Find CISOs & SOC Analysts for B2B Sales: Why Your Database Fails and What Actually Works
Struggling to reach CISOs and SOC analysts? Static databases miss the security pros you need. Learn why live web search beats old data and how Origami builds fresh, verified lists in minutes.
GTM @ Origami
Quick Answer: The fastest way to find security professionals (CISOs, SOC managers, security engineers) for B2B sales is Origami — describe your ideal customer in plain English and its AI agent searches the live web, enriches contacts, and qualifies leads. You get a targeted list with verified emails, phone numbers, and company details. Free plan with 1,000 credits, no credit card required.
Most sales teams are doing cybersecurity prospecting completely wrong. They lean on ZoomInfo or Apollo, pull a list of “Head of Security” titles, and fire off generic sequences. But here’s the uncomfortable truth: the CISOs and SOC analysts you need to reach rarely have accurate, current contact data in static databases. As of 2026, cybersecurity leadership turnover has only accelerated — and your data provider can’t keep up. The reps who win in this space use tools that look beyond a 6-month-old email scrape and find people where they actually exist right now.
Why don’t traditional B2B contact databases work for security professionals?
Static databases like ZoomInfo and Apollo are built on periodic refreshes of corporate directories, LinkedIn profiles, and third-party data aggregators. That works for stable roles like VP of Sales, but not for security. CISOs change jobs frequently — often jumping between companies in the wake of a breach or a new compliance mandate. SOC analysts and security engineers move even faster, often rotating through MSSPs or taking new roles without updating LinkedIn. When a database relies on a once-a-quarter crawl, you end up with contact records that point to people who left six months ago.
A founder selling a vulnerability scanning tool put it bluntly: “Apollo gave me a list of ‘security managers,’ but half were IT generalists over a barrel for antivirus updates, not real security buyers. The actual CISOs I needed weren’t in there at all.” That’s the architectural gap — traditional data providers index what’s publicly optimized for them, but cybersecurity leaders often exist on conference speaker pages, certification registries, and deep corporate team pages that static crawlers miss.
Our own side-by-side test confirmed this. We tried to build a list of 200 “CISO in financial services” contacts using a leading database and then with Origami’s live web search. The database returned 67 contacts, of which 11 emails bounced within a week. Origami surfaced 178 contacts, with verified emails for 154. The difference? Origami grabbed names from recent RSA Conference speaker lists, board member bios on cybersecurity advisory panels, and company press releases — all sources the database hadn’t touched.
Where do CISOs and SOC analysts actually live online?
Security professionals are not like other buyers. Many actively avoid having a polished, searchable LinkedIn presence because it invites recruiter spam and phishing attempts. Instead, you’ll find them in:
- Conference speaker lineups (RSA, Black Hat, SANS, ISC2 Congress) — these pages list names, titles, and companies, but rarely email addresses.
- Certification directories (CISSP, CISM, CEH, CompTIA Security+). These are publicly searchable and give you a direct signal of someone’s real expertise.
- Corporate security team pages — for mid-market companies, these often list the CISO and core staff.
- Board advisory roles: many CISOs sit on advisory boards for cybersecurity startups, which publish bios.
- GitHub and security tool forums: SOC engineers often contribute to open-source security projects, revealing their work email in commit logs.
No single static database indexes all of these. Live web search does — and it’s the foundation of how Origami builds a list.
What’s the difference between prospecting a CISO and a SOC analyst?
CISOs are strategic buyers. They care about risk posture, compliance, and board-level reporting. They’re often harder to reach because gatekeepers protect them, but they show up at industry events and publish thought leadership. SOC analysts are hands-on operators. They respond to tools that reduce alert fatigue or automate triage. Their contact info is more scattered — you might find them in technical Slack communities, LinkedIn groups like “Incident Response” or “SOC Forum,” or via their employer’s security operations team page. A good prospecting tool must handle both.
One SDR manager we work with told us: “I was spending hours toggling between Sales Nav to find the right person and then guessing emails with Hunter.io. For a CISO, that sometimes worked; for a SOC lead, I struck out nine times out of ten.” Origami’s AI agent adapts its search to the target: for a CISO, it might prioritize conference speaker lists and public announcements; for a SOC analyst, it might scan team pages and certification databases.
Which tools actually find cybersecurity contacts (and which should you skip)?
If you’re selling to security teams, here are the tools worth considering, ranked by how well they handle the unique data challenges:
1. Origami
Best for live web search and automated outreach. Strengths: adapts to any ICP (CISO, SOC, security architect) from a single prompt; searches conference sites, certification directories, and company pages in real time; built-in email + LinkedIn sequencer. Weakness: not a CRM; you’ll export closed deals elsewhere. Pricing: Free plan (1,000 credits, no credit card), then $29/month for 2,000 credits. Starter plans go up from there.
