About 1Kosmos
1Kosmos is a growing startup revolutionizing identity and authentication solutions. We're seeking a hands-on security leader who thrives in a technical, fast-paced environment and is ready to build and scale our security operations from the ground up.
About the Role
We're looking for a hands-on security leader to serve as CISO. The candidate must be a highly technical, operationally focused security leader who can roll up their sleeves and directly implement security solutions while building our security posture. This role is ideal for a senior security operations professional ready to transition into strategic leadership while maintaining a deep technical involvement.
Key Responsibilities
Security Operations Leadership (Primary Focus)
- Design, implement, and manage a comprehensive security operations infrastructure
- Personally configure and deploy security tools, including endpoint protection, SIEM, and cloud security solutions
- Build and optimize security monitoring, incident response, and threat detection capabilities
- Drive automation initiatives to eliminate manual inefficiencies in security processes
Compliance and Risk Management
Lead compliance initiatives including FedRAMP, SOC 2, and other regulatory frameworksPartner with business analysts to navigate regulatory requirements and auditsDevelop and maintain security policies, procedures, and documentationManage security risk assessments and remediation programsTechnical Security Architecture
Secure cloud infrastructure across AWS, Google Cloud, and other platformsIntegrate security into CI / CD pipelines, working closely with DevOps teamsImplement and manage security tools (CrowdStrike, etc.) across the organizationConduct hands-on security reviews of architecture and codeCross-functional Collaboration
Partner directly with development and engineering teams on secure software developmentOversee internal IT security (smaller component of role)Communicate security initiatives and status to leadership and stakeholdersCoordinate with global teams to ensure consistent security practicesRequirements
Required Qualifications
Technical Expertise
Minimum 7+ years in security operations with demonstrated hands-on experienceDeep expertise in cloud security (AWS, Google Cloud, Azure)Proven ability to personally deploy and configure enterprise security toolsStrong understanding of modern DevOps practices and CI / CD security integrationExperience with security automation and orchestrationCompliance and Governance
Hands-on experience with FedRAMP certification processesTrack record of achieving and maintaining SOC 2, ISO 27001, or similar certificationsUnderstanding of regulatory compliance requirements and audit processesLeadership and Communication
Experience leading security initiatives in fast-growing organizationsStrong communication skills for collaborating with global, distributed teamsAbility to translate technical security concepts for various stakeholdersComfortable working in a startup environment with evolving requirementsPreferred Qualifications
Currently in a similar-sized company CISO role, or a Deputy CISO, Director of Security Operations, or similar "CISO minus one" role at a larger organizationExperience in identity management or authentication technologiesBackground in both security operations and security engineeringPrevious startup or scale-up experienceLocated in or willing to work EST hours (strong preference for NY / NJ area)Public-facing CISO experience (client communications) is a plus but not requiredWhat We're NOT Looking For
Pure policy / governance executives without hands-on technical skillsTraditional "big company" CISOs focused only on strategy and presentationsCandidates who expect to delegate all technical work from day oneSecurity leaders who haven't maintained current technical skillsBenefits
What We Offer
Opportunity to build and shape security at a growing startupDirect impact on product and company security postureCollaborative environment with talented engineering teamsCompetitive compensation and equity packageFlexible work arrangements with preference for hybrid in NY / NJ area