Deputy CISO

Your opportunity

Are you a seasoned security leader with a passion for technology and a knack for planning? New Relic is seeking a driven Deputy CISO to partner with our CISO and shape the future of cybersecurity for our leading observability platform. In this high-impact role, you'll guide and mentor our security teams, drive strategic initiatives, and collaborate closely with senior leadership across the business. If you're a metrics-driven problem-solver who thrives in a fast-paced environment, this is your chance to make a real difference.

We are seeking a highly motivated and experienced Deputy CISO to join our growing Information Security team. This is a critical role that partners closely with the CISO to provide technical leadership and guidance, ensuring the confidentiality, integrity, and availability of New Relic's systems and data.

As a key member of the security leadership team, you will:

• Lead and mentor: Guide and develop a high-performing team of security professionals, fostering a culture of growth and innovation.
• Drive strategy: Partner with the CISO to execute the overall security strategy, ensuring alignment with business objectives and contributing to budget discussions and resource allocation.
• Influence decisions: Participate in high-level security decision-making, providing recommendations and insights to senior leadership.
• Oversee operations: Manage and oversee key security functions, including attack surface management, offensive security, continuous monitoring, and secure operations technologies.
• Collaborate effectively: Work closely with Legal, Compliance, Engineering, and Product teams to integrate security into all aspects of the business.
• Champion excellence: Promote security best practices and awareness across New Relic, staying abreast of emerging threats and technologies.

What you'll do

• Provide technical leadership and guidance to security teams responsible for:
  
  
  
  • Security engineering and automation
  • Incident response
  • Vulnerability management
  • Product, application, and infrastructure assurance
  • Penetration testing
  • Enterprise security
  • Security consultation and guidance
  
  
  
  
• Partner with the CISO to execute the overall security strategy, ensuring alignment with business objectives.
• Contribute significantly to security budget discussions and resource allocation.
• Create valuable and impactful security operations recommendations that inform technical decisions while managing change and competing demands.
• Foster a culture of collaboration and knowledge sharing within the security organization.
• Develop and maintain detailed roadmaps and documentation for key security initiatives.
• Track and report on key security metrics to measure program effectiveness and identify areas for improvement.
• Assist in the development and management of the security budget.
• Growing, inspiring, and retaining a diverse, high-performing team of security professionals that are forward-looking and adaptive to emerging security technologies and threats.

This role requires

• 10+ years of experience in cybersecurity, with 5+ years in a leadership role.
• Experience working in a SaaS or cloud-based business.
• Strong technical background in security engineering, incident response, vulnerability management, and cloud security, SIEM, EDR, and SOAR.
• Deep understanding of security best practices, frameworks, and industry standards especially as they pertain to SW development and engineering organizations.
• Excellent communication, collaboration, and interpersonal skills.
• Ability to influence and build consensus across different teams and levels.
• Passion for mentoring and developing security talent.
• Relevant industry certifications (e.g., CISSP, CISM, CCISO) are a plus.
• Proven ability to create and execute detailed security plans and roadmaps.
• Strong analytical and problem-solving skills, with a meticulous attention to detail.
• Experience with developing and tracking security metrics.
• Excellent organizational and documentation skills.
• Self-motivated and able to work independently with minimal supervision.
• Possesses excellent interpersonal, relationship building and influencing skills; has demonstrated success in influencing key decision makers and business partners to build positive working relationships and in gaining support for cybersecurity investment to execute against strategic initiatives.
• Deep understanding of cybersecurity program planning and managing interdependence across a complex technology landscape, including governance, risk management, architecture, technology onboarding, vulnerability management, awareness and training, and cyber third-party risk management. Experience in the development, implementation, and operationalizing on-going cyber capabilities / solutions.
• Strong understanding and knowledge of common information security management frameworks, such as ISO/IEC 27001, and the NIST CSF.
• Experienced in general cybersecurity regulatory and compliance (e.g., SOX, SOC2, HITRUST, FedRamp, DFARS, CMMC, etc.).
  

Bonus points if you have:

• Planning and Organization: You thrive in creating order and structure, and you enjoy developing detailed plans and roadmaps to achieve security objectives.
• Metrics-Driven: You have a passion for data and metrics, and you use them to measure progress, identify trends, and drive improvements in security programs.
• Documentation: You understand the importance of clear and concise documentation, and you have a knack for creating and maintaining it.
• Self-Motivation: You are a self-starter who can take initiative and work independently to achieve goals.
• Problem-Solving: You enjoy tackling complex security challenges and finding creative solutions.
  

Please note that visa sponsorship is not available for this position.