CISO and Head of Security Practice - Remote - USA
FullStack · United States
- Hybrid
- Full-time
- $200,000 / year
- United States
Job highlights
- Lead internal security, focusing on AI.
- Spearhead client Security Practice for AI.
- Develop AI security services for clients.
- Requires 10+ years in Information Security.
- Offers competitive salary and remote work.
About the role
About FullStack
FullStack is one of the fastest-growing software consultancy companies in the Americas. We deliver transformational digital solutions to top global companies and Silicon Valley startups. As an employee-first company, we focus on hiring the most talented software designers and developers by creating a positive, respectful, and supportive work environment where they can achieve their greatest potential.
We’re Most Proud Of:
- Offering life-changing career opportunities to talented software professionals across the Americas.
- Building highly-skilled software development teams for hundreds of the world’s greatest companies.
- Having delivered hundreds of successful custom software solutions, which have positively impacted the lives and careers of millions of users.
- Our 4.2-star rating on GlassDoor.
- Our client Net Promoter Score of 68, twice the industry average.
The Position
We are seeking a visionary and hands-on leader to serve as our CISO and Head of Security Practice. This is a dual-impact role designed for a leader who recognizes the need for new approaches to security in the rapidly-developing field of Artificial Intelligence. You will lead our internal security strategy, with a heavy focus on implementing security around AI, while simultaneously spearheading our Security Practice as a subject matter expert for our clients.
You will spend a portion of your time directly engaged in high-impact client work, helping our partners navigate the security challenges of AI adoption and providing strategic security architectural oversight.
What You'll Be Doing
Internal Security Leadership (CISO)
- Security Strategy: Define and execute a security roadmap that prioritizes AI security (LLM protection, data privacy in AI, and secure integration) alongside traditional business objectives.
- Governance & Compliance: Maintain and mature security frameworks (e.g., SOC2, ISO 27001, NIST) while establishing new internal standards for ethical and secure AI usage.
- Risk Management: Identify and mitigate enterprise-level risks, specifically addressing new attack vectors introduced by AI and machine learning.
- Security Culture: Foster a "security-first" mindset that includes training on the safe and secure use of AI tools across all departments.
Practice Leadership & Growth (Head of Practice)
- AI Service Development: Develop and launch a security service catalog specifically focused on AI Security offerings for our clients.
- Thought Leadership: Act as the face of our security practice, contributing to whitepapers and sales calls to position FullStack as a leader in secure AI implementation.
- Mentorship: Lead a team of security consultants, ensuring they are upskilled in modern AI security protocols and high-quality delivery.
Client Engagement
- Strategic Consulting: Serve as a Lead Architect or vCISO for strategic accounts, specifically guiding clients through the security hurdles of their AI transformation journeys.
- Security Assessments: Oversee high-level risk assessments that include evaluating the security posture of client AI deployments.
What We're Looking For
- 10+ years in Information Security, with at least 3-5 years in a leadership or executive-facing role.
- Professional AI Experience: Proven experience implementing security strategies around AI. You should not just know about AI at an "arm's length" but understand how to secure it deeply.
- Consulting DNA: Ability to translate complex security and AI concepts into tangible business value for C-suite stakeholders. Exceptional executive presence with the ability to influence both internal stakeholders and external clients.
- The "AI Native" Mindset: You are someone who uses AI in your spare time and stays ahead of the curve because you are genuinely passionate about the technology.
- Technical Breadth: Deep knowledge of cloud security, identity management, and the evolving AI threat landscape.
- Certifications: CISSP, CISM, or CISA are highly preferred.
What We Offer
- Competitive Salary.
- Paid Time Off (vacation, sick leave, maternity and paternity leave, holidays).
- 100% remote work.
- The ability to work with leading startups and Fortune 500 companies.
- Health, dental, and vision insurance.
- 401(k) w/ 4% match.
- Ample opportunity for career advancement.
- Continuing education opportunities.
FullStack is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status.
Learn more about our Applicants Privacy Notice.
Key skills/competency
- CISO
- Head of Security Practice
- AI Security
- Information Security
- Leadership
- Risk Management
- Cloud Security
- Identity Management
- Consulting
- Governance and Compliance
Skills & topics
- CISO
- Head of Security Practice
- AI Security
- Information Security
- Leadership
- Risk Management
- Cloud Security
- Identity Management
- Consulting
- Governance
- Compliance
- NIST
- SOC2
- ISO 27001
- LLM
- vCISO
- Executive
- Remote
How to get hired
- Tailor your resume: Highlight your 10+ years in Information Security, AI security experience, and leadership roles.
- Showcase AI passion: Emphasize your 'AI Native' mindset and how you stay current with AI advancements.
- Quantify achievements: Provide examples of successful security strategies and client impact, especially in AI.
- Prepare for technical & behavioral questions: Be ready to discuss cloud security, identity management, and AI-specific threats.
- Research FullStack: Understand their employee-first culture and AI-focused security offerings before applying.
Technical preparation
Master AI security principles and LLMs.,Deep dive into cloud security & identity.,Review NIST, SOC2, ISO 27001 frameworks.,Understand AI attack vectors and mitigation.
Behavioral questions
Describe leading security strategy for AI.,How do you build a security-first culture?,Explain translating AI security to C-suite.,Share your passion for AI technology.
Frequently asked questions
- What is the primary focus of the CISO and Head of Security Practice role at FullStack?
- The CISO and Head of Security Practice role at FullStack has a dual focus: leading the internal security strategy with a strong emphasis on AI security, and spearheading the external Security Practice as a subject matter expert for clients, particularly in AI adoption.
- What specific AI security experience is FullStack looking for in candidates?
- FullStack is looking for candidates with proven experience in implementing security strategies around AI, not just theoretical knowledge. This includes a deep understanding of how to secure AI, LLM protection, data privacy in AI, and secure integration.
- What are the required certifications for the CISO and Head of Security Practice position at FullStack?
- While not strictly mandatory, FullStack highly prefers candidates to have certifications such as CISSP, CISM, or CISA. These demonstrate a strong foundation in information security principles and practices.
- Can I work remotely for this CISO and Head of Security Practice role at FullStack?
- Yes, this position is 100% remote within the USA, offering flexibility and the ability to work from anywhere in the country.
- What kind of client work will the CISO and Head of Security Practice be involved in?
- The role involves direct client engagement, serving as a Lead Architect or vCISO for strategic accounts. You will guide clients through AI transformation security challenges and perform high-level risk assessments for AI deployments.
- What are the key responsibilities for the Head of Practice aspect of this role?
- As Head of Practice, responsibilities include developing and launching AI-focused security service offerings, acting as a thought leader in secure AI implementation, and mentoring a team of security consultants.
- Does FullStack offer benefits for the CISO and Head of Security Practice role?
- Yes, FullStack offers a competitive salary, health, dental, and vision insurance, 401(k) with a 4% match, paid time off, and continuing education opportunities.