Deputy Chief Information Security Officer (CISO) (VP)
Cybersecurity SaaS · Global · VP Level
The Opportunity
This is a rare one. As Deputy CISO, you'll step into one of the most consequential security leadership roles in the industry — not just protecting a business, but helping shape what enterprise-grade security looks like for thousands of organisations that rely on the platform every day.
Reporting directly to the CISO and operating as their right hand (and occasional stand-in at the board table), you'll play a central role across application and product security, global Security Operations, and the cross-functional partnerships that tie it all together. This is an executive role with real budget, real influence, and a CISO who's genuinely invested in your growth.
What You'll Do
You'll be a driving force across two of the most critical pillars of the security organisation — AppSec and SecOps — while partnering closely with Engineering, Product, Legal, and People.
On the application and product security side, you'll help mature the SSDLC, embed security into CI/CD pipelines, champion threat modelling across product teams, and ensure the company's SaaS products are built and operated to the highest standards. You'll play a key role in vulnerability management, pen testing, bug bounty operations, and cloud-native security controls across AWS, Azure, and GCP.
On the security operations side, you'll help lead a global SOC — driving detection engineering, incident response, threat intelligence, and forensics. You'll contribute to evolving the SIEM/SOAR/EDR ecosystem, push automation forward, and help move MTTD and MTTR in the right direction. When something serious happens, you'll be a central part of the IR programme and a trusted voice for the executive team.
Across both, you'll help build and develop a world-class, globally distributed team — coaching, sponsoring, and contributing to an environment where people do the best work of their careers.
What You'll Bring
You're a rare combination: a technologist with genuine depth in AppSec and security operations, and a communicator who can translate threat landscapes into board-ready narratives without losing the nuance. Specifically, you'll bring:
Extensive experience in information security, with at least 5 years leading cross-functional security teams at Director or VP level
Deep hands-on expertise in application security — OWASP, SAST/DAST, threat modelling, secure code review
Proven experience helping mature a SOC at enterprise scale, including detection engineering and incident response
Strong cloud-native security background across at least one major hyperscaler
Experience communicating directly with C-suite and board audiences on risk and investment
A business-first mindset — you frame security decisions through risk and opportunity, not just compliance
Experience in SaaS or cloud-first environments, ideally in the cybersecurity sector
CISSP, CISM, CCSP or equivalent is preferred. So is a track record of helping build inclusive, high-performing teams.
Why Here, Why Now
You'll have the sponsorship, budget, and credibility to move fast and make a lasting contribution. The CISO is building for succession — this role is explicitly designed to develop the next generation of security C-suite leadership. If you want to do the most meaningful work of your career in security, this is it.
The base salary range for this position is £148,000−£222,000 plus benefits. This range represents the minimum and maximum new hire compensation for this role. The position may also be eligible for incentive plans and additional benefits, in accordance with company policy and local regulations. Our salary ranges are determined by role, level, and location with individual compensation also dependent on factors such as qualifications, experience, and skills. Final offers will reflect these considerations and may vary accordingly.
Belonging at Mimecast
Cybersecurity is a community effort. That’s why we’re committed to building an inclusive, diverse community that celebrates and welcomes everyone – unless they’re a cybercriminal, of course.
We’re proud to be an Equal Opportunity and Affirmative Action Employer, and we’d encourage you to join us whatever your background. We particularly welcome applicants from traditionally underrepresented groups.
We consider everyone equally: your race, age, religion, sexual orientation, gender identity, ability, marital status, nationality, or any other protected characteristic won’t affect your application.
Due to certain obligations to our customers, an offer of employment will be subject to your successful completion of applicable background checks, conducted in accordance with local law.
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment.