Information Security Manager

Brazen Technologies

Posted: 
October 18, 2020

We are looking for an Information Security Manager to join our engineering team. Our software is used by hundreds of customers to engage their communities in online events. We want every event participant to be able to focus on making new contacts in a safe and trusted environment. We believe that security is every Brazenite's concern and have established many best-in-class security systems across the company. Now we’re going a step further and creating a dedicated information security team to demonstrate our commitment to our users’ safety.

With this role, you’d be the first full-time team member dedicated to information security and lead the strategy, implementation, and daily operations of information security at Brazen. You will own the full security, compliance, and privacy infrastructure at the company. You will be our "go to" person for everything security related, and continually refine our security strategy. You will help us maintain our high quality standard, while suggesting ways we can improve. You will continue to build your current knowledge of emerging cyber threats, new technologies, compliance requirements so that you can recommend cyber security enhancements.

This role reports directly to Brazen’s CTO and will have a tremendous impact on the growth and development of information security at a fast-growing company.

Responsibilities

  • Own, prioritize, refine, and advocate for security backlog items

  • Own security compliance audits such as SOC II, ISO 27001, HIPAA

  • Own and continually improve our security controls

  • Own and continually improve our external security assessment workflow

  • Collaborate with legal and sales to review contracts

  • Create, own, and improve processes to manage unique customer security contractual obligations

  • Own and continually improve our vendor assessment process

  • Own and ensure compliance of organization-wide security policies

  • Lead response to security incidents

  • Own, build, and keep updated a scalable, automated process and ensure compliance with data subject access request laws

Qualifications

  • 6+ years of experience in a cyber security or information security role implementing, evaluating, and developing cyber security solutions

  • Experience with security audits such as SOC II

  • Experience working with sales and legal teams on security/privacy issues related to contracts

  • Experience recommending and advocating improvements to current infrastructure and provide guidance on new technologies and capabilities

  • Expert at directing and coordinating technical response teams for quick containment of security incidents

  • Understanding of basic networking protocols such as TCP/IP, DNS, HTTP, HTTPS

  • Understanding of the Software Development Life Cycle

  • Experience assessing, recommending, and implementing security technologies such as: Security information and event management (SIEM), IDS/IPS, Data Loss Prevention (DLP), Proxy, Web Application Firewall (WAF), Endpoint detection and response (EDR), Anti-Virus, Sandboxing, network- and host-based firewalls, Threat Intelligence, Penetration Testing, Vulnerability Scanning, Black Duck, Static Code Analysis tools, etc.

  • Expertise of security concepts such as encryption algorithms, key management, hardening, DMZs, TLS, VPCs, segregation of databases, secure data backups and deletion

  • Experience explaining DevSecOps and security concepts and technologies to non-technical audiences

  • Experience coordinating between multiple teams

  • Excellent communication, presentation and collaborative problem-solving skills.

  • Must be a self-starter and able to demonstrate experience learning new technologies and practices.

Preferred Qualifications

  • Development experience

  • Experience at a B2B SaaS startup

  • Experience with data privacy laws such as GDPR and CCPA

Brazen is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Brazen are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Brazen will not tolerate discrimination or harassment based on any of these characteristics. Brazen encourages applicants of all ages.

Apply Now

Get a weekly email with 5 curated job opportunities.

! Last step: confirm your subscription in your email provider !
Oops! Something went wrong while submitting the form.

Transparent marketing examples to help you nail your interview.

Learn More

Helpful Resources

Want a more efficient and effective job search?
Sign up and I'll send you 3 tools to help you do just that.

Perfect your resume

Get our top 3 favorite resources for crafting resumes that work.