Fractional CISO

To Apply for this Job Click Here

Fractional Chief Information Security Officer (CISO)
Type: Fractional / Contract
Location: Remote with occasional on-site support
Overview
We are seeking an experienced Fractional CISO to lead cybersecurity strategy and execution in a highly data-sensitive, regulated environment. As the organization expands its integrations with financial institutions and processes increasingly complex datasets, maintaining a strong security posture is critical—where even minor gaps can create significant business risk.
This role will serve as both a strategic advisor and hands-on leader, responsible for assessing current capabilities, guiding security decisions at the executive and product level, and implementing improvements across a Microsoft-centric, cloud-first environment.

Key Responsibilities

• Conduct a comprehensive security and risk assessment across systems, data flows, and processes
• Identify and remediate security gaps, particularly around sensitive financial data and potential PII exposure
• Develop and execute a prioritized security roadmap aligned to business risk tolerance and growth
• Provide ongoing assurance to executive leadership and the board that security practices are effective and aligned with risk expectations
• Partner with product and technology leadership to inform product decisions based on security risk, especially around data integrations and new capabilities
• Strengthen incident response readiness, including breach preparedness and response planning
• Implement and enhance security controls, policies, and governance frameworks
• Secure and optimize Microsoft environment (Azure, Microsoft 365, Entra ID, Defender, Intune)
• Establish and maintain risk management and compliance alignment (e.g., NIST, ISO 27001, SOC 2)

Qualifications

• Proven experience as a CISO or senior security leader in regulated or data-sensitive environments (e.g., financial services, fintech, healthcare)
• Demonstrated success conducting security assessments and executing remediation efforts
• Strong hands-on expertise in Microsoft security stack
• Experience advising executives and contributing to board-level discussions
• Deep understanding of risk management, data security, and compliance frameworks
• Ability to balance strategic leadership with hands-on execution in a fractional capacity

Success Looks Like

• Clear, board-level confidence in the organization’s security posture and risk management approach
• Identification and remediation of key security vulnerabilities and process gaps
• Improved incident response readiness and operational security maturity

To Apply for this Job Click Here

Equal Employment Opportunity Statement
Gravity IT Resources is an Equal Opportunity Employer. We are committed to creating an inclusive environment for all employees and applicants. We do not discriminate on the basis of race, color, religion, sex (including pregnancy, sexual orientation, or gender identity), national origin, age, disability, genetic information, veteran status, or any other legally protected characteristic. All employment decisions are based on qualifications, merit, and business needs.