Field CISO EMEA in London

About Mimecast

Mimecast is a global cybersecurity leader redefining how organisations secure human risk. Our AI-powered, API-enabled Human Risk Management platform is purpose-built to protect organisations from the full spectrum of cyber threats — integrating cutting-edge technology with human-centric pathways to deliver visibility, strategic insight, and decisive action. More than 42,000 businesses worldwide trust Mimecast to keep ahead of an ever-evolving threat landscape.

We are one of only three vendors globally to achieve Leader status in both the Gartner® Magic Quadrant™ for Email Security and DCGAS. Our platform spans email security, insider risk management (Incydr), human risk awareness and training (Mimecast Engage), and the Human Risk Command Center — a single pane of glass that scores, surfaces, and enables action on human risk across an entire organisation. Most recently, we expanded Incydr into runtime data security, providing unified visibility across both human and AI agent risk.

Across EMEA, Mimecast has established offices in Dubai, Johannesburg, Cape Town, Bengaluru, Melbourne, and Sydney — meaning the Field CISO is not parachuting into a region from afar, but stepping into a geography where Mimecast already has genuine presence, colleagues, and customer relationships. Through our Resilience Together corporate social responsibility programme, we also invest time, resources, and funds in underserved communities across the regions in which we operate — a signal of long-term commitment that matters in markets where vendor credibility is built over years, not quarters.

About the role:

We are looking for a Director-level Field CISO to join our Security function, reporting directly to the Global Field CISO. Based in London with two days per week in the office, you will serve as the primary trusted security advisor across our most strategic accounts in EMEA — a region spanning Europe, the Middle East, and Africa.

This is not a pre-sales or support role. You will operate at the intersection of customer success, executive advisory, and industry thought leadership, extending the Global Field CISO’s strategy into a region too diverse and commercially significant to be served from a central function. You bring your own credibility, your own relationships, and your own point of view — and you use them to make customers genuinely more secure.

In practice, that means helping CISOs across EMEA navigate the human risk challenge that defines Mimecast’s market: the recognition that most breaches trace back to human behaviour — negligent, compromised, or malicious — and that solving for it requires visibility across email, collaboration tools, endpoints, SaaS applications, and now AI agents. With more than 42,000 customers globally already trusting Mimecast with this problem, the Field CISO is not selling an unproven idea — they are bringing a proven platform and a community of practitioners into a region hungry for exactly this kind of advisory. You are the person who connects that story to local pain, in local language, at the executive level. Delivering a Remarkable Experience for our customers is not a tagline here — it is the standard.

What You’ll Do:

• Act as a trusted advisor to CISOs, CTOs, and board-level stakeholders at our top strategic accounts across EMEA — helping them build and mature their human risk management programmes.
• Guide customers through insider risk strategy, Incydr deployment, AI agent risk, and enterprise risk frameworks — translating the Mimecast platform’s capabilities into measurable business outcomes.
• Support customers through audits, regulatory examinations, and compliance programmes across a fragmented regional landscape (PDPA, DIFC, POPIA, Saudi NCA, and more).
• Be the first call when a customer has a security problem — whether or not it directly relates to our products. Run toward the problem, not away from it.
• Represent Mimecast at major EMEA security conferences — GISEC, GITEX, Black Hat MEA, and sector-specific FSI and government events — advancing the human risk narrative in markets we must win.
• Author whitepapers, research reports, and opinion pieces on human risk, insider threat, AI security, and the evolving threat landscape — contributing to Mimecast’s State of Human Risk research programme.
• Build and sustain a credible public profile across EMEA that extends the Global Field CISO’s reach and reinforces Mimecast’s position as the human risk authority in the region.
• Partner with sales on security-sensitive enterprise deals — shortening sales cycles and lifting win rates through advisory credibility, particularly in regulated sectors (FSI, telco, government, critical infrastructure).
• Support land-and-expand motions by deepening relationships within existing accounts and surfacing opportunities to expand Mimecast platform adoption.
• Log all advisory-linked opportunities in CRM to build the evidence base for Field CISO ROI — and to demonstrate how security advisory translates to customer outcomes.
• Feed structured customer insights back to product and engineering — surfacing gaps in human risk capabilities, Incydr controls, AI governance features, and secure-by-default configurations.
• Advocate for reductions in customer audit and compliance toil by pushing for product changes that make evidencing conformance easier.
• Contribute to the Mimecast CISO Customer Advisory Board (CAB) and regional CISO community events, building a customer community that values Mimecast as a long-term security partner.

What You’ll Bring:

• Depth of experience in enterprise information security, with 10+ years in a leadership role — including at least 3 years as a CISO, VP of Security, or equivalent inside an enterprise. Lived operational experience is non-negotiable.
• Bachelor’s degree in computer science, information technology, cybersecurity, or a related field (Master’s preferred) — or equivalent demonstrated experience at senior security leadership level.
• Advanced certifications: CISSP, CRISC, CISM, GCEIT, or GIAC equivalent.
• Proven ability to engage and influence C-suite and board audiences with credibility and humility.
• Prior exposure to multiple EMEA sub-regions with genuine cross-cultural fluency.
• Comfortable operating as a Director-level individual contributor — highly self-directed, without requiring day-to-day management oversight.

Join our Security team to accelerate your career journey, contributing to projects that have real impact. You will be immersed in a dynamic environment that recognises and celebrates your achievements.

Mimecast is on a path of steady and healthy growth as a company, investing in people like you who bring the skills and expertise to raise our technical expertise, operational maturity, and customer success to the next level. Your contributions are important! Every voice and action matters.

Mimecast offers formal and on-the-job learning opportunities, maintains a comprehensive benefits package that helps our employees and their family members to sustain a healthy lifestyle, and importantly – opportunities to work with cross-functional teams to build your knowledge!

Our Hybrid Model:

We provide you with the flexibility to live balanced, healthy lives through our hybrid working model that champions both collaborative teamwork and individual flexibility. Employees are expected to come to the office at least two days per week, because working together in person:

• Fosters a culture of collaboration, communication, performance, and learning.
• Drives innovation and creativity within and between teams.
• Introduces employees to priorities outside of their immediate realm.
• Ensures important interpersonal relationships and connections with one another and our community!

The base salary range for this position is £124,000−£186,000 plus benefits. This range represents the minimum and maximum new hire compensation for this role. The position may also be eligible for incentive plans and additional benefits, in accordance with company policy and local regulations. Our salary ranges are determined by role, level, and location with individual compensation also dependent on factors such as qualifications, experience, and skills. Final offers will reflect these considerations and may vary accordingly.

Belonging at Mimecast

Cybersecurity is a community effort. That’s why we’re committed to building an inclusive, diverse community that celebrates and welcomes everyone – unless they’re a cybercriminal, of course. We’re proud to be an Equal Opportunity and Affirmative Action Employer, and we’d encourage you to join us whatever your background. We particularly welcome applicants from traditionally underrepresented groups.

We consider everyone equally: your race, age, religion, sexual orientation, gender identity, ability, marital status, nationality, or any other protected characteristic won’t affect your application.

Due to certain obligations to our customers, an offer of employment will be subject to your successful completion of applicable background checks, conducted in accordance with local law.