Chief of Staff / Director Global Cybersecurity Operations

Chief of Staff / Director Global Cybersecurity Operations

Location: Minneapolis, MN
Type: Contract

Details Job description

In this role you will bridge the gap between technical security operations and high-level business strategy, ensuring the security organization runs efficiently.

As the Chief of Staff (CoS), you will be the strategic architect behind the CISO’s office. You aren''t just an administrator; you are a high-level advisor and operator who ensures the cybersecurity department executes its mission with precision.

You will manage the "business of security," allowing the CISO to focus on high-stakes technical leadership and external stakeholder management.

This role will focus on five key pillars:

Strategic Operations & Governance

· Strategic Planning: Drive the annual and quarterly planning cycles; track progress against OKRs and KPIs to ensure the security roadmap is on schedule.

· Strategy Development & Performance Measurement: Lead the translation of the CISO’s multi-year vision into a structured execution roadmap. You will be responsible for defining the Critical Success Factors (CSFs) and establishing a robust measurement framework—utilizing advanced telemetry and security-specific metrics—to quantify risk reduction and demonstrate the ROI of the global security program to executive leadership while maintaining alignment to greater organizational goals.

· Financial Stewardship: Manage the cybersecurity budget, overseeing vendor relationships, procurement processes, and headcount planning.

· The "Rhythm of Business": Structure and lead leadership team meetings, off-sites, and town halls to ensure alignment and accountability.

Functional Delivery & Global Oversight

· GICSO Pillar Management: Provide functional management and delivery oversight for one or more core Global Information Security Office (GICSO) pillars (e.g., PMO/MA&D, Strategy & Programs, GRC, Cyber Defense, IAM, or GRC). You will ensure cross-regional alignment, unblock technical dependencies, and guarantee that global security initiatives are delivered on time and within scope across varied geographic business units.

Executive Communication & Reporting

· Executive Proxy & Delegated Authority: Serve as the primary surrogate for the CISO in high-stakes steering committees, executive leadership meetings, and vendor negotiations. You will be empowered to make operational decisions, provide "the voice of the CISO" in their absence, and ensure momentum on critical security mandates is never stalled by scheduling conflicts.

o The Diplomatic Proxy: Act as the CISO’s ''eyes and ears'' across the organization, triaging requests for the CISO’s time and representing the Security Office in sensitive cross-functional disputes to reach a resolution before escalation.

o The Operational Proxy: Serve as one of the designated Deputies for the Office of the CISO, assuming leadership over the Global Security leadership team during the CISO’s absence to ensure continuity of operations and incident response readiness.

o The Strategic Proxy: Translate the CISO''s long-term vision into immediate tactical direction for GICSO pillar leads, serving as the secondary point of contact for executive stakeholders to ensure security alignment with broader business goals.

· Board Readiness: Prepare high-impact presentations and reports for the Board of Directors and the Audit Committee and the Cybersecurity Committee translating technical vulnerabilities into business risk.

· Internal Liaison: Act as the CISO’s proxy in cross-functional meetings with Finance, Legal, HR, and OUs as needed.

· Ghostwriting: Draft and or review internal announcements, security culture memos, and executive-level briefings. Development of presentations which distill complex technical risks into clear business-centric narratives for both internal and external speaking engagements.

· Operational Oversight: Streamlining the "rhythm of business" by managing leadership meetings and GCISO organization events, overseeing headcount planning, and driving cross-functional projects that require coordination across Legal, Finance, and HR.

Special Projects & Crisis Management

· Incidents & Response: During major security incidents, act as a coordinator (as needed) to ensure non-technical workstreams (communications, legal, updates to leadership) are handled seamlessly.

· Change Management: Lead organizational design initiatives or large-scale culture shifts, such as rolling out a new "Security First" mindset across the company.

Cultural Leadership

Driving internal initiatives such as team off-sites, talent development programs, and security awareness culture across the enterprise. Coordination of OHS initiatives and GCISO Culture Committee.

MUST HAVE (Minimum Qualifications)

· Bachelor’s degree with 10+ years in Cybersecurity, IT Operations, or Management Consulting.

· 7+ years of managerial experience

· Technical Literacy - Ability to understand GRC (Governance, Risk, and Compliance), SOC operations, and cloud security architecture without needing to be a practitioner.

· Operational Excellence - Proven track record of managing multi-million-dollar budgets and complex project portfolios.

· Soft Skills - High emotional intelligence, discretion with sensitive data, and the ability to "manage up."

· Experience managing a Project Management Office and Agile coaching teams.

· Excellent strategic thinking and problem-solving skills.

· Strong leadership and interpersonal skills with the ability to influence and drive change.

NICE TO HAVE (Preferred Qualifications)

· Strongly Preferred:

oo Advanced degree(s)

Specific leadership experience in cybersecurity; managing multiple areas of within the cybersecurity function.