Chief Information Security Officer (CISO)
Draper
Job Description
Job Description
Overview:
Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 2,000+ employees of Draper tackle important national challenges with a promise of delivering successful and usable solutions. From military defense and space exploration to biomedical engineering, lives often depend on the solutions we provide. Our multidisciplinary teams of engineers and scientists work in a collaborative environment that inspires the cross-fertilization of ideas necessary for true innovation. For more information about Draper, visit
Job Description Summary:
The Director 2, Information Security serves as the Chief Information Security Officer (CISO) accountable for protecting the organization’s information, systems, and mission-critical AI capabilities in support of U.S. national security objectives. The incumbent provides independent enterprise leadership over cybersecurity, cyber risk, and resilience across classified, controlled unclassified, and corporate environments.
Operating at the intersection of defense programs, advanced AI systems, and regulatory oversight, the Director 2, Information Security ensures security is embedded into digital engineering, AI lifecycle development, and operational execution while enabling mission success while meeting stringent DoD and federal compliance requirements. This role serves as a trusted advisor to executive leadership and the Board, translating cyber and AI risk into mission, contractual, and reputational impact.Job Description:
Duties/Responsibilities
- Define and execute an enterprise cybersecurity and cyber resilience strategy aligned to DoD mission requirements and organizational risk tolerance.
- Establish governance models for CUI, and unclassified environments, including cross-domain and enclave separation.
- Integrate cybersecurity into enterprise risk management, digital engineering, and AI strategy.
- Provide clear, decision-ready cyber risk reporting to executive leadership and the Board.
- Ensure compliance with applicable DoD and federal requirements, including, CMMC (all levels as applicable), DFARS / NIST SP 800-171 Rev 2.
- Serve as senior point of contact for government cybersecurity audits, inspections, and assessments.
- Partner with Legal, Contracts, and Program Leadership to manage cyber obligations tied to defense contracts.
- Establish security architecture and controls for AI/ML systems across the full lifecycle and establish AI security governance frameworks aligned to federal AI assurance expectations and responsible AI principles.
- Partner with Threat Management for AI-specific threats including data poisoning, model theft, adversarial attacks, and inference leakage.
- Ensure compliance with emerging federal AI security and assurance expectations.
- Lead enterprise security operations, threat intelligence, vulnerability management, and incident response across all environments.
- Direct response to cyber incidents involving classified systems, defense programs, or AI platforms.
- Coordinate with government stakeholders on reportable cyber events.
- Ensure cyber resilience, continuity of operations, and recovery planning are tested and effective.
- Partner within the organization to embed security-by-design and zero-trust principles.
- Lead cybersecurity risk management for subcontractors, vendors, and AI/data supply chains.
- Ensure flow-down of cyber and AI security requirements to partners and suppliers.
- Address foreign ownership, control, or influence (FOCI)-related cyber considerations where applicable.
- Build and lead a highly cleared, mission-focused cybersecurity organization.
- Promote a culture of security accountability across programs and engineering teams.
- Provide regular cybersecurity and AI risk briefings to the Board and senior executives.
- Advise on cyber and AI implications of new programs, acquisitions, and strategic initiatives.
- Represent the organization with government customers and oversight bodies on cybersecurity matters.
- Own and manage cybersecurity operating and capital budgets, including multi-year investment planning aligned to mission and growth objectives.
Skills/Abilities
- Executive presence with the ability to engage credibly with Boards, government customers, and regulators.
- Mission-driven mindset with sound judgment under pressure.
- Ability to balance speed, innovation, and assurance.
- High integrity, discretion, and accountability.
- Deep knowledge of DoD cybersecurity frameworks and accreditation processes.
- Strong understanding of secure system engineering and zero-trust architectures.
- Working knowledge of AI/ML systems and AI-specific security risks.
- Familiarity with digital engineering, model-based systems engineering (MBSE), and DevSecOps in defense contexts.
- Understanding of nation-state threat actors and advanced persistent threats.
- Financial acumen related to cybersecurity investment and capital planning.
Education
- Bachelor’s degree in Information Systems, Cybersecurity, or related field (or equivalent experience)
Experience
- 15 years of cybersecurity experience, including 10+ years in senior leadership roles
- Experience supporting the Defense Industrial Base (DIB) and cleared contractor facilities
- Deep understanding of and experience applying CMMC, RMF, NIST SP 800-53/171, DFARS, DAAPM, and/or JSIG directives
- Extensive experience supporting DoD or intelligence community programs
- Demonstrated ownership of classified and CUI cybersecurity environments
- Experience leading organizations through government cyber assessments and audits
- Direct experience managing cyber incidents in regulated or mission-critical environments
Additional Job Description:
Applicants selected for this position will be required to obtain and maintain a government security clearance.
Current in-scope Top Secret security clearance with SCI eligibility is required.
