Chief Information Security Officer (CISO)

Demandbase

  • New York City, NY San Francisco, CA
  • Permanent
  • Full-time
  • 1 month ago
Introduction to Demandbase:Demandbase helps B2B companies hit their revenue goals using fewer resources. How? By using the power of AI to identify and engage the accounts and buying groups most likely to purchase. Our account-based technology unites sales and marketing teams around insights that you can understand and facilitates quick actions across systems and channels to deliver big wins. It's flexible, scalable ABM built for you.As a company, we prioritize both the advancement of careers and the development of world-class technology. We invest heavily in people, our culture, and the communities around us. We have offices strategically located in San Francisco and New York in the US, and Hyderabad, in India and we embrace a hybrid work model in these regions. Outside of these areas we offer a remote work option and boast a significant presence in Austin, TX, Atlanta, GA, and London, UK. Continuously lauded as a great place to work, we are Great Place to Work Certified, and have earned distinctions such as "Fortune's Best Workplaces in the Bay Area,"Best Workplaces in Technology," "Best Workplaces for Millennials," and "Best Workplaces for Parents"!We're committed to attracting, developing, retaining, and promoting a diverse workforce. By ensuring that every Demandbase employee is able to bring a diversity of talents to work, we're increasingly capable of achieving our mission to transform the way B2B companies go to market. We encourage people from historically underrepresented backgrounds and all walks of life to apply. Come grow with us at Demandbase!About the Role:Demandbase is seeking a forward-thinking Chief Information Security Officer (CISO) to join our senior leadership team. Reporting to the CFO, this role serves as the strategic and operational leader of our global security program-driving enterprise-wide security initiatives, leading world-class talent, and safeguarding the integrity of our products, infrastructure, and data. You will be responsible for leading enterprise-wide security, including product security, as well as IT.You will shape and execute a modern security vision in alignment with our position as a category-defining B2B marketing and advertising technology company. We're looking for an executive with deep expertise in cloud-native environments, SaaS security at scale, and a sharp eye for emerging threats and compliance challenges in 2025 and beyond.This is a highly cross-functional and visible role-collaborating with engineering, legal, privacy, product, and infrastructure teams while serving as the public face of security to our customers and the broader community.The base compensation range for this position is: $237,000 - $355,000Key Responsibilities:
  • AI Productivity Strategy
Drive Demandbase's AI productivity strategy by enabling responsible, high-impact adoption of AI-powered tools and platforms across the organization. Partner with cross-functional leaders to ensure AI usage enhances efficiency, supports innovation, and aligns with security, privacy, and compliance standards. * AI/ML Security ReadinessAnticipate and mitigate emerging risks related to AI and machine learning, including generative models, LLM usage, and automation platforms. Establish governance and technical controls to ensure safe AI adoption, protect model inputs and outputs, and maintain compliance with evolving AI-related regulations and frameworks. * Strategy & ExecutionDevelop and evolve a long-term, risk-based information security strategy that protects Demandbase's digital assets, customer data, and IP across products and internal systems. * Lead & ScaleBuild, lead, and mentor a global, high-performing team of security experts across disciplines (engineering, operations, and risk). Foster a culture of innovation, accountability, and continuous improvement. * Governance & RiskOwn the global information security governance framework and IT risk management programs. Establish and report on controls, policies, KPIs, and risk indicators for executive leadership and the Board. * Cloud & Product SecurityPartner with engineering and DevOps to embed security into the software development lifecycle (SDLC), CI/CD pipelines, and infrastructure. Ensure secure-by-design practices for all cloud-native and customer-facing products. * Compliance & CertificationsPartner with compliance on successful execution of global security and privacy frameworks, including SOC 2, ISO 27001, SOX, GDPR, CCPA, and AI-specific regulatory requirements such as the EU AI Act and NIST AI RMF. * Privacy CollaborationWork closely with Legal, Engineering, and Infrastructure teams to operationalize data privacy and security-by-design principles across