Director, Information Security

Remote - US

Full Time Executive-level / Director
betterworks logo
betterworks
Apply now Apply later

Posted 4 weeks ago

We're looking for a motivated and technology-savvy Director, Information Security that can support Betterworks’ information security and privacy compliance initiatives, drive continuous improvement of Betterworks’ control environment and internal processes, and ensure Betterworks’ products and services meet or exceed ongoing industry standards. You will work cross-organizationally to push the limits of our compliance programs by finding creative ways to meet regulatory and contractual requirements while supporting growth and innovation at Betterworks. You will be expected to interface with customers on any compliance or security-related inquiries and to help our internal teams throughout the annual compliance cycle. 

Day-to-Day

  • Own Betterworks’ information security and compliance programs (SOC 2, ISO 27001, Privacy Shield, GDPR, CCPA, etc.)
  • Work cross-functionally reviewing Betterworks’ infrastructure stack from a compliance perspective, everything from new systems to new product features
  • Lead, coordinate, and perform privacy and security-focused audits
  • Manage incoming and outgoing customer requests and queries, including customer information requests and security questionnaires
  • Drive improvements in existing processes and develop new, innovative, and efficient solutions
  • Communicate gaps to management and coordinate cross-functional team meetings to remediate and close control gaps
  • Assist with the education and training of process owners about the Betterworks controls framework
  • Coordinate with process owners, external auditors, and internal auditors as necessary
  • Participate in contract negotiation and work with the Betterworks legal team to review commitments, as necessary
  • Conduct security assessments of Betterworks’ third-party vendors

 Qualifications

  • BS Degree in Management Information Systems, Business or a technology-related field or equivalent professional experience
  • Consulting or Security Audit experience preferred
  • 5+ years experience in an equivalent technology risk and compliance related role
  • CISA, CISSP, CIPP or other related technology governance certifications a plus
  • Familiarity with systems and software development
  • Familiarity with security requirements surrounding SaaS platforms
  • Highly organized and detailed oriented
  • Excellent written, verbal communication and presentation skills
  • Ability to thrive in a startup environment
Job tags: CISSP Compliance Cross-functional SaaS Security Training
Job region(s): North America
Job stats:  0  0  0
  • Share this job via
  • or

More Remote work and WFH position highlights