Skip to main content

Main navigation

  • Home
  • Network
  • How it Works
  • Why Join?
    • Why Join?
    • FAQ
    • Pricing
  • Contact
  • Resources
    • Blog
    • Trending

Join / Login Favorite profiles Favorite profiles

Add to favorites

Kathryn Salazar

KS
Message

Roles available for:

  • Fractional
  • Consulting
  • Contract
  • Interim

FCISO

Fractional Chief Information Security Officer

  • Scottsdale , Arizona, United States
  • Country experience:

    • United States of America
      Northern America

Achievements
Charter
KS
Message
  • Expertise
  • Services

    Kathryn M. Salazar, CISSP provides senior-level cybersecurity leadership on a fractional, interim, or project basis, delivering full CISO-caliber expertise without the overhead of a full-time hire. With 25+ years of executive security experience across he

  • Employees overseen

    50 employees

  • Budget overseen

    $ 25,000,000

Share
LinkedinEmailFacebookWhatsappTwitter

Kathryn Salazar

Add to favorites

Roles available for:

  • Fractional
  • Consulting
  • Contract
  • Interim

FCISO

Fractional Chief Information Security Officer

  • Scottsdale , Arizona, United States
  • Country experience:

    • United States of America
      Northern America

Achievements
Charter
Why hire me in a fractional role
Here's a tight version at 498 characters: --- I've led organizations through their first PCI-DSS, ISO 27001, SOC 2, and HITrust certifications — as the accountable executive, not in a supporting role. I restored a $4B retailer's PCI Level 1 certification in 90 days post-breach, eliminating a $25K/month penalty. SOC 2 Type II zero findings, three consecutive years. Twenty-five years across healthcare, fintech, retail, and public sector. CISSP-certified. I embed — I don't just advise.
Experience
  • VP Information Security/CISO
  • ISO(information security officer)

Strengths in this role: Unlike technicians who moved into management, I maintain hands-on technical expertise across all critical cybersecurity disciplines. I coordinate quarterly penetration testing engagements managing vendors, analyzing findings, and translating technical vulnerabilities (SQL injection, XSS, authentication bypass) into business risk assessments for executive decision-making. I lead incident response engagements—I personally managed a ransomware incident for the fintech healthcare client.

Industry Group: Finance

Industry: Financial Services

Years of experience: 10 years

Industry Group: Health

Industry: Hospital & Health Care

Years of experience: 10 years

Company name: McBride

Company size: 500 employees

Role in this company: CISO for fintech healthcare building security program from early-stage startup ($50M ARR) to enterprise-grade security ($500M ARR) achieving multi-framework compliance (PCI DSS Level 1, SOC 2 Type II, ISO 27001). Sat in Board meetings translating technical security posture into business risk assessments and investment justifications. • Built fintech security program from early stages (startup with minimal security) to enterprise-grade security achieving PCI DSS Level 1 (annual compliance

Strengths in this role: I can explain a zero-day exploit to a board member and a budget justification to a CFO in the same meeting—and I've done it repeatedly. In my most recent Board presentation, I explained zero-day vulnerabilities, ransomware threats, and cloud misconfigurations to non-technical Board members in business terms (revenue disruption, customer data exposure, regulatory penalties) while simultaneously presenting budget justifications to the CFO demonstrating security ROI through risk reduction.

Industry Group: Health

Industry: Hospital & Health Care

Years of experience: 10 years

Company name: lifekind health

Company size: 450 employees

Role in this company: Virtual CISO engagement building healthcare SaaS security program from ground zero. Sat in Board meetings translating technical security risks into business impact for non-technical executives, CFO, and investors explaining budget justifications for security investments and compliance requirements.

  • Degrees & accreditations

    Bachelor of Science Computer Science University of Puget Sound

    CISSP

    SEI CMM Level4

    6Sigma Green Belt

    PMP

  • Membership & affiliations

    Cloud Security Alliance

    ISSA

    ISACA

    ISSA Cyber Executive Forum

  • Success story

    **PCI DSS Level 1 Restoration — Raley's Holdings:** Joined as CISO in 2014 following a 2013 breach that resulted in loss of PCI DSS Level 1 certification. Given a 90-day mandate, I owned end-to-end remediation across all 12 requirement domains — gap assessment, network segmentation, access controls, encryption, and QSA coordination. Passed the audit on deadline, eliminated a $25K/month penalty, avoided a $5M fine,and restored the ability to accept credit cards across California and Nevada.

  • ©2026 GigX, Inc.
  • A Delaware Corporation
  • All Rights Reserved
  •  
  •  
  •  
  • Terms of service & Privacy
  • Sitemap
  • info@gigx.com

Dear Employers, Members & Friends of GigX

 

First, we hope you and yours are as safe and well as possible, considering these unprecedented times.

Second, we wanted to make you aware of the new membership & pricing options so you can see what we've been working on for the community. You can find further information on our blog, as well as a variety of other helpful content.

Third, for employers and outplacement companies that are facing the necessity and consequences of layoffs and furloughs, we have solutions such as volume pricing to allow the inclusion of a GigX Membership in transition/service packages to ease the adjustment and provide access to the gig economy for those affected.

Finally, we are pleased to announce a new partnership with SoleVenture that will provide GigX Members with additional benefits, and opportunities for SoleVenture’s customers to increase their exposure.

Together we will persevere.

Stay strong!
The GigX Team