product and platform development. * Executive & Customer EngagementAct as a trusted advisor to executive leadership and a credible voice to customers, prospects, and external partners on all matters related to security, trust, and risk posture. * Centralized Data ManagementLead centralized data management initiatives to ensure secure, compliant, and scalable handling of enterprise data across systems. Collaborate across teams to enable unified governance, improve data quality, and reduce risk exposure. * Business Systems / Internal ToolingEnsure strategic oversight of business systems and internal tooling, including securing critical platforms, managing third-party SaaS risk, and aligning internal tools with broader security and compliance goals.What we're looking for:
  • Leadership Experience: 12+ years in information security roles, with 5+ years at the VP/CISO level in SaaS or technology-forward companies. Proven success in leading security functions during phases of high growth and scaling.
  • SaaS Security Expertise: Strong experience in securing multi-tenant SaaS applications running in public cloud environments (AWS, GCP, Azure), including demonstrated technical depth in public cloud architecture & best practices.
  • Compliance Leadership: Track record of managing global compliance initiatives-SOC 2, ISO 27001, SOX, GDPR, and emerging AI regulatory standards.
  • Talent Builder: Demonstrated success in attracting, retaining, and developing top security talent in competitive markets.
  • Product & Infrastructure Acumen: Deep understanding of secure software development practices, service ownership models, DevSecOps, and modern infrastructure security models (e.g., zero trust, SASE, identity-first security).
  • Vision + Execution: Ability to set strategy, define metrics, and lead day-to-day execution with pragmatism and urgency.
  • Champion for Excellence: Develop data, mechanisms, and relationships to drive individual accountability for engineering excellence and prudent risk management, in close collaboration with R&D leaders.
  • Strong Communicator: Exceptional executive presence and public speaking skills; able to represent Demandbase with customers, partners, regulators, and at industry events.
  • Preferred Certifications: CISSP, CCISO, or equivalent; additional certifications in risk, privacy (e.g., CIPP/US, CRISC), or cloud architecture & security (e.g., CCSK, CCSP) are a plus.
Benefits:We offer a comprehensive benefits package designed to support your health, well-being, and financial security. Our employees enjoy up to 100% paid premiums for Medical and Vision coverage, ensuring access to top-tier care for you and your loved ones. In addition, we provide a range of mental wellness resources, including access to Modern Health, to help support your emotional well-being. We believe in a healthy work-life harmony, which is why we offer a flexible PTO policy, 15 paid holidays in 2025-including a three-day break around July 4th and a full week off for Thanksgiving-and No Internal Meetings Fridays to give you uninterrupted time to focus on what matters most. For your financial future, we offer a competitive 401(k) plan, short-term and long-term disability coverage, life insurance, and other valuable benefits to ensure your financial peace of mind.Our Commitment to Diversity, Equity, and Inclusion at Demandbase:At Demandbase, we believe in creating a workplace culture that values and celebrates diversity in all its forms. We recognize that everyone brings unique experiences, perspectives, and identities to the table, and we are committed to building a community where everyone feels valued, respected, and supported. Discrimination of any kind is not tolerated, and we strive to ensure that every individual has an equal opportunity to succeed and grow, regardless of their gender identity, sexual orientation, disability, race, ethnicity, background, marital status, genetic information, education level, veteran status, national origin, or any other protected status. We do not automatically disqualify applicants with criminal records and will consider each applicant on a case-by-case basis.We recognize that not all candidates will have every skill or qualification listed in this job description. If you feel you have the level of experience to be successful in the role, we encourage you to apply!We acknowledge that true diversity and inclusion requires ongoing effort, and we are committed to doing the work required to make our workplace a safe and equitable space for all. Join us in building a community where we can learn from each other, celebrate our differences, and work together.Personal information that you submit will be used by Demandbase for recruiting and other business purposes. Our explains how we collect and use personal information.

Demandbase