My Shortlist

Your shortlisted jobs will appear here. To view your shortlist: Login Or Register

Date Added: Sat 18/07/2020

Chief Information Security Officer

San Francisco, California, US
Add To Shortlist Apply Now


Job Type: Permanent, FullTime

Date: Jul 15, 2020
Location: San Francisco, California, US
Company: Dolby Laboratories, Inc.
Join the leader in entertainment innovation and help us design the future. At Dolby, science meets art, and high tech means more than computer code. As a member of the Dolby team, you'll see and hear the results of your work everywhere, from movie theaters to smartphones. We continue to revolutionize how people create, deliver, and enjoy entertainment worldwide. To do that, we need the absolute best talent. We're big enough to give you all the resources you need, and small enough so you can make a real difference and earn recognition for your work. We offer a collegial culture, challenging projects, and excellent compensation and benefits.


Dolby Laboratories is looking for a seasoned, experienced, progressive Chief Information Security Officer (CISO). The CISO will report to the Chief Information Officer (CIO) and will be a member of the IT senior management team. The CISO will have a prominent role as the top cyber security expert in the company and will collaborate and work directly with business and IT leaders throughout the company to deploy business platforms and infrastructure to meet the needs of the company. This will include defining, building, and leading the company in security strategy, maintaining and monitoring security, mitigating risks through policies, education, communication, audits and compliance standards, and building recovery plans for a fast-paced, growing, innovative technology company.

Key Responsibilities

- Information Security Strategy: Responsible for defining and maintaining an innovative and forward-looking security strategy that supports the objectives of the business. This includes setting the company vision, mission, strategic imperatives and goals for information security. It also includes current state, future state and associated roadmaps, and will ensure that the organization understands the latest security technology.
- Information Security Policies and Standards: Guide and lead technical staff to review and define security policies and standards for the company across platforms, technologies and networks.
- Information Security Framework and Architecture: Responsible for the information security framework and architecture. This will include infrastructure, core application platforms and all other components of the IT operating platforms. The CISO will be responsible for leading architectural teams charged with defining security architecture to enable and support the business.
- Information Security Sustaining Support and Project Delivery: Responsible for leading the information security organization and for executing delivery of security projects with on time, on budget, and with a high level of quality and continuous improvement. The CISO will be responsible for staffing and executing the design, development, testing, user acceptance and deployment of security platforms into production. This will include buying and/or developing security capabilities and maintaining security platforms. In additions, the security organization's processes, and technology will need to be flexible and scalable to meet future business needs.
- CISO Executive Interaction: Beyond a strong technical risk mitigation capability, the CISO must be cognizant of the corporate business agenda from a financial, operational, strategic and customer quality/results perspective to provide credible broad-picture recommendations. Executives require solid and easily understood communications, strong planning support and thoughtful advice on cyber-related cost-benefit tradeoffs for each aspect of the business in order to make effective investments and operational decisions. This includes having an aura of trust and close collaboration with those who manage all aspects of the company's business (including business partners and clubs), as well as the board regarding cyber-related risks and issues.
- Corporate Risk Planning: As a significant component of the company's risk profile, the CISO must be integrally involved in overall risk planning. Because potential funds to fully address every aspect of risk are not likely to be infinite, each risk must be weighed in terms of the overall corporate agenda to determine risk tolerance tradeoffs. As the technical leader, the CISO role is anticipated to be seen as resource for all matters of cyber security. The CISO must serve as a business partner to the rest of Dolby, as well as the front person in board and CEO discussions. He or she will work alongside Legal when discussing threat levels and potential outcomes of a cyber-breach.
- Finance: The CISO must have strong financial acumen and be capable of developing financial budgets (capital and expense). He or she will be responsible for ensuring information security services and costs are competitive with appropriate benchmarks. Previous experience managing an information security budget for a $1 billion to $5 billion company will be beneficial.
- Supplier Management: Responsible for managing strategic vendor relationships for information security technologies. This includes ensuring that supplier technologies and technology roadmaps are in sync with the company's technology and business requirements. The CISO must ensure that external vendors adhere to contractual requirements. He or she will lead efforts to ensure Dolby has the minimum necessary, and sufficient supply chain, to deliver the security services portfolio. The CISO will lead the procurement function to achieve best pricing and value in supplier relationships. He or she also will lead efforts to evaluate the entire supplier portfolio of the company and determine if they are meeting security standards.
- Information Security Audits: Guide and lead staff to manage execution and support management of IT operational audits and compliance, including external audits
- Business Continuity and Disaster Recovery: Responsible for ensuring resilient designs in future-state IT architectures and infrastructure, and participating in the design, implementation and maintenance of business and technical crises management plans and procedures.


- A bachelor's degree in computer science, information technology, engineering or related field (MBA or secondary degree preferred)
- 10-15 years of experience in information technology leadership
- Knowledge of IT operations and other IT disciplines.
- Expertise in leading an information security organization
- Experience defining information security strategy and deploying complex, mission-critical solutions in collaboration with a board of directors, senior executive management and chief risk officers.
- Technology industry or other relevant business experience
- Leading, managing and integrating security technologies from merger and acquisition activities

Dolby will consider qualified applicants with criminal histories in a manner consistent with the requirements of San Francisco Police Code, Article 49, and Administrative Code, Article 12

Equal Employment Opportunity:
Dolby is proud to be an equal opportunity employer. Our success depends on the combined skills and talents of all our employees. We are committed to making employment decisions without regard to race, religious creed, color, age, sex, sexual orientation, gender identity, national origin, religion, marital status, family status, medical condition, disability, military service, pregnancy, childbirth and related medical conditions or any other classification protected by federal, state, and local laws and ordinances.

Nearest Major Market: San Francisco
Nearest Secondary Market: Oakland
Apply Now