CISO - Chief Information Security Officer

Operations

Ra'anana

Description

Job Title: Chief Information Security Officer (CISO)

Location: Ra’anana Israel

Hybrid - 4 days in office

DriveNets is a technology leader in disaggregated high-scale networking solutions for service providers and AI infrastructures. Founded in December 2015, DriveNets created a radical new way to build networks by adapting the architectural model of the cloud to telco-grade networking. This solution accelerates network deployment, improves the network’s economic model, and radically simplifies network operations. With customers including Comcast, Orange, and KDDI - over 80% of AT&T’s network traffic now runs through a disaggregated core powered by DriveNets software. DriveNets Network Cloud-AI solution, based on the same technology, was introduced to the market in 2023, providing the highest-performance Ethernet-based AI networking solution, and is already deployed by Hyperscalers, Neo Clouds and Enterprises. Raising over $587 million in three funding rounds, DriveNets continues to deploy the most innovative network infrastructure and is looking for the most talented people to be part of this journey. 

The Role  

DriveNets is looking for an experienced, hands-on Chief Information Security Officer to build and lead our security strategy from the ground up. As a fast-growing mature privately held startup, we need a security leader who can balance strategic vision with roll-up-your-sleeves execution. This role is ideal for someone who thrives in dynamic environments and excels at owning and driving Information Security end to end. The CISO will report to the company’s COO. 

 Key Responsibilities  

  • Oversee DriveNets’ end-to-end information security program, ensuring the protection of data, systems, applications, and employees. 
  • Build, lead, and scale a high-performing security team of 5+ professionals. 
  • Develop and implement a comprehensive security strategy aligned with business goals, industry best practices, and regulatory requirements. 
  • Define and monitor company wide security policies, standards, governance frameworks, and technical controls (e.g., firewalls, IDS/IPS, endpoint security). 
  • Lead Governance, Risk, and Compliance (GRC), including risk assessments, vulnerability management, incident response, and maintenance of the organizational risk register. 
  • Drive proactive security monitoring and threat management, including insider threats, phishing, social engineering, credential theft, and emerging risks. 
  • Conduct regular security assessments and partner with business units to identify, prioritize, and remediate vulnerabilities. 
  • Ensure readiness for internal and external audits; manage the audit process with agencies, auditors, customers, and stakeholders. 
  • Select, implement, and manage security technologies, tools, vendors, and processes supporting the organization’s security objectives.
  • Closely collaborate with the IT team, who will be responsible for executing the security policies. 
  • Collaborate with DevOps and engineering teams to strengthen security posture and embed secure-SDLC practices. 
  • Provide executive-level communication and reporting to leadership and the board regarding cybersecurity risks, investments, and priorities. 
  • Develop and deliver organization-wide security awareness and training programs. 
  • Manage the security budget and resources efficiently. 


Requirements

Qualifications  

  • 5+ years of experience in senior leadership roles with a minimum of 2-3 years in a CISO role 
  • 10+ years of experience within an information security, GRC and Information Security organization, within a technology company. 
  • Must have led external audits and presented to board and executive management. 
  • Proven track record of building and implementing successful security programs. 
  • Proven knowledge of IT GRC frameworks such as COBIT, ISO 27001, NIST, etc. 
  • Experience building and operating a security incident response program. 
  • Strong experience building a SSDLC framework and driving adoption within SWE teams. 
  • Strong understanding of product security best practices and industry standards. 
  • Excellent communication, presentation, and interpersonal skills. 
  • Ability to work effectively in a global environment, and experience with international customers. 
  • Relevant security certifications (e.g., CISSP, CISO, CISA, CISM). 
  • Self-starter, self-driven executive who can work independently but also collaboratively. 

 DriveNets is on a mission to build a special company comprised of individuals with diverse backgrounds, perspectives, and experiences. 

DriveNets is an equal opportunity employer. We do not discriminate based on upon race, religion, national origin, sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with disability, or other applicable legally protected characteristics. 

More About DriveNets 

Based in Israel with locations in Romania, US, and Japan as well as extended teams, DriveNets operations cover more than twelve countries. With recognition by industry analysts and through numerous industry awards, DriveNets is pushing market momentum, allowing for faster service innovation from the network core to the edge. Visit our website: https://drivenets.com/company/