FreshRemote.Work

Privacy and Security Manager

Remote - US

Hi, We’re AffiniPay! 

AffiniPay is a leading fintech company, based out of Austin, Texas. As the market leader in professional services payments and practice management software, AffiniPay’s tech products serve legal, accounting, architectural, engineering and construction firms. AffiniPay has been recognized as one of Inc. 5000’s fastest growing companies in the U.S. for 11 years in a row, and as a result, our teams continue to grow as well! 

We are seeking a highly skilled and experienced Privacy and Security Manager to join our team. In this role, you will be responsible for developing, implementing, and maintaining our organization's privacy and security. You will play a crucial role in safeguarding our company's sensitive information and ensuring compliance with relevant laws and regulations. The ideal candidate will possess a deep understanding of privacy and security best practices, strong analytical skills, and the ability to communicate effectively with stakeholders at all levels of the organization.

What You’ll Do

  • Develop and Implement Privacy and Security Policies: Design, implement, and enforce policies and procedures to protect the confidentiality, integrity, and availability of sensitive information, ensuring alignment with compliance requirements.
  • Risk Assessment and Management: Conduct regular risk assessments to identify potential vulnerabilities and threats to the organization's privacy and security. Develop strategies to mitigate risks and respond to security incidents in compliance with regulatory requirements.
  • Compliance Management: Stay up-to-date with relevant privacy and security laws, regulations, and industry standards. Ensure compliance with requirements such as PCI, GDPR, CCPA/CPRA, HIPAA, and others applicable to our organization. Develop and maintain a compliance roadmap and ensure adherence to it.
  • Security Awareness Training: Develop and deliver privacy and security awareness training programs for employees to promote a culture of security consciousness throughout the organization.
  • Vendor Management: Evaluate and manage third-party vendors and service providers to ensure they meet our privacy and security standards. Conduct due diligence assessments and monitor vendor compliance.
  • Incident Response: Partner with the VP and manager of Information Security on the response to privacy and security incidents, including investigating breaches, coordinating with relevant stakeholders, and implementing corrective actions to prevent future incidents, ensuring compliance with regulatory reporting requirements.
  • Privacy Impact Assessments (PIAs): Conduct PIAs for new projects, systems, or processes to assess and mitigate privacy risks. Work closely with cross-functional teams to integrate privacy considerations into project planning and development.
  • Data Governance: Develop and maintain data governance frameworks, including data classification, retention policies, and data access controls, to ensure the appropriate handling of sensitive information in compliance with applicable regulations.
  • Security Audits and Assessments: Coordinate and participate in internal and external security audits and assessments. Collaborate with auditors and assessors to address findings and implement remediation measures to maintain compliance.

Qualifications:

  • Bachelor's degree in Information Security, Computer Science, or related field. Advanced degree or relevant certifications (e.g., CISSP, CIPP) preferred.
  • Minimum of 3 years of experience in privacy and security adjacent roles, preferably in the financial industry with SaaS exposure.
  • Understanding of privacy and security principles, standards, and best practices.
  • Proficiency in conducting risk assessments, developing policies and procedures, and managing compliance efforts.
  • Excellent communication and interpersonal skills, with the ability to effectively engage with stakeholders at all levels of the organization.
  • Strong analytical and problem-solving abilities, with a keen attention to detail.
  • Experience with security technologies and tools, such as SIEM, DLP, encryption, and access controls.
  • Ability to work independently and collaboratively in a fast-paced environment, with a commitment to continuous learning and improvement.

Additional Information:

The base pay range for this position is between $$115,000-$135,000 USD annually. The salary range for performing this role outside of the US / Austin / California may differ.  AffiniPay is committed to offering competitive, fair and commensurate compensation and has provided an estimated pay range for this role. Actual compensation may vary based on job-related knowledge, skills, experience and education.

Our Story

Founded in 2005, AffiniPay’s mission is to build technology products that helps professionals focus on the work they love. As the leader in the professional payments industry, AffiniPay’s products serve legal, accounting, architectural, engineering and construction firms. Our portfolio of software solutions include MyCase (Legal Practice Management Software), CASEpeer (Practice Management for Personal Injury Firms), Docketwise (Immigration & Case Management Software), (Soluno (Legal Accounting), and Woodpecker (Legal Document Automation). Our portfolio of payment solutions include LawPay (Legal), AffiniPay for Associations (Associations), CPACharge (Accounting Professionals), and ClientPay (Architect, Engineer, and Construction). AffiniPay’s products serve over one hundred thousand users, and we are noted as one of the fastest growing tech companies in Austin, Texas. We are constantly looking for talent to join our team to continue playing a key part in unlocking our potential. 

 

Diversity, Equity & Inclusion at AffiniPay

At AffiniPay, we recognize that innovation occurs with a strong team of people who are diverse in background, personality, talent and ideas. Experience comes in many forms and ensuring a diverse and inclusive workplace where we continue to learn from each other is an integral part of our culture. We are committed to creating a welcoming and transparent environment for all that embraces those differences through education, equal access to opportunities and information, inclusionary programs, and community outreach. 

 

Benefits that Benefit You! 

As a people first culture, we believe it is important that our teammates are happy, healthy, and productive.  In order to best support that, AffiniPay provides award-winning benefits that can make a difference in your life - right now and for the future.

  • All employees receive fully covered medical, dental and vision coverage - Choose from our 2 available health plans based on what fits you and/or your family!
  • Have some fur babies? - We offer them insurance too!
  • RELAX and enjoy your time away with our flexible paid time off policy! 
  • We will help you plan for your future - 401K, or RRSP if in Canada, with a company match
  • Competitive compensation packages that include mid-year and end-of-year bonuses and equity options for all full-time employees
  • Health Wellness Program that includes nutrition consultations, mental health apps, and access to discounted memberships
  • Have plans to grow your family? - Parental resources, including 16 weeks of paid time off for primary caregivers
  • Professional development opportunities including mentorships, leadership programs and our AffiniPayU courses
  • We believe it is important to give back with our Matching Gift Program and organized activities focused on donations, volunteerism and supporting the local communities throughout the country
  • D&I initiatives provide educational opportunities regarding multicultural issues, tolerance, and celebrating diversity among our entire staff
  • An incredible, in-office experience at our headquarters in Austin and San Diego including free lunch delivery, a fully stocked kitchen, and some “sweet” surprises for those afternoon pick-me-ups
Apply

Job Profile

Regions

North America

Countries

United States

Benefits/Perks

Competitive compensation

Skills

Analytical Communication Compliance Data Governance Interpersonal Leadership Privacy Problem-solving Risk Assessment SaaS Security Software Solutions Training Programs Vendor Management

Tasks
  • Compliance management
  • Data governance
  • Develop and Implement Privacy and Security Policies
  • Incident response
  • Privacy Impact Assessments (PIAs)
  • Risk assessment and management
  • Security Audits and Assessments
  • Security Awareness Training
  • Vendor management
Experience

3 years

Education

Bachelor's degree in information security BE Computer Science

Certifications

CIPP CISSP

Timezones

America/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9