Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy
Jobs / Job page
Chief Information Security Officer image - Rise Careers
Job details

Chief Information Security Officer

Job Title:Chief Information Security OfficerAboutTrellix:Trellix, the trusted CISO ally, is redefining the future of cybersecurity and soulful work.Our comprehensive, GenAI-powered platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Along with an extensive partner ecosystem, we accelerate technology innovation through artificial intelligence, automation, and analytics to empower over 53,000 customers with responsibly architected security solutions.We also recognize the importance of closing the 4-million-person cybersecurity talent gap. We aim to create a home for anyone seeking a meaningful future in cybersecurity and look for candidates across industries to join us in soulful work. More at https://www.trellix.com/ .Role Overview:Reporting to the CIO, as Chief Information Security Officer you will be responsible for leading global information security strategy, policies and governance. As a threat landscape expert you will be responsible for guiding your organization’s structure, technology investments, and processes to rapidly assess, triage and manage risks.A critical charter of this role is treating Trellix as Customer Zero by collaborating with the Chief Product Officer and Product Development teams in test-driving, evaluating and providing user insights for all products and services prior to general market availability.As a cybersecurity expert and influencer, the Trellix CISO will engage with a variety of audiences, industry experts and our customers in various forums and advisory engagements spanning both public and private sectors.About the RoleInformation Security Strategy & LeadershipDevelop, implement, and oversee a comprehensive global cybersecurity strategy aligned with business objectives and regulatory requirements.Provide strategic direction to the Security Operations Center (SOC), security engineering, and incident response teams.Advise the Board of Directors and executive leadership on cybersecurity risks, threats, and compliance obligationsRisk Management & ComplianceDesign and manage a global risk management framework to address cyber threats, third-party risks, and insider threats.Ensure compliance with industry standards (ISO 27001, NIST, SOC 2, GDPR, CCPA, HIPAA, etc.).Oversee regular security audits, penetration testing, and vulnerability assessments.Develop and implement zero-trust architecture, identity and access management (IAM), and privileged access management (PAM).Secure Product & Cloud SecurityEmbed security by design into software development (DevSecOps).Ensure cloud security across multi-cloud (AWS, Azure, Google Cloud).Implement secure SDLC, CI/CD security controls, and API security best practices.Act as “Customer Zero” by collaborating with Product Development teams in test-driving, evaluating and providing user insights for all products and servicesGovernance, Awareness, and TrainingFoster a culture of cybersecurity awareness through company-wide training and phishing simulations.Act as the primary liaison with external security partners, auditors, regulators, and legal teams.Budgeting & Resource ManagementDevelop and manage the cybersecurity budget, ensuring cost-effective security investments.Through thoughtful talent acquisition, performance management and succession planning, train and retain top-tier security professionals to build a world-class cybersecurity team.About You:As a cybersecurity technologist your background must include significant years of global information security technology leadership experience across a broad range of technical environments and business models. Operating within PE or VC-backed companies is a plus for us.Experiences need to include active partnering with software development leadership regarding safe and thoughtful software development practices.A background specifically developing and managing risk-based security programs leveraging a wide variety of cyber security technologies is essential.Your people management history must include growing and evolving your global teams of at least 50 into top performers through active engagement, continuous talent assessment, talent acquisition, performance management and succession planningYour background ideally includes direct engagement with customers as well as engaging public audiences.You must have extensive knowledge of information security standards, policies and practices, including HIPAA and FISMA.Your ability to engage with and influence the most senior decision makers across the company and our partner and customer ecosystems will quickly add to your success.Base Pay Range: $285,000 - $340,000. Actual base pay within this range will depend on varying circumstances, including the work location, individual qualifications, company budget and other operational business needs. Compensation also includes annual bonuses and long-term incentives, subject to various metrics and company policy.Company Benefits and Perks:We work hard to embrace diversity and inclusion and encourage everyone to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees.Retirement PlansMedical, Dental and Vision CoveragePaid Time OffPaid Parental LeaveSupport for Community InvolvementWe're serious about our commitment to diversity which is why we prohibit discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.
Trellix Glassdoor Company Review
3.7 Glassdoor star iconGlassdoor star iconGlassdoor star icon Glassdoor star icon Glassdoor star icon
Trellix DE&I Review
No rating Glassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star icon
CEO of Trellix
Trellix CEO photo
Bryan Palma
Approve of CEO
by Trellix on Glassdoor

