Jobgether is looking for a Chief Information Security Officer (CISO) to provide strategic and hands-on leadership for our information security, compliance, and risk management initiatives. You will ensure our security practices align with business goals and regulatory requirements while fostering a culture of risk awareness across the organization.

What You'll Do

Lead the design, implementation, and operation of information security and compliance programs.
Maintain and enhance compliance with frameworks such as NIST 800-171, CMMC Level 2, and HIPAA.
Represent the organization in security audits, risk assessments, and communications with external assessors.
Partner with executive leadership to maintain security clearance requirements and operational integrity.
Administer and enforce IAM, RBAC, and cloud security policies across platforms like AWS, Azure, and GCP.
Conduct risk assessments, report findings, and recommend mitigation strategies.
Develop and maintain internal security policies, ensuring they are practical and understood.
Deliver security awareness training and collaborate on integrating security into project planning.

What We're Looking For

Active security clearance or eligibility to obtain one.
Hands-on experience with IAM, RBAC, and security operations in cloud environments (AWS, Azure, GCP).
Proven success leading security audits, compliance assessments, and risk management initiatives.
Ability to interpret regulations and translate them into technical and business requirements.
Deep understanding of NIST 800-171 compliance requirements.
Strong communication and documentation skills, capable of explaining complex security concepts in plain language.
Experience mitigating organizational vulnerabilities and embedding security into software development lifecycles.
Proven ability to foster collaboration across technical and non-technical teams in a professional services environment.
Passion for public service and improving outcomes through secure and compliant technology.

Nice to Have

Experience with CMMC, HIPAA, or FISMA frameworks.
Hands-on administration of Google Workspace and infrastructure-as-code.
Professional development experience in programming languages.
Prior civic tech or remote-team experience.

Technical Stack

AWS
Azure
GCP
Google Workspace

Team & Environment

You will collaborate closely with executive leadership, engineering teams, and project managers.

Benefits & Compensation

Medical, dental, and vision insurance coverage.
Short-term and long-term disability insurance, life and AD&D insurance.
Flexible paid-time-off policy (~25 days/year) plus 11 federal holidays.
401(k) match up to 10% with no vesting period.
Paid parental leave up to 12 weeks.
Performance-based rewards, including annual bonuses, spot bonuses, and stock options.
Professional development allowance and tech-related budget.
Charity donation matching program.
Compensation: $170,000–$240,000 USD + stock options.