Job summary

We are proud to be exclusively partnered with a leading global headless CMS organisation, who are looking to pioneer the future of content management!

Key skills required for this role

ISM, Risk Management, Compliance, Incident Response, ISO 27001, FedRAMP

Important

ISM, Risk Management, Compliance, Incident Response, ISO 27001, FedRAMP

Job description

This role can be based in the US or Latin America, and is fully remote.

We are proud to be exclusively partnered with a leading global headless CMS organisation, who are looking to pioneer the future of content management!

Trusted by leading global brands, this organisation enables them to deliver seamless, engaging digital experiences at scale.

This is a great opportunity to join a business who have just gone through lucrative series-c funding, in a role where you will shape the organisations security strategy!

What's in it for you?

• Monthly remote work stipend (home internet costs, electricity). Home office equipment package right at the start (laptop, keyboard, monitor…)
• Home office equipment upgrade (furniture, ear plugs …) or membership to a local co-working space after your onboarding
• Sick leave benefit, parental leave and 25 days of annual leave plus your local national holidays
• Personal development fund for courses, books, conferences, and material
• VSOP (Virtual Stock Option Plan)
• The annual international team-building trip, quarterly and monthly online get-togethers
• As a fully remote company, with work-life balance at its core, you'll enjoy flexible schedules
• An international team that loves to have fun at work and works hard together to accomplish shared goals

Job Role -

This role will design the company's information security strategy and lead all compliance and audit processes. Ensuring the risk and vulnerability assessment activities are carried out according to the ISO 27005 Standard.

The information security manager will also plan steps to mitigate the identified risks. The person will lead the incident response process for security breaches and coordinate relevant teams. The role will collaborate with different functions and is responsible for training, supporting and coordinating different team members

Essential job functions -

• Design information security strategy
• Risk Management - ISO 27005
• Incident Response
• Compliance & Audit - (e.g., GDPR, ISO, Fedramp, Privacy Acts).

Qualifications:

• More than 7 years relevant experience in Information Security or Cybersecurity.
• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Proven experience in successfully implementing Fedramp and at least one more information security related certification like ISO 27001, SOC, NIST.
• Experience with setting up and maintaining an information security environment in a remote setup.
• Professional certifications such as, CISM (Certified Information Security Manager), ISO 27001 LI or equivalent.
• Work experience in a company that is ISO 27001 and Fedramp certified.
• Strong experience with MDM, Authentication Management, Infrastructure and other information security-relevant tools.
• Strong analytical, problem-solving, and decision-making skills.
• Excellent communication and interpersonal skills.

• Ability to manage multiple projects and priorities in a fast-paced environment.

Preferred Skills:

• Experience with Google Workspace
• Experience with security information and event management (SIEM) systems.
• Knowledge of cloud security principles and practices.
• Experience in incident response and digital forensics.
• Understanding of secure software development practices.
• Knowledge about Cybersecurity
• Good GDPR and Privacy skills