Connect With Draper for Future Opportunities! If you don't find the right posting in our Career Opportunities, you may submit your resume for future consideration.
Job Location - City:
Cambridge
Job Location - State:
Massachusetts
Vacancy posted 27 days ago
Similar jobs that could be interesting for youBased on the Chief Information Security Officer (CISO) in Boston, MA vacancy
- ...Chief Information Security Officer (CISO) About the Company Accomplished executive search firm Industry Staffing and Recruiting Type Privately Held About the Role The Company is seeking a Chief Information Security Officer (CISO) to oversee and...Suggested
- ...CHIEF INFORMATION SECURITY OFFICER (CISO) , Information Systems and Technology (IS&T), establishes and leads the enterprise-wide information security strategy across MIT. The CISO leads the overall direction and implementation of the information security policies, programs...Suggested
Massachusetts Institute of Technology
Cambridge, MA2 days ago $325k - $375k
...Search for the Chief Information Security Officer Massachusetts Institute of Technology Cambridge, Massachusetts The Massachusetts Institute... ...as its inaugural Chief Information Security Officer (“CISO”). This role will be accountable for defining and advancing...SuggestedImmediate startMassachusetts Institute of Technology
Cambridge, MA3 hours ago- ...Chief Information Security Officer (CISO), Growth About the Company Accomplished provider of top-tier security services Industry Security and Investigations Type Privately Held About the Role The Company is seeking a Chief Information Security...Suggested
- ...Job Title: Chief Information Security Officer (CISO) Location: Houston, TX (On-Site) Type: Full-Time About Us: Our Client is a leading provider specializing in laboratory testing services, dedicated to delivering accurate, timely, and high-quality...SuggestedFull timeRemote work
Saviance
Boston, MA7 days ago - ...Reporting to the Global Chief Technology Officer, the Chief Information Security Officer (formerly known as the Global Security Officer) develops and maintains... ...management activities, and influences user behavior. The CISO is responsible for managing risks relating to...Work at officeLocal area
CERES Group
Boston, MA4 days ago - ...Chief Information Security Officer (CISO) Houston, TX (Hybrid) Reports to: Chief Information Officer (CIO) . The Opportunity This role goes beyond traditional security leadership. You will: Architect the security foundation for a rapidly evolving...
Saviance
Boston, MA4 days ago - ...Imprivata, we deliver unified access and security management programs that eliminate... ...’ll find it here. We are seeking a Chief Information Security Officer to join our team. This is a hybrid... ...Chief Information Security Officer (CISO) to lead the company’s global information...Work at officeLocal area
Mass Digital Health
Waltham, MA3 days ago - ...Chief Information Officer (CIO) and Chief Technology Officer (CTO) About the Company Expanding company in the payments & neo banking sectors... ...tasked with overseeing the development and maintenance of secure, scalable, and efficient payment solutions, and ensuring compliance...Remote work
$75k - $156k
## Information System Security OfficerApplyremote type: Onsite Requiredlocations: Cambridge, MAtime type: Full timeposted on: Posted Yesterdayjob... ...Description Summary:**The Information System Security Officer 1 (ISSO) supports the continuous monitoring and authorization...Full timeLocal areaInuplands
Cambridge, MA3 days ago$75k - $156k
...Job Summary The Information System Security Officer 1 (ISSO) supports the continuous monitoring and authorization efforts of multiple classified information systems under the direction of the Information System Security Manager (ISSM). The ISSO performs a variety of technical...The Charles Stark Draper Laboratory, Inc.
Cambridge, MA2 days ago$75k - $156k
...Draper Inc. in Cambridge, MA is looking for an Information System Security Officer to support cybersecurity efforts for classified systems. The ideal candidate will assist the Information System Security Manager and ensure security compliance across all systems. Requirements...Draper
Cambridge, MA2 days ago$104.04k - $140.76k
...Information Systems Security Officer (ISSO) III The Information Systems Security Officer (ISSO) III is responsible for ensuring the appropriate operational security posture is maintained for an information system and as such, works in close collaboration with the ISSM...For contractorsWork at officeRemote workGeneral Dynamics Information Technology
Quincy, MA5 days ago- ...About the Role We are seeking an experienced Information System Security Officer (ISSO) to support the ISSO Team Lead in securing classified information systems. In this role, you will help ensure systems are operated, monitored, and maintained in compliance with...
