Jobgether
Field Virtual Chief Information Security Officer (vCISO)
Jobgether, Little Rock, Arkansas, United States
This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Field Virtual Chief Information Security Officer (vCISO) in Arkansas.
This role is a senior cybersecurity leadership position responsible for advising and enhancing the information security posture of mid‑market clients. You will integrate directly into client organizations to design, implement, and manage comprehensive cybersecurity programs aligned with recognized frameworks such as NIST CSF, HIPAA, and CIS Controls. Acting as a trusted advisor, you will present risk, maturity, and compliance metrics to executives and boards, guiding strategic decision‑making and ensuring regulatory adherence. The position involves client‑facing responsibilities, including on‑site engagements, and requires exceptional communication and leadership skills. You will oversee risk management, security policies, and control implementation, providing guidance on emerging threats and best practices. This is an opportunity to directly influence cybersecurity strategy while working in a dynamic, high‑impact environment.
Accountabilities
Serve as the primary contact for client information security programs, interfacing with executives and business leaders.
Develop and implement custom cybersecurity programs that align with regulatory requirements, risk appetite, and business objectives.
Lead presentations of risk management initiatives to technical teams, senior management, and boards of directors.
Review client security services, identify gaps, and provide actionable recommendations for improvement.
Manage and measure client security and compliance programs, including policy development and evidence collection for audits.
Conduct third‑party risk assessments and oversee cybersecurity engineering services such as vulnerability management, endpoint protection, identity and access management, and network security.
Monitor evolving threats and compliance changes, providing guidance to clients and internal teams.
Facilitate cybersecurity training, tabletop exercises, and knowledge transfer to client teams.
Requirements
5+ years leading information security programs and implementing cybersecurity controls across mid‑market organizations.
Deep experience with cybersecurity frameworks and compliance standards (NIST CSF, NIST 800‑171, HIPAA, SOC2, CMMC, FDIC, GLBA, ISO 27001/2, CIS).
Proven expertise in system, application, network, cloud, and data security best practices.
Experience preparing for compliance audits (SOC2, CMMC, HITRUST, FDIC).
One or more security certifications such as CISSP, CISA, CISM, CRISC, GLSC, or GSTRT.
Bachelor’s degree or equivalent experience; advanced degree preferred.
Excellent problem‑solving, decision‑making, and communication skills, with the ability to influence executive leadership.
Preferred: prior experience as a cybersecurity or compliance manager, familiarity with Threat Protection, SIEM, SOC, EDR, and Privilege/Identity Management platforms.
Benefits
Competitive base salary starting at $120,000/year, commensurate with experience and qualifications.
Comprehensive health, dental, and vision coverage.
Retirement savings options with company contributions.
Flexible time off policies.
Professional development and training opportunities.
On‑site client engagement within the central Arkansas area.
Why Apply Through Jobgether? We use an
AI‑powered matching process
to ensure your application is reviewed quickly, objectively, and fairly against the role’s core requirements. Our system identifies the top‑fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.
We appreciate your interest and wish you the best!
Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre‑contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.
#J-18808-Ljbffr
This role is a senior cybersecurity leadership position responsible for advising and enhancing the information security posture of mid‑market clients. You will integrate directly into client organizations to design, implement, and manage comprehensive cybersecurity programs aligned with recognized frameworks such as NIST CSF, HIPAA, and CIS Controls. Acting as a trusted advisor, you will present risk, maturity, and compliance metrics to executives and boards, guiding strategic decision‑making and ensuring regulatory adherence. The position involves client‑facing responsibilities, including on‑site engagements, and requires exceptional communication and leadership skills. You will oversee risk management, security policies, and control implementation, providing guidance on emerging threats and best practices. This is an opportunity to directly influence cybersecurity strategy while working in a dynamic, high‑impact environment.
Accountabilities
Serve as the primary contact for client information security programs, interfacing with executives and business leaders.
Develop and implement custom cybersecurity programs that align with regulatory requirements, risk appetite, and business objectives.
Lead presentations of risk management initiatives to technical teams, senior management, and boards of directors.
Review client security services, identify gaps, and provide actionable recommendations for improvement.
Manage and measure client security and compliance programs, including policy development and evidence collection for audits.
Conduct third‑party risk assessments and oversee cybersecurity engineering services such as vulnerability management, endpoint protection, identity and access management, and network security.
Monitor evolving threats and compliance changes, providing guidance to clients and internal teams.
Facilitate cybersecurity training, tabletop exercises, and knowledge transfer to client teams.
Requirements
5+ years leading information security programs and implementing cybersecurity controls across mid‑market organizations.
Deep experience with cybersecurity frameworks and compliance standards (NIST CSF, NIST 800‑171, HIPAA, SOC2, CMMC, FDIC, GLBA, ISO 27001/2, CIS).
Proven expertise in system, application, network, cloud, and data security best practices.
Experience preparing for compliance audits (SOC2, CMMC, HITRUST, FDIC).
One or more security certifications such as CISSP, CISA, CISM, CRISC, GLSC, or GSTRT.
Bachelor’s degree or equivalent experience; advanced degree preferred.
Excellent problem‑solving, decision‑making, and communication skills, with the ability to influence executive leadership.
Preferred: prior experience as a cybersecurity or compliance manager, familiarity with Threat Protection, SIEM, SOC, EDR, and Privilege/Identity Management platforms.
Benefits
Competitive base salary starting at $120,000/year, commensurate with experience and qualifications.
Comprehensive health, dental, and vision coverage.
Retirement savings options with company contributions.
Flexible time off policies.
Professional development and training opportunities.
On‑site client engagement within the central Arkansas area.
Why Apply Through Jobgether? We use an
AI‑powered matching process
to ensure your application is reviewed quickly, objectively, and fairly against the role’s core requirements. Our system identifies the top‑fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.
We appreciate your interest and wish you the best!
Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre‑contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.
#J-18808-Ljbffr