As an experienced leader in the OutMatch IT Operations team, you will play an instrumental role in shaping and managing the Information Security function at OutMatch. You will serve as the security expert for all technical solutions, managing risks and identifying opportunities for improving the company’s security profile. You will collaborate with and support cross-functional teams of technical and non-technical key stakeholders to ensure security systems are functioning smoothly to reduce operational risk. You will be a primary point of contact for data privacy and compliance issues.
What You’ll Need:
Our ideal candidate will have a demonstrable track record of managing information security and compliance for mid-size organizations with diverse technology stacks. OutMatch is a rapidly growing global business with a continuously evolving technology systems landscape, and the Manager of Information Security and Compliance will need to successfully scale the function to ensure compliance with standards and relevance with industry security and data privacy norms.
This is a hands-on management position which requires advanced technical skills as well as management abilities.
- Extensive experience (5+ years) in Information Security, Technology Risk Management, IT Audit, and/or IT Compliance functions
- CISSP / CISM or equivalent certification strongly preferred
- Ability to clearly articulate security and risk-related concepts to technical and non-technical stakeholders at various business levels
- Strong customer communication and negotiating skills, experience interacting directly with customers in written and live settings
- Solid grasp of security standard methodologies;securing network and enterprise cloud applications and privileged access management technologies
- Experience implementing cloud security standards for platforms such as O365, Azure, and AWS
- Experience with controls frameworks such as ISO/IEC 27001 and/or SOC-2
- Understanding of international privacy and data protection regulations, such as CCPA and GDPR
- Ability to multitask, prioritize, coordinate, work well under pressure and meet deadlines
- Excellent written and verbal communication skills and the ability to construct well-founded, clear, and concise analyses and recommendations
- Critical thinking with strong problem-solving skills and a "can-do”attitude
What You’ll Do:
- Lead our Information Security &Compliance function and team
- Ensure design, development, and operation of secure &privacy-centric software, infrastructure, policies, and programs that balance best practices, business needs, and risks to continuously improve security posture and reduce the possibility of a data breach
- Respond to customer or other third-party inquiries related to customer security/privacy assessments, RFPs, etc.
- Review and negotiate customer contracts for privacy &security requirements to ensure alignment with OutMatch standards
- Oversee our network and application vulnerability scanning and penetration testing programs and coordinate remediation efforts in partnership with Infrastructure and Engineering teams
- Contribute as a member of the Incident Response Team by conducting forensic analysis and troubleshooting to assist in the containment and remediation of security incidents and further identify compensating controls related to security findings
- Assess regulatory compliance (GDPR, CCPA, etc.) and enact new programs or changes as regulations evolve and ensure compliance with existing laws
- Following any merger or acquisition activity, establish consistency in relevant process, procedures, policies, and controls across the business
- Conduct or coordinate self- and third-party assessments &audits, categorize risks, and develop remediation strategy, including ISO 27001 and SOC 2 audits
- Qualify partners and vendors by assessing their security programs meet needs of OutMatch and our customers
- Establish and deliver annual training programs for OutMatch staff
What You'll Get:
- To be part of a high-performing, highly collaborative environment full of people who love what they do and who are dedicated to success
- A culture focused on achieving results and transparent communication
- A solid, experienced management team invested in your development
- The opportunity to build skills and experiences that enable you to be successful quickly while paving the way for career growth
- An executive team dedicated to the safety and well-being of all team members
- Discretionary paid time off...whey you need it, you take it
- Dedicated development and planning time each week
- A world-class platform with an elegant user interface that empowers our clients to positively impact their business results
- A competitive base salary and great incentive program
- Monthly mobile connectivity allowance
- 100% company paid individual medical, dental, and vision insurance
- 401(k) with company match