Average salary estimate

Estimate provided by employer
$100000 / ANNUAL (est.)
min
max
$80K
$120K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Chief Information Security Officer, Trellix

Meet Trellix, where we're shaking up the cybersecurity landscape in Santa Fe, NM, as we seek a Chief Information Security Officer to join our innovative team. At Trellix, we believe in soulful work that makes a difference in the cybersecurity realm. As our CISO, you will be the driving force behind our global information security strategy, policies, and governance. You'll leverage your expertise to guide our organization in identifying and managing risks. Collaborating closely with our Chief Product Officer and Product Development teams, you'll play a pivotal role, acting as 'Customer Zero' to test and provide insights on our cutting-edge products before they hit the market. Your leadership will shape the Security Operations Center (SOC) and enhance our incident response capabilities while ensuring compliance with key industry standards. In your dynamic role, you'll also foster a culture of cybersecurity awareness throughout the company, advocating for effective training and education. With a keen eye on budgeting and resource management, your strategic input will be essential in building a top-tier cybersecurity team. If you have a wealth of experience in global information security leadership and are ready to take on a meaningful challenge, we’d love to hear from you at Trellix! Together, we can redefine the future of cybersecurity for our 53,000 customers and beyond.

Frequently Asked Questions (FAQs) for Chief Information Security Officer Role at Trellix
What are the main responsibilities of the Chief Information Security Officer at Trellix?

As the Chief Information Security Officer (CISO) at Trellix, you will be tasked with developing and overseeing a comprehensive global cybersecurity strategy that aligns with our business objectives. You'll lead the Security Operations Center (SOC), manage risk assessments, and ensure compliance with various cybersecurity standards. Your role includes advocating for security by design in our products, and engaging with stakeholders at all levels, which highlights the importance of allowing Trellix to act as Customer Zero for our own offerings.

Join Rise to see the full answer
What qualifications are needed for the Chief Information Security Officer position at Trellix?

To be considered for the Chief Information Security Officer role at Trellix, candidates should possess significant experience in global information security leadership. A strong background in managing risk-based security programs, familiarity with cybersecurity standards such as HIPAA, and experience in interacting with executive leadership are essential. Additionally, you should demonstrate expertise in fostering talent and leading large teams effectively.

Join Rise to see the full answer
How does Trellix support cybersecurity awareness throughout the company?

At Trellix, fostering cybersecurity awareness is a key responsibility of the Chief Information Security Officer. This is achieved through comprehensive training programs, phishing simulations, and consistent communication across the organization, ensuring that every employee understands their role in maintaining security. The CISO will play a crucial role in championing these initiatives to build a security-first culture.

Join Rise to see the full answer
How does the Chief Information Security Officer collaborate with other departments at Trellix?

The Chief Information Security Officer (CISO) at Trellix collaborates closely with the Chief Product Officer and Product Development teams. By being the 'Customer Zero', the CISO ensures that all products are rigorously tested for security prior to market launch. This cross-departmental collaboration is pivotal for embedding security practices into our development processes and enhancing the overall efficacy of our product offerings.

Join Rise to see the full answer
What is the salary range for the Chief Information Security Officer position at Trellix?

The salary range for the Chief Information Security Officer role at Trellix is between $285,000 and $340,000. Actual salary will depend on various factors including experience, qualifications, and budget considerations. In addition to competitive base pay, employees will also enjoy potential annual bonuses and long-term incentives, creating a comprehensive compensation package.

Join Rise to see the full answer
Common Interview Questions for Chief Information Security Officer
Can you explain how you would develop a global cybersecurity strategy?

