Job Description
We are seeking a strategic, pragmatic Chief Information Security Officer (CISO) to lead our information security program and corporate IT operations. This is a pivotal leadership role for a security executive who cares deeply about protecting users, data, and systems while enabling innovation and growth that results in great employee and consumer experiences.
Reporting to the CTO, the CISO will partner closely with executive leadership, Engineering, Product, Legal, and Business teams to build a scalable, resilient security and IT organization.You'llplay a critical role in safeguarding a platform that serves millions of student-athletes, families, and fans nationwide, while supporting a growing, distributed workforce of 500+ employees.
The Outcomes You'll Deliver
Comprehensive Security Program -Evolveandmaintaingovernance, policies, and controls aligned with industry frameworks such as NIST CSF, ISO 27001, and CIS Controls, creating a durable and scalable security program.
Compliance Management - Lead SOC 2 Type II certification, maintain PCI DSS compliance, and manage data privacy controls and compliance efforts
Secure Multi-Product Platform: Maintain and strengthen security across our integrated ecosystem (GoFan, NFHS Network, MaxPreps, PlayOn HQ) supporting 600K+ streaming events and 700K+ ticketing events annually
Deliver Modern IT Solutions - Lead secure, reliable, and user-friendly IT operations that enable productivity for a distributed workforce, with a strong focus on identity, endpoint security, and employee experience.
Build and Scale Teams - Hire, develop, and lead high-performing teams across security engineering, operations, compliance, and corporate IT.
Proactive Risk Management -Own the company's cybersecurity risk posture bybalancing protection with speed and business needswhenidentifying, prioritizing, and addressing threats.
In this role, you can expect to - Serve as the PlayOn's senior security leader and trusted advisor to the CTO and executive team on all security, privacy, compliance, and IT matters
- Model ethical stewardship of privileged access by using exceptional judgment that guides use of authority responsibly and transparently, solely in service of legitimate security, compliance, and organizational trust
- Develop and execute an information security strategy aligned with business objectives, platform evolution, and regulatory requirements
- Manage security throughout the SDLC through secure coding practices, architectural reviews, DevSecOps, and automated security testing (SAST, DAST, SCA),
- Lead executive response to major security incidents, including crisis coordination, communications, and post-incident improvements
- Participate in IT and Security due diligence and integration activities in support of M&A activity
- Own corporate IT operations, including identity and access management, endpoint management, service desk, onboarding/offboarding, and collaboration tooling
- Manage IT service management practices (ITSM) with clear SLAs and a strong focus on employee experience
- Lead compliance initiatives including SOC 2 audits, PCI DSS assessments, penetration testing, third-party risk management, and data privacy committee
- Define and track meaningful security and IT metrics, reporting regularly to the executive team and Board of Directors
- Partner with Engineering, Product, Legal, HR, and Business teams to balance security rigor with product velocity, innovation, and employee productivity
- Drive security awareness training programs and drive security culture across the organization
- Stay ahead of emerging threats, technologies, and best practices to continuously improve PlayOn's security posture
To thrive in this role, you have - 12+ years of information security experience with deep expertise in application, cloud, and infrastructure security
- 5+ years in senior security leadership roles (CISO, VP/Director of Security), including building and scaling security programs
- Experience leading corporate IT operations or working closely with IT leadership in modern, cloud-first environments
- Proven track record leading SOC 2 Type II, PCI DSS, or similar compliance certifications in growth-stage technology companies
- Strong background with cloud security (AWS preferred), DevSecOps, automation, and modern security tooling
- Hands-on experience with enterprise IT systems including identity providers (Okta, Azure AD), MDM/UEM, ITSM platforms, and SaaS management
- Excellent communication skills, with experience presenting to executive leadership, and Boards
- A people-first leadership style, witha track recordof building inclusive, high-performing teams
- Experience with consumer platforms, data privacy (e.g., CPPA) and compliance, payment, streaming media, and M&A diligence preferred
- Strong business judgment, including budget ownership, vendor management, and third-party risk assessment
- Education: BS in Computer Science, Information Security, or related field. Professional security certifications (CISSP, CISM, CISA) strongly preferred
How You Play - Ownership over Participation- You take responsibility for achieving holistic outcomes, prioritize key objectives, and adapt quickly when situations require a different approach. You follow through even against the toughest challenges.
- Team over Stars- You are a bridge builder, establishing processes and relationships with teams outside your own. You work to rally around common goals, find win-win solutions, compromise when necessary, and help others succeed.
- Growth over Comfort- You are driven by a desire to grow and actively seek opportunities to expand your comfort zone, skills, and confidence. You embrace new challenges with curiosity, accepting discomfort and failure as opportunities to learn.
- Fairness over Popularity- You approach decisions with a scientist's mindset, challenging your assumptions and remaining objective. You consider long-term impact rather than relying on short-term gains, proactively seek others' perspectives, and manage emotions in decision-making.
Company Overview PlayOn is a dynamic growth-stage company dedicated to championing the spirit of play in the high school space. Backed by KKR, our family of brands-including GoFan, NFHS Network, and MaxPreps-empowers schools with innovative solutions and exceptional service. Our fan engagement platform is the only one that offers event ticketing, streaming, fundraising, concessions, merchandise sales, and website management in one place. We save administrators time so they can focus on what truly matters: supporting the students, staff, and fans who bring their programs to life.
Trusted by thousands of schools across the country, we're here to help create more instant replays, hold-your-breath moments, last-minute comebacks, and games you want to watch over and over again.
When being there means everything, we make sure you never miss a moment.
Why you'll love working at PlayOn Product, potential, and people. We're a leader in the high school event space, constantly evolving our product to meet the needs of administrators. We focus on solving real challenges, learning quickly, and creating impactful solutions.
This is a growth-stage company, meaning your contributions have real impact. You'll have opportunities to grow your skills, tackle meaningful problems, and make a difference in the lives of schools and the students and fans they serve.
Our culture is built on accountability, collaboration, growth, and fairness. We don't just show up-we show up for each other. Everyone wears the same jersey, and we play hard, make the extra pass, and cheer one another on. Losses teach us, challenges motivate us, and persistence drives us forward. We value integrity over shortcuts, choosing to do what's right even when it's hard. Together, we strive to be better every day-because we know that's how we win as a team.
The Benefits We Offer Multiple medical insurance plans to choose from
Dental, vision life and disability insurance
Employee Emergency Fund
Company equity (stock options)
Open PTO policy
401K plan with company match
Hybrid/flexible work environment
Note: Must be a full-time employee to participate in the company's employee health benefit plan. Part-time employees and interns are not eligible to participate.
Job Tags
Full time, Temporary work, Part time, Remote work, Flexible hours