VP, Chief Information Security Officer (CISO)

At 8x8 Inc. [Nasdaq:EGHT] we put communications at the heart of our business and build technology that allows people to connect anytime, anywhere they are in the world, and on any device. XCaaS - the 8x8 Experience Communications Platform - brings together Employee and Customer Experience, enabling hybrid workforces across the globe to connect, collaborate, and delight customers, while providing businesses with real-time communications analytics, intelligence and unique insights.

Learn more on our company website at www.8x8.com follow our pages on LinkedIn, Twitter, Facebook and Instagram.

As the Chief Information Security Officer (CISO) at 8x8, you will be responsible for developing and implementing a comprehensive cybersecurity strategy that safeguards the company’s information assets, systems, and data. This executive leadership role requires a strategic thinker with deep expertise in cybersecurity, risk management, and compliance, especially in the context of a publicly traded company. You will work closely with senior leadership, including the Board of Directors, to ensure that cybersecurity is integral to the company's overall strategy and operations.

Key Responsibilities:

Strategic Leadership:

• Develop and execute a forward-looking cybersecurity strategy that aligns with the company’s business goals and regulatory requirements.

• Lead and manage the cybersecurity team, fostering a culture of security awareness and proactive risk management across the organization.

• Develop programs, processes, and procedures that enable Engineering, Operations, and GTM.

• Provide expert guidance to the CEO, executive team, Data Protection Committee, and the Board of Directors on cybersecurity risks, strategies, and incident response.

Risk Management:

• Identify, assess, and mitigate ‘practical’ cybersecurity threats and vulnerabilities that could impact the company’s operations, reputation, or valuation.

• Sustain a robust risk management framework that includes regular risk assessments, audits, and continuous monitoring.

• Ensure compliance with relevant laws, regulations, and industry standards, including Sarbanes-Oxley (SOX), General Data Protection Regulation (GDPR), and others.

Incident Response & Crisis Management:

• Develop and maintain an incident response plan to manage and mitigate the impact of security breaches or cyber-attacks.

• Lead the company’s response to cybersecurity incidents, coordinating with internal teams, external partners, and law enforcement as necessary.

• Conduct post-incident analysis to identify lessons learned and implement improvements.

Security Architecture & Technology:

• Oversee the design and implementation of security architectures that protect the company’s infrastructure, applications, and data.

• Evaluate and deploy advanced security technologies, including encryption, firewalls, intrusion detection systems, and threat intelligence platforms.

• Stay abreast of the latest cybersecurity trends, threats, and technologies to ensure the company’s security posture remains strong and resilient.

Compliance & Governance:

• Ensure that the company's cybersecurity policies, procedures, and practices comply with all relevant regulatory and industry standards.

• Prepare and present regular reports to the Board of Directors on the status of the company’s cybersecurity program, including key metrics, risks, and incidents.

• Foster a culture of security awareness throughout the organization, providing training and resources to employees at all levels.

Vendor & Third-Party Management:

• Manage relationships with external vendors, consultants, and other third parties involved in the company’s cybersecurity efforts.

• Conduct thorough due diligence on third-parties to ensure they meet the company’s security standards.

Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. A Master’s degree or MBA is preferred.

• A minimum of 12 years of experience in information security, with at least 5 years in a leadership role.

• Experience in a publicly traded company is strongly preferred.

• In-depth knowledge of cybersecurity frameworks, such as NIST, ISO 27001, and CIS Controls.

• Proven track record of successfully managing cybersecurity risks, and incidents, in complex and dynamic environments.

• Strong understanding of regulatory requirements, including SOX, GDPR, HIPAA, and others relevant to the industry.

• Excellent leadership, communication, and presentation skills, with the ability to convey complex security concepts to non-technical stakeholders.

• Relevant certifications, such as CISSP, CISM, CISA, or similar, are highly desirable.

Why Join Us?

• Opportunity to lead the cybersecurity function at a prominent publicly traded company.

• Collaborative and innovative work environment.

• Competitive salary and benefits package, including equity.

• Commitment to professional development and career growth.

The compensation range reflects the Company’s good faith belief at the time of posting. 8x8 has different base pay ranges for different work locations within the United States, which allows us to pay employees competitively and consistently in different geographic markets. The range above reflects the potential base pay across the U.S. for this role; the applicable base pay range will depend on what ultimately is determined to be the candidate’s primary work location. Further, individual base pay depends on various factors, in addition to primary work location, such as complexity and responsibility of role, job duties/requirements, and relevant experience, knowledge, success, education and skills. Base pay ranges are reviewed and typically updated each year. Offers are made within the base pay range applicable at the time. Certain roles are eligible for additional rewards, including discretionary merit increases, bonus and/or stock. Certain roles have the opportunity to earn sales variable compensation incentives based on the terms of the plan and the employee’s role.

Salary Ranges:

8x8 is proud to provide equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics.

For 8x8 jobs located in the US: 8x8 participates in the E-Verify program.

View the Participant Poster in English and Español.

View the Right to Work Poster in English and Español.

We also provide reasonable accommodation to individuals with disabilities in accordance with applicable laws. Learn more or email us at careers@8x8.com (Include “Reasonable Accommodation” in the subject line)

For European Job Applicants our Job Applicant Privacy Notice can be found here.