Chief Information & Security Officer (CISO)

Chief Information & Security Officer (CSIO)

WR Immigration is a global immigration firm known worldwide for its innovation, technology, high-touch legal services, and flawless execution. With about 50 attorneys and 150 immigration professionals working out of offices in Boston, Denver, Los Angeles, New York, Oakland, San Diego, San Francisco, Santa Monica, Canada, and Shanghai, WR provides corporate global visa services in over 100 countries. As one of the fastest-growing immigration service providers, WR Immigration is committed to technology-driven legal solutions, with a proprietary Salesforce-based platform (WRapid) at the core of its service offerings.

The Chief Information Officer (CIO) will provide strategic leadership for WR Immigration's information governance, cybersecurity, privacy, artificial intelligence, enterprise systems, and digital transformation initiatives. The CIO will ensure the firm's information assets, client data, and technology ecosystem are secure, compliant, and aligned with business objectives while driving innovation and operational excellence across the organization.

The CIO will serve as a trusted advisor to executive leadership on cybersecurity, AI adoption, privacy, risk management, and information strategy. They will work closely with business leaders, legal teams, technology teams, and external partners to establish best-in-class governance frameworks that support WR Immigration's continued growth and reputation as an industry leader.

Key Responsibilities

Information Strategy & Executive Leadership

• Develop and execute a comprehensive information and technology strategy aligned with WR Immigration's business goals and long-term growth objectives.
• Serve as the executive leader responsible for information governance, cybersecurity, privacy, data management, and AI governance.
• Advise executive leadership on emerging risks, opportunities, and trends related to cybersecurity, privacy, artificial intelligence, and digital transformation.
• Establish enterprise-wide policies, standards, and governance frameworks to ensure the effective management and protection of information assets.
• Build and maintain a culture of security, compliance, innovation, and responsible technology use across the organization.

Cybersecurity, Privacy & Risk Management

• Lead the development and implementation of cybersecurity strategies, controls, and incident response programs to protect client and firm data.
• Oversee enterprise risk assessments, vulnerability management, business continuity planning, and disaster recovery initiatives.
• Establish and maintain metrics and reporting for cybersecurity posture, risk exposure, and compliance activities.

AI Governance & Innovation

• Develop and oversee governance frameworks for the responsible use of artificial intelligence across the organization.
• Evaluate emerging AI technologies and identify opportunities to improve operational efficiency, service delivery, client experience, and knowledge management.
• Establish policies and controls governing AI usage, model risk management, data privacy, and ethical considerations.
• Partner with business and technology teams to implement AI solutions while ensuring appropriate security, compliance, and governance standards.

Data Governance & Enterprise Information Management

• Lead enterprise data governance initiatives to improve data quality, accessibility, retention, and lifecycle management.
• Establish policies and procedures for information management, records retention, data classification, and information security.
• Develop enterprise reporting and analytics capabilities to support data-driven decision making.
• Ensure alignment between business objectives and information architecture, governance, and management practices.

Technology & Business Partnership

• Collaborate with technology leadership to ensure enterprise systems and platforms align with business, security, and governance requirements.
• Partner with stakeholders across legal, operations, client services, HR, finance, and business development to identify opportunities for process improvement and automation.
• Evaluate and oversee strategic technology vendors and service providers.
• Support enterprise-wide digital transformation initiatives and organizational change management efforts.

Compliance, Audit & Regulatory Readiness

• Lead the firm's ISO certification and compliance efforts, ensuring adherence to security, privacy, and quality management standards.
• Coordinate internal audits, external audits, risk assessments, and compliance reviews.
• Maintain policies, procedures, training programs, and documentation supporting regulatory and certification requirements.
• Develop and deliver information security, privacy, and AI governance training programs across the organization.

Qualifications & Experience

Required:

• 10+ years of leadership experience in information management, cybersecurity, privacy, risk management, compliance, or related executive roles.
• Demonstrated expertise in cybersecurity, privacy, AI governance, enterprise risk management, and information governance.
• Experience developing and implementing enterprise-wide governance, compliance, and security programs.
• Strong understanding of privacy regulations, cybersecurity frameworks, and risk management methodologies.
• Experience managing executive-level stakeholder relationships and advising senior leadership on strategic initiatives.
• Proven ability to lead cross-functional teams and drive organizational change.
• Excellent communication, presentation, and executive leadership skills.
• Experience managing third-party vendors, risk assessments, audits, and compliance initiatives.
• Bachelor's degree in Information Systems, Cybersecurity, Business Administration, Computer Science, or a related field.

Preferred:

• Experience within legal services, professional services, financial services, healthcare, or other highly regulated industries.
• Certifications such as CIPP/US, CIPM, CISSP, CISM, CRISC, CGEIT, or equivalent.
• Experience leading AI governance programs and enterprise AI adoption initiatives.
• Familiarity with Salesforce ecosystems, enterprise SaaS platforms, and cloud-based business applications.
• Experience leading ISO certification efforts and implementing industry-recognized governance frameworks.
• Advanced degree (MBA, MS, or equivalent) preferred.

Success Metrics

• Strengthened cybersecurity posture and reduced organizational risk.
• Successful implementation of enterprise privacy, information governance, and AI governance programs.
• Achievement and maintenance of relevant compliance certifications and audit readiness.
• Increased adoption of secure, innovative technologies that improve operational efficiency and client service.
• Enhanced executive visibility into enterprise risk, security, compliance, and information management performance.
• Strong alignment between business objectives, information strategy, and technology investments.

Compensation & Benefits:

WR Immigration offers a robust and competitive suite of benefits designed to support the health, well-being, and financial security of our team members. Benefits for full-time employees include paid time off and paid holidays; medical, dental, vision, and life insurance coverage; health savings and flexible spending accounts to help offset healthcare and dependent care expenses; multiple retirement plan options (401k & Roth 401k); and access to an employee assistance program. Benefits availability and eligibility may vary based on role and employment status.

Salary may vary based on location and experience. The expected salary range for this position is between $250,000 and $275,000 per year plus bonus.


Additional Information:

WR Immigration is committed to creating, fostering, and preserving an inclusive environment. We support our team members from all nations and backgrounds to achieve their goals and build lives of purpose and success. We recognize that our team members bring diverse talents, skills, and experiences, and we believe it is our responsibility to create an inclusive and respectful workplace that inspires excellence and compassion, both internally and in our service to clients.

Please note, we are not working with outside recruiters for this position.

WR Immigration does not accept unsolicited resumes from recruiters or employment agencies. The firm will not be responsible for any referral fees or other compensation in the absence of a signed agreement between WR Immigration and the recruiter or agency. Any unsolicited resumes submitted without such an agreement, including those sent directly to hiring managers, will be considered the property of WR Immigration, and the firm reserves the right to pursue and hire candidates submitted in this manner without financial obligation.