way that consistently demonstrates commitment to Cognism values. Our people:
  • Are Nice!

  • Are Collaborative. We're in this together!

  • Are Solution-Focused. For every problem, we've got a solution!

  • Are Understanding.

  • Celebrate Individual Contributors.


    • Information Security and Compliance: Demonstrates understanding of Cognism policies, procedures, and external regulatory requirements, and performs duties in accordance with such regulatory requirements. Assures confidentiality and security of all data. Demonstrates the skills, knowledge, and ability to ensure that our environment is a safe one, complying with industry standards.

    Shapes the Future: Recognizes trends and their impact on the business. Accurately forecasts opportunities and obstacles, clearly defines a future state, sets the direction, and lead others toward the goal. Communicates the purpose and strategy in a way that inspires people to embrace it and make it their own.

    Builds and Enables Great Teams: Attracts and selects strong talent. Provides guidance, feedback, coaching, and development to help people succeed and grow. Recognizes and rewards exceptional performance.

    This role is a position requiring advanced technical and organizational skills with the ability to think strategically, act tactically and advocate and influence positive transformation within the broader Information Technology organization., Communicates With Impact: Presents information and ideas in a thoughtful and compelling manner. Is clear and concise in verbal and written communications. Shares information freely and speaks openly and honestly. Seeks to understand the perspectives of others., The successful candidate will have a strong technical background as well as security background including:
  • Background in IT Platforms and their security including:


  • Security by Design approach.

  • Amazon AWS environment and control capabilities.

  • Microsoft 365 and Azure environment and control capabilities.

  • Experience in operating and securing in SaaS operating models.

  • Experience in operating and securing a DevOps and DevSecOps environment.

  • PC's (Mac, Windows, Linux)

  • Mobile devices (Android, iOS, Windows)

  • Servers (Linux, Windows)

  • Web servers (IIS, Apache, NGNIX)

  • Databases (SQL Server, Oracle, Mongo DB, Postgres, Reddis)

  • Datawarehouse (Redshift, Snowflake)

  • Network devices (Firewalls, Proxy, NIPS, others)


    • 10 years of experience in critical security functions and tools including
  • Network and Infrastructure Security

  • End point security controls (Endpoint Protection (e.g. Crowdstrike), HIPS)

  • Vulnerability scanning

  • Configuration monitoring

  • Risk management

  • Policy management

  • Inventory control and Configuration Management Database

  • Incident handling

  • Application security (WAFs, Static and Dynamic scanners, OWASP)

  • Security event monitoring

  • Data protection and encryption (HSM, SEDS, Database encryption…)

  • Disaster Recovery

  • Business Continuity Planning and Execution

  • Vendor Management

  • KPIs and KRIs

  • Control Testing


    • Control Frameworks including
  • ISO27001/2

  • NIST 800-53

  • PCI

  • CoBit

  • COSO

  • CRisk

  • BSIMM

  • ITIL

  • HIPAA

  • GDPR


    • Process Engineering

    Project Management

    Two or more Industry Certification(s) such as
  • CISSP

  • CISM

  • CISA

  • GISF

  • CEH

  • GSSP

  • CSSLP

  • GCIH

  • CGEIT

  • MCP

  • CCNA

  • Others


    • Bachelors degree, Masters degree preferred (or equivalent experience)
  • Ability to handle multiple tasks, prioritize and meet deadlines.

  • Ability to work within a matrix organization.

  • Excellent written and verbal communication skills.

  • Must have ability to positively handle/manage stress, such as high work volume and frequent change.

  • Must have flexibility and willingness to participate in the work processes of an international organization, including conference calls scheduled to accommodate global time zones.

    Cognism is a market leader in international sales intelligence. Access to our premium data, has helped a wide variety of global revenue teams change their approach to prospecting, resulting in predictable and prosperous outcomes.


    • Following multiple successful funding rounds and the acquisition of Mailtastic (2020), an email signature solution provider, and Kaspr (2022), a Paris-based sales prospecting tool, there has never been a more exciting time to join us.

    As we grow, one of our main objectives is to continue hiring individuals, who are both a professional and cultural fit for our Company. Our values are at the core of everything we do!

    Our people;
  • Are Nice!

  • Are Collaborative. We're in this together!

  • Are Solution-Focused. For every problem, we've got a solution!

  • Are Understanding.

  • Celebrate Individual Contributors.


    • We are committed to creating a diverse and inclusive global workplace, which encourages you to achieve any goals you may have, while having fun along the way!