Virtual Chief Information Security Officer (VCISO) – (1099) at Alluvionic | Torre
Virtual Chief Information Security Officer (VCISO) – (1099)
Report
warning

Heads-up

The job you’re trying to post already exists in Torre:

Virtual Chief Information Security Officer (VCISO) – (1099)

You'll shape cybersecurity governance, advise executives, and secure critical programs across multiple clients.
Emma highlights
This highlight was written by Emma’s AI. Ask Emma to edit it.
Freelance
Recurrent
Provide your expected compensation while applying
location_on
Remote (anywhere)
Match
skeleton-gauges
You have opted out of job matches in .
To undo this, go to the 'Skills and Interests' section of your preferences.
Review preferences
Shared by
Emma of Torre.ai
13 days ago

Requirements and responsibilities


Job Summary:Alluvionic is seeking an experienced Virtual Chief Information Security Officer (vCISO) to provide part-time, executive-level cybersecurity leadership to support multiple client engagements. This role is responsible for establishing and maturing cybersecurity governance programs, advising executive leadership on risk and compliance, and ensuring alignment with key frameworks such as NIST CSF, NIST SP 800-171, and CMMC.The vCISO serves as a strategic advisor and program leader—bridging business objectives with cybersecurity priorities—while supporting both initial readiness efforts (e.g., CMMC certification) and ongoing program sustainment. This role is designed for a highly experienced cybersecurity professional capable of supporting multiple engagements concurrently with a structured, scalable delivery approach.Must be US CitizenPosition: *Contingent Upon Contract Award*This is a part-time executive advisory engagement (approximately 25-30 hours per month) for an initial 12-month period, with potential for extension.Key Responsibilities:Provide executive-level cybersecurity advisory services, including governance, risk management, and strategic planningEstablish and maintain cybersecurity governance structures, roadmaps, and reporting cadenceLead enterprise risk management activities, including risk register development, tracking, and executive reportingSupport compliance and framework alignment (NIST CSF, NIST SP 800-171, CMMC, SOC 2, ISO 27001 as applicable)Guide CMMC readiness efforts, including coordination of documentation, audit preparation, and assessment supportProvide executive reporting, dashboards, and strategic recommendations to support decision-makingAdvise on security operations, vulnerability management, and incident response governanceSupport cybersecurity investment planning, tool selection, and vendor evaluationFacilitate communication across technical teams, leadership, and external stakeholdersCollaborate with delivery teams (e.g., Cyber Analysts, Project Managers) to ensure coordinated executionRequired Qualifications:10+ years of cybersecurity leadership experience (vCISO, CISO, or equivalent advisory role)Deep experience in governance, risk, and compliance (GRC) within regulated environmentsStrong working knowledge of NIST CSF, NIST SP 800-171, CMMC, and related frameworksExperience supporting audit readiness, compliance programs, and executive reportingAbility to translate technical risk into business-aligned recommendationsRelevant certifications preferred (e.g., CISSP, CISM, CRISC, CCP)Additional Information:This engagement is structured as a 1099 independent consultant role. The consultant must be able to operate independently, provide strategic executive guidance, and engage effectively with senior leadership in a highly regulated cybersecurity environment.Who We are:Alluvionic is a woman-owned, 8(a) certified solutions provider of project management and process improvement services. We offer a wide range of products and services including extensive enterprise Process Improvement, CMMI (Capability Maturity Model Integration), CMMC (Cybersecurity Maturity Model Certification), PMO (Project Management Office), and ERP (Enterprise Resource Planning) implementations for clients in various industries, providing Project Assurance® for every project.We pride ourselves in being a Registered Provider Organization (RPO) with the CMMC Accreditation Body.What it’s like to work at Alluvionic:Working at Alluvionic means being surrounded by helpful and brilliant people who want to support your career growth. We are a company that puts people first and will help you get where you want to go. When we make mistakes, we own them, fix them, and improve our processes so we do better next time. We work hard and never forget to have fun, especially at happy hour.We live by our company values of Family, Integrity, Professionalism, Innovation, Forward-Progress, Organization, and Communication. We invite you to apply if you share values even if your career path has been nontraditional.Alluvionic is an authorized DoD SkillBridge Partner Organization. The DoD SkillBridge program is an opportunity for servicemen & servicewomen to complete an internship during the last 180 days of service to gain valuable civilian career experience
Optionally, you can add more information later (benefits, pre-screening questions, etc.)
check_circle

Payment confirmed

A member of the Torre team will contact you shortly

In the meantime, continue adding information to your job opening.