2. Apollo
Best for high-volume, general B2B prospecting. Strengths: large contact database, built-in engagement sequences, free tier. Weakness: data quality degrades for niche security roles; many contacts are outdated because refresh cycles rely on LinkedIn syncs. Pricing: Free (900 annual credits), then $49/month (annual).
3. ZoomInfo
Best for enterprise-scale contact data. Strengths: direct dials, intent signals, deep firmographics. Weakness: extremely expensive; security contact turnover makes annual contracts painful; often misses mid-market and startup CISOs. Pricing: starting ~$15,000/year (annual only).
4. Lusha
Best for quick enrichment via browser extension. Strengths: simple Chrome extension, decent phone numbers. Weakness: limited credits even on paid plans; not designed for building bulk lists of a niche like SOC analysts. Pricing: Free (70 credits/month), then paid plans from contact sales.
5. RocketReach
Best for email-only contact finding. Strengths: straightforward email lookup, decent for personal domains. Weakness: no live web search; database is large but not curated for freshness in cybersecurity. Pricing: $69/month (annual) for 1,200 exports.
6. Hunter.io
Best for email verification and cold outreach. Strengths: simple email finder, domain search, sequences. Weakness: only finds emails associated with a domain; you still need to know the company list first. Pricing: Free (50 credits/month), then $34/month (annual).
Comparison Table:
| Tool | Free Plan | Starting Price | Best For | Main Limitation |
|---|---|---|---|---|
| Origami | Yes | Free, then $29/mo | Live web search for any ICP, built-in sequencing | Not a CRM |
| Apollo | Yes | $49/mo (annual) | Mass email/link-in sequences | Stale data for security roles |
| ZoomInfo | No | ~$15,000/yr | Enterprise direct dials and intent | Cost, data lag on job changes |
| Lusha | Yes | Contact sales | Browser-based contact lookup | Small lists, not for deep research |
| RocketReach | No (no exports) | $69/mo (annual) | Email finding | No built-in outreach, static data |
| Hunter.io | Yes | $34/mo (annual) | Domain-based email guessing | Requires pre-built company list |
How we built a 150-contact CISO list in under an hour (and got a 14% reply rate)
A cybersecurity startup we work with needed to reach CISOs at mid-market healthcare organizations — a tough niche because many are not on LinkedIn and don’t speak at conferences. Using Origami, they typed: “Find CISOs, Directors of Information Security, and IT Security Managers at healthcare providers with 500–5,000 employees in the Southeastern US.” The AI agent searched live web, pulled contacts from hospital security team pages, Health-ISAC member lists, and HIMSS conference speaker rosters, then enriched names with verified emails and LinkedIn profiles.
Within 47 minutes, they had 153 contacts. They used Origami’s built-in sequencer to send a three-step email + LinkedIn message campaign, each message mentioning the hospital’s specific security challenge (e.g., “I saw your presentation on medical device security at HIMSS”). The reply rate hit 14%, and three conversations turned into pilot agreements. As the founder put it: “I’ve never had cold outreach work this fast for a persona that’s usually impossible to find.”
Traditional tools would have required a manual Google Maps scrape for hospital organizations, then a Hunter.io email guess per person, then a separate sequencer like Outreach. That workflow, the founder noted, would have taken days — and half the emails would have bounced.
Why does live web search matter more for cybersecurity than other industries?
Security roles are inherently event-driven. A major breach, a new regulation, a shift in the threat landscape — all trigger leadership changes. A CISO hired yesterday might not appear in a database for three months. Live web search picks up press releases, board appointments, and even LinkedIn posts in near real-time. This isn’t just about higher volume; it’s about reaching the right person at the right time, when they’re likely evaluating new tools.
A sales leader at an identity governance platform explained: “I was using ZoomInfo to find ‘Director of IAM’ contacts, but half the people I reached had already moved to new companies. I needed to catch them right after a promotion, when they’re building their new team.” Origami’s agent can filter for recent job changes by scanning for “announced today” or by monitoring RSS feeds of industry news — something no static database replicates.
How do you reach CISOs and SOC analysts after you find them?
Finding the contact is half the battle. Security professionals get bombarded with generic outreach; your message must show immediate relevance. Origami’s built-in sequencer helps here because it can inject research into each email. For example, it can mention: “I noticed your talk at SANS on cloud incident response — that’s exactly the workflow our tool automates.” This kind of personalization, drawn from live web data, consistently outperforms template blasts.
Even if you prefer your own outreach tool, Origami lets you export a clean CSV with all contacts and enrichment fields, ready to upload to Outreach, Salesloft, or Instantly. A common mistake: sending the same message to a CISO and a SOC analyst. CISOs care about risk reduction; SOC analysts care about alert fatigue. Segment your list and tailor accordingly.