To develop a global cybersecurity strategy, one should start by conducting a thorough risk assessment to identify vulnerabilities and threats specific to the organization. It's vital to align the strategy with business objectives and regulatory requirements. Engage with cross-functional teams to gather insights and ensure buy-in. Regularly updating the strategy based on evolving threats is also crucial.

Join Rise to see the full answer
How do you prioritize risks within a cybersecurity framework?

Prioritizing risks requires a systematic approach, often utilizing a risk matrix to evaluate the likelihood and impact of potential threats. Assess both the technical and business implications of each risk, and prioritize based on which risks could critically affect business operations. Continuous communication with executive leadership ensures alignment and informed decision-making.

Join Rise to see the full answer
What experience do you have with compliance frameworks like ISO 27001 and NIST?

In my previous roles, I have led initiatives to implement compliance frameworks such as ISO 27001 and NIST. This involved conducting gap analyses, developing policies, and overseeing training sessions to ensure that all employees were aware of compliance requirements. Regular audits were also conducted to measure effectiveness and make necessary adjustments.

Join Rise to see the full answer
How would you foster a culture of cybersecurity awareness in an organization?

Fostering a culture of cybersecurity awareness can be achieved through continuous education, engaging training sessions, and effective communication. Implementing regular phishing simulations and providing updates on security threats can keep awareness high. Encouraging employees to report security incidents without fear can also enhance the overall security posture.

Join Rise to see the full answer
Describe your experience with managing security incidents and response.

Managing security incidents requires a well-defined incident response plan. In my past experiences, I have led teams through major security breaches by establishing protocols for containment, eradication, and recovery. Clear communication during incidents is essential, as well as conducting post-incident reviews to improve future responses.

Join Rise to see the full answer
What role does collaboration play in cybersecurity?

Collaboration is vital in cybersecurity. It allows sharing of information on threats, vulnerabilities, and best practices. Working closely with product teams will ensure security is embedded in development processes. Building relationships with external partners for threat intelligence sharing also enhances the security landscape for the organization.

Join Rise to see the full answer
How do you ensure secure software development practices?

Ensuring secure software development practices involves integrating security at every stage of the software development lifecycle (SDLC). This entails adopting a DevSecOps approach, conducting regular security training for developers, and implementing tools to automate security checks within the CI/CD pipeline.

Join Rise to see the full answer
What steps would you take to enhance cloud security?

To enhance cloud security, I would implement best practices such as multi-factor authentication, encryption of data both in transit and at rest, and regular reviews of access controls. Using secure APIs and continuous monitoring for anomalies are also crucial to maintaining a robust cloud security posture.

Join Rise to see the full answer
How can you manage a team of cybersecurity professionals effectively?

Managing a team effectively begins with hiring the right talent and providing them with the tools they need to succeed. Regular one-on-ones to discuss performance and career growth allow for continuous engagement. Fostering a collaborative and inclusive environment encourages team members to share ideas and challenges openly.

Join Rise to see the full answer
What is the significance of Zero Trust architecture in your opinion?

Zero Trust architecture is crucial in today’s cybersecurity landscape. It operates on the principle of 'never trust, always verify', meaning that both users and devices are authenticated before being granted access. This reduces the risk of insider threats and limits the blast radius of potential breaches, ensuring that every access request is carefully scrutinized.

Join Rise to see the full answer
Similar Jobs
Photo of the Rise User
Trellix Remote US, California, San Jose
VIEW
Posted 12 days ago

Join Skyhigh Security as an Associate Software Engineer and contribute to developing next-generation security solutions in a hybrid work environment.

Photo of the Rise User
Trellix Hybrid US, Texas, Plano
VIEW
Posted 3 days ago

As a pivotal Field Marketing Manager at Trellix, you will spearhead innovative marketing initiatives throughout North America to drive brand visibility and pipeline growth.

T
The Boeing Company Hybrid Ogden, UT
VIEW
Posted 6 days ago

Join Boeing as a System Administrator to provide crucial IT support at Hill Air Force Base, ensuring the security and functionality of essential systems.

Photo of the Rise User
HR Works Hybrid United States
VIEW
Posted 10 days ago

We're seeking an experienced IT Specialist to provide comprehensive tech support and ensure compliance in a regulated environment.

