VP of Security/Chief Information Security Officer (CISO)

OpenGov is the leader in AI-enabled software for cities, counties, state agencies, and special districts. With a mission to power more effective and accountable government, OpenGov serves 2,000 communities across the United States. OpenGov is built exclusively for the unique asset management, permitting and licensing, procurement and contract management, tax and revenue, budgeting and planning, and financial management needs of the public sector. The OpenGov platform empowers organizations to operate more efficiently, adapt to change, and strengthen public trust.

Learn more or request a demo at opengov.com

Job Summary

The VP of Security/Chief Information Security Officer (CISO) is a senior executive role responsible for establishing and overseeing the company's enterprise security strategy, policies, and risk management framework. This position ensures the security and compliance of SaaS solutions provided to small and mid-sized government clients across the United States, many of whom require StateRAMP, SOC2 certification, and advanced security controls.

Reporting to the President and Chief Operating Officer, the VP of Security/CISO will lead efforts to secure cloud-based government solutions, manage incident response, strengthen corporate governance, and implement robust security procedures across the software development lifecycle (SDLC). This role partners with executive leadership to embed security into the company’s DNA, ensuring a proactive approach to risk mitigation and regulatory compliance while balancing business innovation.

Responsibilities

Enterprise Security & Risk Management

• Develop and implement an enterprise security strategy aligned with business objectives and regulatory requirements.
• Oversee and enforce security governance, ensuring compliance with StateRAMP, SOC2, , NIST CSF, CJIS, and other common regulatory frameworks
• Serve as the primary executive liaison for security matters with customers, government entities, auditors, and partners.
• Lead the organization's threat intelligence, risk management, and vulnerability management programs.
• Build and maintain a robust security policy set to protect OpenGov, customer data and our infrastructure.

Cloud & Application Security

• Architect and maintain secure SaaS solutions deployed on AWS and Azure, ensuring adherence to cloud security best practices.
• Direct the implementation of DevSecOps methodologies to integrate security within CI/CD pipelines.
• Establish secure software development lifecycle (SDLC) standards, partnering with engineering and product teams to drive consistent secure coding practices.

Incident Response & Security Operations

• Oversee Security Operations and lead rapid incident detection, response, and recovery efforts.
• Enforce and test an enterprise-wide incident response plan, ensuring minimal disruption and regulatory compliance in case of breaches. Drive cross-functional collaboration across all teams to ensure proper handling of security events.
• Manage third-party security audits, penetration testing, and continuous security monitoring.

Regulatory Compliance & Governance

• Ensure the company achieves and maintains TXRAMP, StateRAMP and SOC2 certifications, working closely with engineering and audit teams.
• Collaborate with legal team to address evolving cybersecurity regulations and contract requirements

Leadership & Stakeholder Engagement

• Lead, mentor, and grow a high-performing security team, including security engineers, analysts, and compliance professionals.
• Provide security briefings and risk updates to executive leadership and the board of directors.
• Foster a culture of security awareness through ongoing training and communication across all levels of the organization.

Requirements And Preferred Experience

• 10-15 years of experience in cybersecurity leadership roles, with at least 10 years in an executive or senior leadership position.
• Proven experience securing SaaS applications in highly regulated industries, preferably government-focused cloud solutions.
• Operational expertise in common regulatory and security frameworks, such as StateRAMP, SOC2, NIST CSF, MITRE ATT&CK, and zero-trust security models.
• Deep knowledge of cloud security best practices for AWS, Azure, and/or GCP.
• Hands-on experience leading incident response and threat intelligence programs.
• Strong understanding of identity & access management (IAM), data encryption, and compliance frameworks.
• Relevant certifications highly preferred, such as CISSP, CISM, CISA, CCSP, or AWS Security Specialty.
• Exceptional leadership, communication, and stakeholder management skills.
• Prior experience securing SaaS products for government clients.
• Background in zero-trust architecture and AI-driven security monitoring.
• Experience working with public sector procurement and compliance teams.

Why OpenGov?

A Mission That Matters.

At OpenGov, public service is personal. We are passionate about our mission to power more effective and accountable government. Government that operates efficiently, adapts to change, and strengthens public trust. Some people say this is boring. We think it’s the core of our democracy.

Opportunity to Innovate

The next great wave of innovation is unfolding with AI, and it will impact everything—from the way we work to the way governments interact with their residents. Join a trusted team with the passion, technology, and expertise to drive innovation and bring AI to local government. We’ve touched 2,000 communities so far, and we’re just getting started.

A Team of Passionate, Driven People

This isn’t your typical 9-to-5 job; we operate in a fast-paced, results-driven environment where impact matters more than simply clocking in and out. Our global team of 800 employees is united in our commitment to challenge the status quo. OpenGov is headquartered in San Francisco and has offices in Atlanta, Boston, Buenos Aires, Chicago, Dubuque, Plano, and Pune.

A Place to Make Your Mark

We pride ourselves on our performance-based culture, where every employee is encouraged to jump in head-first and take action to help us improve. If you have a great idea, we want to hear it. Excellent performance is recognized and rewarded, and we love to promote from within.

Benefits That Work For You

Enjoy an award-winning workplace with the benefits to match, including:

• Comprehensive healthcare options for individuals and families.
• Flexible vacation policy and paid company holidays
• 401(k) with company match
• Paid parental leave, wellness stipends, and HSA contributions
• Professional development and growth opportunities
• A collaborative office environment with weekly catered lunches