Logo for SWCA Environmental Consultants

VP/CISO, Information Security

Role overview

Qualifications

  • Prior experience in a senior Information Security leadership role with responsibilities comparable to a CISO, Deputy CISO, or VP of Information Security.
  • 15+ years of experience in enterprise cybersecurity, including cloud-based environments.
  • Proven experience leading SOC 2 Type 2 (or equivalent) certification programs end-to-end.
  • Bachelor’s degree required.

Responsibilities

  • Define and execute the enterprise security vision, strategy, and multi-year roadmap aligned to business and technology priorities.
  • Act as the executive leader during security incidents and crisis events.
  • Oversee and contribute to the design and implementation of security controls, including cloud security and application security.
  • Own and lead the GRC function, including direct management of team members.

About the company

SWCA Environmental Consultants logo

SWCA Environmental Consultants

SWCA is a 100% employee-owned environmental firm that offers comprehensive environmental planning, regulatory compliance, and natural and cultural resources management services. Our expanding team of professionals combines scientific expertise with in-depth knowledge of permitting and compliance protocols to achieve technically sound, cost-effective solutions for a full spectrum of environmental projects throughout the U.S. and its territories.

Company details

Company typeLarge
Company size1001 - 5000

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

About Us:

Eagleview is a leading provider of aerial imagery, property insights and software that transforms the way people work. Eagleview holds more than 300 patents and owns a large geospatial data and imagery library encompassing 94 percent of the US population. Eagleview provides the most accurate data, enabling customers in the government, construction, solar and insurance industries to make timely, informed and better decisions.

Overview:

The VP, Information Security will build a modern, scalable, and resilient security program, ensuring strong protection of:

  • Enterprise systems and cloud infrastructure
  • Customer-facing platforms and data
  • AI / ML models, data pipelines, and analytics platforms
  • The role requires a leader who can lead during security crises, drive rapid response, and build long-term capability, while aligning security investments to business priorities.

This is a full-time US Remote role with salary of $198,500 to $240,000 and bonus eligible.

Responsibilities:

Strategy & Leadership

  • Define and execute the enterprise security vision, strategy, and multi-year roadmap aligned to business and technology priorities
  • Build and lead a comprehensive, risk-based information security program across infrastructure, applications, and data.
  • Serve as the primary executive security advisor to the CIO and leadership team.
  • Provide hands-on technical leadership in architecture decisions, risk tradeoffs, and incident response.
  • Other duties as assigned.

Security Crisis Management & Incident Response

  • Act as the executive leader during security incidents and crisis events.
  • Lead end-to-end incident response, including investigation, containment, recovery, and communication.
  • Establish and continuously improve:
    • Incident response playbooks.
    • Escalation and communication models.
    • Tabletop exercises and readiness programs.
  • Ensure rapid, coordinated response across engineering, infrastructure, legal, and business teams.

Enterprise Security Engineering & Operations

  • Oversee and contribute to the design and implementation of security controls, including:
    • Cloud security (AWS).
    • Identity and access management (RBAC).
    • Application security and DevSecOps.
    • Data security (encryption, classification, protection).
  • Improve:
    • Vulnerability management and remediation velocity.
    • Detection, monitoring, and response capabilities.
    • Security tooling effectiveness and cost efficiency.
  • Serve as technical escalation point for complex security issues.

AI Governance & Model Risk Management

  • Define and lead the AI security and governance framework, including:
    • Model risk management.
    • Secure AI/ML development and deployment practices.
    • Data security for AI pipelines.
  • Partner with Enterprise Data & AI teams to ensure:
    • Governance, auditability, and risk controls for AI systems.
  • Integrate AI-related risks into the enterprise risk management program.

Governance, Risk, & Compliance

  • Own and lead the GRC function, including direct management of 2 GRC team members.
  • Define and maintain security policies, standards, and procedures.
  • Lead all audit and compliance activities, including customer and regulatory requirements.
  • Oversee:
    • Vendor risk management.
    • Regulatory compliance (e.g., SOC2, GDPR, HIPAA).
    • Security reporting and risk metrics.

Business & Customer Engagement

  • Support customer and prospect security due diligence, audits, and questionnaires.
  • Partner with product, engineering, and GTM teams to ensure security is a business enabler.
  • Represent Eagleview externally on security posture and capabilities.

Organizational Leadership & Culture

  • Build and develop a high-performing cybersecurity organization.
  • Address capability gaps through hands-on leadership, hiring, and coaching.
  • Drive security awareness and training programs across the company.
  • Establish a strong security-first culture across engineering and business teams.
Qualifications:

Required Experience:

  • Prior experience in a senior Information Security leadership role with responsibilities comparable to a CISO, Deputy CISO, or VP of Information Security.
  • 15+ years of experience in enterprise cybersecurity, including cloud-based environments.
  • Proven experience leading SOC 2 Type 2 (or equivalent) certification programs end-to-end.
  • Strong hands-on experience across:
    • Cloud security (AWS).
    • Application security / DevSecOps.
    • Identity and access management.
    • Security operations and incident response.
  • Demonstrated experience leading security incidents and crisis management.
  • Experience leading GRC, compliance, and risk programs.
  • Certifications preferred (CISSP, CISM, GIAC).
  • Bachelor’s degree required.


Preferred Experience:

  • Experience with AI/ML security, data governance, or model risk management.
  • Advanced degree preferred.

Core Competencies:
The successful candidate will demonstrate strength in the following competencies as well as foundational competencies which can be found here:

  • Enterprise Perspective – Makes decisions with enterprise-wide impact in mind.
  • Talent Assessment & Insight – Accurately assesses performance and potential.
  • Leading Through Systems – Builds systems that drive scalable results.
  • Continuous Improvement – Drives continuous improvement and operational excellence.
  • Cross-Functional Dynamics – Influences diverse groups to achieve alignment.
  • Vision & Purpose Leadership – Inspires with a clear, compelling vision.

This job description is not an exclusive or exhaustive list of all job functions that a workforce member in this position may be asked to perform. Duties and responsibilities can be changed, expanded, reduced, or delegated by management to meet the business needs of the company.

EEO Statement:

The compensation offered to the successful candidate will be based on a variety of factors, including but not limited to, the candidate’s work experience, education and licenses, work-related training, key skills, the core duties of the role and its associated responsibilities, additional benefits offered, and the location where the work will be performed. All Fulltime (30+ hours) employees are eligible for PTO, Sick, and Parental Leave; Medical, Dental, and Vision Insurance; 401(k) Plan; Health Savings Account; Life Insurance; Employee Assistance Program; Pet Insurance. This is a full-time US Remote role with salary of $198,500 to $240,000 with a potential bonus of 30%.

 

As an Equal Opportunity and E-Verify Employer, Eagleview Technologies does not discriminate on the basis of any legally protected status or characteristic. Protected veterans and individuals with disabilities are encouraged to apply. We are committed to giving all applicants equal opportunity to participate in the application process and are open to discussing reasonable accommodations for candidates with disabilities.

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

Information Security Analyst Related jobs

Other jobs at SWCA Environmental Consultants

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.