Key Responsibilities:

Strategic Leadership:

• Develop and execute a forward-looking cybersecurity strategy that aligns with the company’s business goals and regulatory requirements.
• Lead and manage the cybersecurity team, fostering a culture of security awareness and proactive risk management across the organization.
• Develop programs, processes, and procedures that enable Engineering, Operations, and GTM.
• Provide expert guidance to the CEO, executive team, Data Protection Committee, and the Board of Directors on cybersecurity risks, strategies, and incident response.

Risk Management:

• Identify, assess, and mitigate ‘practical’ cybersecurity threats and vulnerabilities that could impact the company’s operations, reputation, or valuation.
• Sustain a robust risk management framework that includes regular risk assessments, audits, and continuous monitoring.
• Ensure compliance with relevant laws, regulations, and industry standards, including Sarbanes-Oxley (SOX), General Data Protection Regulation (GDPR), and others.

Incident Response & Crisis Management:

• Develop and maintain an incident response plan to manage and mitigate the impact of security breaches or cyber-attacks.
• Lead the company’s response to cybersecurity incidents, coordinating with internal teams, external partners, and law enforcement as necessary.
• Conduct post-incident analysis to identify lessons learned and implement improvements.

Security Architecture & Technology:

• Oversee the design and implementation of security architectures that protect the company’s infrastructure, applications, and data.
• Evaluate and deploy advanced security technologies, including encryption, firewalls, intrusion detection systems, and threat intelligence platforms.
• Stay abreast of the latest cybersecurity trends, threats, and technologies to ensure the company’s security posture remains strong and resilient.

Compliance & Governance:

• Ensure that the company's cybersecurity policies, procedures, and practices comply with all relevant regulatory and industry standards.
• Prepare and present regular reports to the Board of Directors on the status of the company’s cybersecurity program, including key metrics, risks, and incidents.
• Foster a culture of security awareness throughout the organization, providing training and resources to employees at all levels.

Vendor & Third-Party Management:

• Manage relationships with external vendors, consultants, and other third parties involved in the company’s cybersecurity efforts.
• Conduct thorough due diligence on third-parties to ensure they meet the company’s security standards.

Qualifications:

Required:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• A minimum of 12 years of experience in information security, with at least 5 years in a leadership role.
• In-depth knowledge of cybersecurity frameworks, such as NIST, ISO 27001, and CIS Controls.
• Proven track record of successfully managing cybersecurity risks, and incidents, in complex and dynamic environments.
• Strong understanding of regulatory requirements, including SOX, GDPR, HIPAA, and others relevant to the industry.
• Excellent leadership, communication, and presentation skills, with the ability to convey complex security concepts to non-technical stakeholders.

Preferred:

• A Master’s degree or MBA.
• Experience in a publicly traded company is strongly preferred.
• Relevant certifications, such as CISSP, CISM, CISA, or similar, are highly desirable.

The compensation range reflects the Company’s good faith belief at the time of posting. 8x8 has different base pay ranges for different work locations within the United States, which allows us to pay employees competitively and consistently in different geographic markets. The range above reflects the potential base pay across the U.S. for this role; the applicable base pay range will depend on what ultimately is determined to be the candidate’s primary work location. Further, individual base pay depends on various factors, in addition to primary work location, such as complexity and responsibility of role, job duties/requirements, and relevant experience, knowledge, success, education and skills. Base pay ranges are reviewed and typically updated each year. Offers are made within the base pay range applicable at the time. Certain roles are eligible for additional rewards, including discretionary merit increases, bonus and/or stock. Certain roles have the opportunity to earn sales variable compensation incentives based on the terms of the plan and the employee’s role.

Salary Ranges:

$0.00 - $0.00

8x8 is proud to provide equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics.

For 8x8 jobs located in the US: 8x8 participates in the E-Verify program.

View the Participant Poster in English and Español.

View the [Right to Work Poster](https://www.e-verify.gov/sites/default/files/everify/posters/IER_RightToWorkPoster Eng_Es.pdf) in English and Español.

We also provide reasonable accommodation to individuals with disabilities in accordance with applicable laws. Learn more or email us at [careers@8x8.com](mailto:careers@8x8.com?subject=Reasonable Accomodation) (Include “Reasonable Accommodation” in the subject line)

For European Job Applicants our Job Applicant Privacy Notice can be found here.