Chief Information Security Officer

Rightworks offers the onlyintelligent cloud purpose-built for accounting firmsand professionals. Backed by award-winning support, ourfullymanaged IT and applicationsensure customers have secure, reliable, on-demand access to their technology. We provide acurated software ecosystemthatsimplifies the complexity of running an accounting firm or small business, supportedby acommunityof thought leaders, peer networks, and educational resources. Oursuccess is made possible by leveraging decades of specialized experience in leadingaccounting firms, SMBs and technology companies. Thousands of Firms and SMBs count on us to run their business every day.

We have a great team, we're growing fast, and have a winning culture based on innovation, teamwork, and mutual respect.

Job Overview :

The Chief Information Security Officer (CISO) will be responsible for defining and executing the company's enterprise-wide security strategy across internal systems, customer-facing MSP offerings, and SaaS products. The CISO will ensure the confidentiality, integrity, and availability of all systems and data while positioning Rightworks as a trusted leader in secure cloud services for the accounting industry.

As a direct report to the CTO, the CISO will play a strategic role in overall technology leadership. This position participates as a strong voice in the technical leadership team, with specific responsibilities for leading and executing Rightworks Security strategy and operations.

This is a hybrid position, with 3 days per week in our Nashua, NH headquarters.

Responsibilities :

• Enterprise Security Leadership : Own the overall security strategy for internal systems, networks, and data assets across Rightworks.
• MSP & Hosting Security : Design and enforce robust security controls for Rightworks' Managed IT and hosting services, ensuring compliance with industry and national standards and requirements.
• SaaS & Product Security : Support application and public cloud stack security for Rightworks solutions, embedding "security by design," and supporting DevSecOps cultural transformation.
• Cloud Security Architecture : Ensure secure architecture around integration between public cloud, private cloud, and IT systems.
• Champion and govern identity and access management (IAM), encryption standards, zero-trust frameworks , and secure DevOps practices .
• Lead efforts to harden APIs, integrations, and third-party connectors through audit and testing Rightworks technology systems.
• Customer & Industry Engagement : Act as the company's external security authority, engaging with customers, partners, and industry groups to represent Rightworks as a thought leader in cybersecurity for accounting professionals.
• Partner with Sales and Customer Success to reassure large enterprises and key customers about data protection and continuity of service. Be a strong voice at the table on behalf of Rightworks with our customers. Lead and listen, bringing industry perspective and expertise to the table.
• Partner with product engineering, infrastructure, and operations teams to integrate security practices into development pipelines. Identify areas of opportunity for our organization to improve.
• Governance, Risk & Compliance (GRC) : Establish and lead the company's GRC programs, policies, and risk management frameworks. Ensure adherence to applicable regulations and certifications.
• Security Incident Response & Resilience : Build and maintain robust security incident detection, response, and recovery plans; lead post-mortem analyses and continuous improvement initiatives.
• Security Operations & Monitoring : Oversee 24 / 7 security operations, including threat intelligence, vulnerability management, and monitoring of cloud and MSP environments.
• Lead Operations of Security Products and Systems : Oversee implementation of customer facing security solutions, including endpoint management and office management.
• Team Leadership : Build and mentor a high-performing security team, developing leadership capacity and instilling a culture of proactive risk management. Engage as a senior leader in our organization, mentoring engineering and infrastructure leaders, and contributing to enterprise architecture strategy.

Requirements :

Personal Characteristics :

Eligibility Requirements :

Compensation :

The On-Target Earnings (OTE) range for this role is $260,000-$350,000.

Benefits :

To provide best-in-class solutions, we need a best-in-class team. We offer competitive salaries to recruit the best talent. We provide company-paid short and long-term disability insurance, life insurance and a generous 401K match. We offer highly affordable medical, dental, vision coverage, and many other valuable benefits. We offer flexible PTO, and numerous paid holidays, affording you the time to be there for what is important in your life. We encourage giving back to our communities by providing paid volunteer time off. We are proud to be an Equal Opportunity Employer!

This job description may not be inclusive of all assigned duties, responsibilities, or aspects of the job described, and may be amended at any time at the sole discretion of the employer.