Reolink, a leader in intelligent visual technology for homes and businesses, was founded in 2009 by a group of engineers with a strong commitment to and passion for smarter security solutions.
Our products are now trusted by millions of users across more than 110 countries and regions worldwide. Building on this trust, we continue expanding our presence and bringing our innovations to more markets around the globe. Reolink remains committed to delivering advanced, reliable, and user‑centric solutions that empower people to protect what matters most.

Role Overview

The Chief Security Officer (CSO) is responsible for shaping and leading the company’s global security vision and strategy. This role oversees all aspects of cybersecurity, information security, physical security, and enterprise risk management across the organization. As a key member of the executive leadership team, the CSO partners closely with the CEO, Board of Directors, and cross‑functional leaders to safeguard the company’s assets, ensure regulatory compliance, and enable secure business growth.

Key Responsibilities

1. Strategy & Leadership

• Develop, implement, and continuously refine the company’s enterprise-wide security strategy, multi‑year roadmap, and annual budget.
• Advise the CEO and Board of Directors on security risks, emerging threats, and strategic security decisions.
• Foster a security-first culture and drive organization‑wide security awareness programs.
• Lead, mentor, and grow a high-performing global security team, promoting operational excellence and professional development.

2. Information Security & Cybersecurity

• Establish and maintain a comprehensive cybersecurity defense ecosystem, including threat intelligence, SOC operations, incident response, red/blue team exercises, and vulnerability management.
• Oversee cloud, application, data, and endpoint security strategies to ensure robust protection across the technology stack.
• Lead the response to major security incidents, ensuring rapid containment, communication, remediation, and post‑incident lessons learned.

3. Physical Security & Operational Security

• Develop and oversee physical security programs for global offices, data centers, warehouses, and critical facilities.
• Design and maintain Business Continuity Plans (BCP) and Disaster Recovery Plans (DRP), including regular testing and scenario-based drills.

4. Compliance & Risk Management

• Ensure continuous compliance with applicable laws, regulations, and industry standards (e.g., GDPR, ISO 27001, SOC 2, PCI DSS).
• Lead internal and external security audits, address findings, and implement long-term remediation plans.
• Build and manage a robust enterprise risk management framework, evaluating risks and tracking mitigation progress across all business units.

5. Third-Party & Supply Chain Security

• Develop and enforce a supplier and third‑party security risk assessment framework to manage security posture across key partners, vendors, and service providers.

Job Qualifications

1. Security Skillset & Core Competencies

• Deep expertise in cybersecurity frameworks, cloud security models, and enterprise security architecture.
• Strong knowledge of security standards and regulations (e.g., NIST, ISO 27001, GDPR).
• Proficiency with major security tools and platforms (e.g., IDS/IPS, WAF, EDR, SIEM).
• Proven experience in security incident response, crisis management, and post‑incident forensics.

2. Relevant Experience & Technical Expertise

• 10+ years of experience in security roles, with 5+ years in senior leadership (e.g., Security Director, Head of Security).
• Demonstrated success in building and scaling security programs within fast‑growing technology companies.
• Hands-on experience with major cloud platforms (AWS, Azure, GCP) and scripting languages (e.g., Python, Bash).
• Familiarity with security solutions including Nessus, Splunk, and container/cloud-native security (e.g., Docker, Kubernetes security).

3. Certifications

• Bachelor’s degree or higher in Computer Science, Information Security, or a related discipline.
• Recognized security certifications such as CISSP, CISM, CISA, or equivalent are preferred.
• Strong knowledge of security technologies, risk management practices, and compliance frameworks.