Glean · 1 month ago
Field Chief Security Officer
Palo Alto, CA
Full-time
Onsite
Director/Executive
$260K/yr - $320K/yr
10+ years expGlean is the Work AI platform that helps everyone work smarter with AI. The Field Chief Security Officer will serve as Glean’s executive, customer‑facing security leader, advising on secure deployments and building trust with C-level executives to operationalize Glean securely and at scale.
Agentic AIArtificial Intelligence (AI)Enterprise SoftwareGenerative AIMachine LearningSearch Engine
Responsibilities
Act as the primary executive security advisor for named strategic accounts, partnering with Sales, SE, and CS to shape security strategy, deployment patterns, and program design for Glean’s Work AI platform
Lead and expedite security due diligence: DPIAs/PIAs, vendor risk assessments, data flow documentation, LLM‑related risk mitigations, and control mapping to frameworks (e.g., SOC 2, ISO 27001, HIPAA, GDPR, FedRAMP‑adjacent asks, TX‑RAMP)
Build compelling risk narratives and decision memos for C‑suite and Boards that connect security, privacy, and compliance outcomes to measurable business value and adoption
Serve as an executive “title match” in late‑stage cycles; join roadmap and architecture reviews to clear risk blockers and accelerate time‑to‑value
Publish and present Glean’s AI security and governance point of view (talks, webinars, whitepapers, playbooks), with pragmatic guidance on topics like single‑tenant SaaS, customer‑hosted deployments, data residency, encryption and key management, permissions mirroring, and agent guardrails
Develop reusable artifacts for the field: RFP/RFI security templates, reference architectures, policy/control mappings, DPIA/PIA kits, incident communications templates, SIEM export and audit logging guides
Partner with Glean Product, Security/Privacy, and Legal on “voice of customer” for features and policies (e.g., residency, SIEM/audit integrations, data lifecycle, model controls, red‑teaming, prompt‑injection defenses, allow/deny model policies)
Co‑design adoption and governance programs with customer security, IT, data, and privacy teams, including role‑based access, retention, redaction, secrets and PII controls, and ongoing audit practices
Advise on AI governance operating models: risk tiering for use cases, human‑in‑the‑loop controls, evaluation gates, and production guardrails for agents and workflows
Establish success metrics tied to security and business value (e.g., security review cycle time, audit coverage, sensitive data exposure reduction, adoption growth in high‑risk teams)
Partner tightly with Sales Engineering, Customer Success, and Support to create repeatable guidance for regulated and complex environments
Inform roadmap priorities with field‑validated requirements for security posture (e.g., model hub control, connector scopes, data egress minimization, RBAC/ABAC, audit exports)
Qualification
Required
10+ years in information security with executive‑level customer engagement
Deep command of enterprise security and cloud/SaaS controls: identity/SSO, least‑privilege, encryption at rest/in transit, key management, audit logging/SIEM, data residency/sovereignty, and third‑party risk
Hands‑on familiarity with major frameworks and regulatory needs: SOC 2 Type II, ISO 27001, GDPR/DPAs, HIPAA, and public sector expectations (e.g., TX‑RAMP)
Demonstrated experience guiding customers through DPIAs/PIAs, vendor assessments, and contractual security annexes; ability to compress complex risk into clear executive decisions
Practical understanding of AI/LLM security risks and mitigations: retrieval‑augmented generation (RAG) security, prompt injection defenses, jailbreak resistance, model access policies, and agent guardrails aligned to source permissions
Exceptional communication and storytelling skills with C‑suite and boards; proven impact in late‑stage deals and customer expansions
Credible thought leadership (talks, blogs, standards bodies, community contributions) and strong industry network among CISOs and security architects
Familiarity with data security posture management, sensitive data detection and remediation programs, and audit/reporting patterns for enterprise security teams
Relevant certifications (e.g., CISSP, CISM, CCSP, ISO 27001 Lead Implementer, CRISC). Equivalent experience will be considered
Preferred
Former CISO/CSO, Deputy CISO, Security Architect/Strategist, or advisory CISO experience strongly preferred
Familiarity with FedRAMP requirements helpful
Experience with single‑tenant SaaS and customer‑hosted deployment models
Background working with GCP/AWS controls, privacy impact assessments, and regional hosting
Benefits
Medical, Vision, and Dental coverage
Generous time-off policy
401k plan
Home office improvement stipend
Annual education and wellness stipends
Regular events
Healthy lunches daily
Company
Glean
Glean develops an AI-based search engine software that connects enterprise data and generates answers to improve workplace efficiency.
501-1000 employees
H1B Sponsorship
Glean has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (22)
2024 (17)
2023 (7)
2022 (26)
Funding
Current Stage
Late StageTotal Funding
$768.2MKey Investors
Wellington ManagementSequoia CapitalGeneral Catalyst
2025-06-10Series F· $150M
2024-09-10Series E· $260M
2024-02-27Series D· $203.2M
Leadership Team
Arvind Jain
Founder and CEO
Michael Miao
VP of Finance & BizOps
Recent News
Business Insider
2025-12-24
2025-12-11
Company data provided by crunchbase