This role can be based in the US or Latin America, and is fully remote.
We are proud to be exclusively partnered with a leading global headless CMS organisation, who are looking to pioneer the future of content management!
Trusted by leading global brands, this organisation enables them to deliver seamless, engaging digital experiences at scale.
This is a great opportunity to join a business who have just gone through lucrative series-c funding, in a role where you will shape the organisations security strategy!
What's in it for you?
Monthly remote work stipend (home internet costs, electricity). Home office equipment package right at the start (laptop, keyboard, monitor…)
Home office equipment upgrade (furniture, ear plugs …) or membership to a local co-working space after your onboarding
Sick leave benefit, parental leave and 25 days of annual leave plus your local national holidays
Personal development fund for courses, books, conferences, and material
VSOP (Virtual Stock Option Plan)
The annual international team-building trip, quarterly and monthly online get-togethers
As a fully remote company, with work-life balance at its core, you'll enjoy flexible schedules
An international team that loves to have fun at work and works hard together to accomplish shared goalsJob Role -
This role will design the company's information security strategy and lead all compliance and audit processes. Ensuring the risk and vulnerability assessment activities are carried out according to the ISO 27005 Standard.
The information security manager will also plan steps to mitigate the identified risks. The person will lead the incident response process for security breaches and coordinate relevant teams. The role will collaborate with different functions and is responsible for training, supporting and coordinating different team members
Essential job functions -
Design information security strategy
Risk Management - ISO 27005
Incident Response
Compliance & Audit - (e.g., GDPR, ISO, Fedramp, Privacy Acts).Qualifications:
More than 7 years relevant experience in Information Security or Cybersecurity.
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
Proven experience in successfully implementing Fedramp and at least one more information security related certification like ISO 27001, SOC, NIST.
Experience with setting up and maintaining an information security environment in a remote setup.
Professional certifications such as, CISM (Certified Information Security Manager), ISO 27001 LI or equivalent.
Work experience in a company that is ISO 27001 and Fedramp certified.
Strong experience with MDM, Authentication Management, Infrastructure and other information security-relevant tools.
Strong analytical, problem-solving, and decision-making skills.
Excellent communication and interpersonal skills.
Ability to manage multiple projects and priorities in a fast-paced environment.Preferred Skills:
Experience with Google Workspace
Experience with security information and event management (SIEM) systems.
Knowledge of cloud security principles and practices.
Experience in incident response and digital forensics.
Understanding of secure software development practices.
Knowledge about Cybersecurity
Good GDPR and Privacy skills