The Judge Group
Cambridge, MA7 days ago - ...Information Systems Security Officer (ISSO) Employment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment...Full timeLocal areaFlexible hours
Contact Government Services LLC
Boston, MA4 days ago $105.6k - $145.2k
...to partner with enterprise customers to achieve their cybersecurity objectives. The role requires 3+ years of experience in information security, knowledge of cyber operations, and excellent communication skills. The firm offers a competitive salary between $105,600 -...Remote jobFlexible hours- ...please visit Job Description Job Summary: The Information Security and Data Privacy Officer leads technical and administrative initiatives related... ...develop security posture metrics to inform the SEAS Chief Technology Officer and leadership of key information...Work experience placementWork at office
Harvard University
Allston, MA4 days ago - ...Virtual Chief Information Security Officer (vCISO) Woburn/Hybrid About iCorps and the Role iCorps Technologies has delivered IT consulting and managed... ...the experience and operational discipline of a seasoned CISO to organizations that cannot retain one full time. We expect...Full timeRemote work
I-Corps
Woburn, MA2 days ago $250k - $350k
...Executive Chief Technology Officer, Defense (Remote Considered) Ainabl is delivering the world’s first... ..., revenue-generating quantum-secure networking systems for next-generation... ...this is your opportunity. Additional Information Location: Boston, MA, USA (Hybrid – regular...Permanent employmentRemote workAinabl
Boston, MA2 days ago- ...include travel for on‑site collection efforts as well as an in‑office presence at the primary firm office which includes the... ...protected] Explore additional job opportunities with CGS on our Job Board: For more information about CGS please visit: #J-18808-Ljbffr...Full timeWork at officeRemote workFlexible hours
CGS Federal (Contact Government Services)
Boston, MA4 days ago - Job Description Job Description Benefits: ~401(k) ~401(k) matching ~ Company parties ~ Competitive salary ~ Employee discounts ~ Flexible schedule ~ Free food & snacks ~ Health insurance ~ Paid time off ~ Profit sharing ~ Training & development...Full timePart timeSummer workFlexible hours
Evolve Chiropractic & Wellness
Boston, MA11 days ago $75k - $85k
...Qualifications Open to all all state or about to be state licensed chiropractors Business minded adjustment first Additional Information ~$75,000 to $85,000 if you are interested and meet the qualifications you will receive an email with a link for the full...ChiropracticHeadhunters.com
Boston, MA24 days ago$40 - $45 per hour
...as well as ensuring that you have the financial stability and security to think long term. Underpinning all of this is a clear set of... ...an innovative force, where healthcare meets retail. For more information, visit Business Structure The Joint Corp. is a franchisor...Part timeRelocation packageThe Joint Chiropractic
Dedham, MA5 days ago$119k - $195.5k
...IT Security Operations Manager Location Boston Apply Now ( The Federal Home Loan... ...Summary New opportunity with our growing Information Security (IS) team! We are seeking an... ...have a hybrid work schedule in our Boston office in accordance with the Bank’s Hybrid...Hourly payFull timeWork experience placementBank staffWork at officeFederal Home Loan Bank of Boston
Boston, MA3 days ago$124k - $172k
...agencies, and the public. This involves keeping the stakeholders informed of progress and issues in order to manage expectations on all... ...sensitivity and conflicting interests; and ~ Proficiency with computer office productivity (i.e. MS Office) and project management software...Live inLocal areaWorldwideWSP
Boston, MA6 days ago- ...ISACA is seeking a Chief Information Security Officer (CISO) in Cambridge, MA to lead the enterprise-wide information security strategy. This senior leadership role requires a minimum of 15 years in cybersecurity or related fields, including 5 years in a leadership position...Full time
ISACA
Cambridge, MA3 days ago $250k
...Akamai Technologies GmbH is seeking a sales professional in Cambridge, MA, with 8-12+ years of experience in enterprise SaaS or security. This role involves identifying opportunities, qualifying leads, and leading the Enterprise Security agenda while traveling up to 5...Akamai
Cambridge, MA3 days ago$110k - $160k
Brown Brothers Harriman & Co. is looking for an experienced Cyber Incident Response - Senior Analyst to join its Cybersecurity Team in Boston. The role involves incident management, documentation, and cross-functional coordination during cyber investigations. The ideal ...$120k - $217.5k
...The Vice President, Infrastructure Security Officer is accountable for providing enterprise-level cyber risk leadership across infrastructure... ...origin, ancestry, ethnicity, age, disability, genetic information, sex, sexual orientation, gender identity or expression, citizenship...Temporary workFlexible hoursState Street Corporation
Quincy, MA7 days ago- ...Massachusetts Institute of Technology is seeking a Chief Information Security Officer (CISO) to lead the enterprise-wide information security strategy. The role involves establishing policies, programs, and procedures to protect information security assets and ensure...
Massachusetts Institute of Technology
Cambridge, MA2 days ago
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Chief Information Security Officer (CISO). Be the first to apply!
Related searches
- chief information security officer Boston, MA
- ciso Boston, MA
- chief information security officer ciso Boston, MA
- information security officer Boston, MA
- business information security officer Boston, MA
- information security lead Boston, MA
- entry level information security analyst Boston, MA
- information security Boston, MA
- sr information security engineer Boston, MA
- senior information security analyst Boston, MA