Photo of the Rise User
Signal Energy Hybrid Houston, TX
VIEW
Posted 6 days ago

Join Signal Energy as an IT intern and gain invaluable real-world experience in the renewable energy sector.

Photo of the Rise User
UnityPoint Health Remote Fort Dodge, IA
VIEW
Posted 11 days ago

Become a part of UnityPoint Health as an IT Technical Support Specialist Intern, supporting our Client Device Support team remotely.

D
Delaware Nation Industries Hybrid No location specified
VIEW
Posted 7 days ago

AFRL is seeking a Systems Security Engineer IV to co-lead their Cybersecurity team and enhance their security posture.

L
Lavendo Hybrid Vineland
VIEW
Posted 8 days ago

Join a global leader in AI cloud infrastructure as an IT Datacenter Technician, contributing to the future of AI technology in a hands-on role.

G
GE Aerospace Hybrid Evendale
VIEW
Posted 4 days ago

Join GE Aerospace as a Sr Staff Risk Advisor, leading initiatives to enhance risk management in cutting-edge technology environments.

Photo of the Rise User
American Express Remote Phoenix, Arizona, United States
VIEW
Posted 2 days ago
Badge Family Friendly Badge Office Vibes
Inclusive & Diverse
Empathetic
Collaboration over Competition
Growth & Learning
Transparent & Candid
Medical Insurance
Dental Insurance
Mental Health Resources
Life insurance
Disability Insurance
Child Care stipend
Employee Resource Groups
Learning & Development

Join American Express as a Director and lead efforts in technology regulatory oversight, ensuring compliance and risk management within the organization.

Photo of the Rise User Trellix

Power a resilient, thriving world.

16 jobs
MATCH
Calculating your matching score...
FUNDING
DEPARTMENTS
SENIORITY LEVEL REQUIREMENT
INDUSTRY
TEAM SIZE
HQ LOCATION
EMPLOYMENT TYPE
Full-time, on-site
DATE POSTED
March 20, 2025

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!
Show me relevant jobs ASK RISA ✨
LATEST ACTIVITY
Photo of the Rise User
Someone from OH, Dayton just viewed Join American Express: Virtual Customer Care Professional – Remote Work at American Express
Photo of the Rise User
Someone from OH, Youngstown just viewed Director, Clinical Informatics at Ro
Photo of the Rise User
9 people applied to Defensive Cyber Operations Engineering Intern at Okta
Photo of the Rise User
Someone from OH, Dayton just viewed Shopify Specialist at Remote VA
L
Someone from OH, Dayton just viewed Mechanical Design Engineer(s) at LTTS
Photo of the Rise User
14 people applied to Junior Security Engineer at Epic
Photo of the Rise User
15 people applied to Investigator, Trust and Safety at Coinbase
Photo of the Rise User
Someone from OH, Dayton just viewed Apply Now: Remote Customer Service Jobs with Pay at 19 Per Hour at NoGigiddy
Photo of the Rise User
100+ people applied to Information/Cyber Security Intern at USAA
H
Someone from OH, Akron just viewed Financial Content Writer at Huntington
W
Someone from OH, Columbus just viewed Director of Regulatory Compliance - WEX Bank at WEX Inc
Photo of the Rise User
Someone from OH, Westerville just viewed Supervisor, Media Finance Operations (Billing/Reporting) at Publicis Groupe
E
Someone from OH, Cincinnati just viewed Administrative Assistant at Elevate and Delegate
M
Someone from OH, Cincinnati just viewed Virtual Assistant 10-15 Hours per Week (IC-DK) at Mom to Virtual Assistant
ABOUT RISE
FOR COMPANIES
REMOTE JOBS & MORE
LOOKING FOR A JOB?
FIND A JOB NEAR ME
POPULAR JOBS
Rise logo
Privacy Policy and Terms of Service
© 2021 Work Rise LLC. All rights reserved.
Proudly made in NYC.
CONNECT
Facebook Instagram LinkedIn Tiktok