Information Security Manager, Cyber Security Business Partner
PEXA
AWSAzureCloudCyber SecurityGoogle Cloud Platform
Senior Information Security and Risk Analyst
Addepar
full-time
Posted on:
Location Type: Hybrid
Location: New York City • New York • 🇺🇸 United States
Visit company websiteSalary
💰 $113,000 - $176,000 per year
Job Level
Senior
Tech Stack
AWSCloudCyber Security
About the role
- Drive a more optimized Information Security and Risk Program, aligned with industry standard frameworks such as the NIST Cybersecurity Framework
- Lead independent risk assessments of our environment focusing on our platform and its supporting third party and internally developed software, infrastructure, and tools
- Support build-out of an enterprise metrics program and risk reporting framework to communicate risk to senior management
- Partner with control owners, engineers and other teams to facilitate reviews of new products and services, to ensure risks are identified, communicated, and mitigated
- Support SOC2 reviews including project management, planning, and coordination across Addepar teams and external auditors
- Maintain Addepar Information Security & Risk policies and standards, aligning to business and Client needs
- Assist in the management of Addepar’s Client Due Diligence Program through the composition and maintenance of security collateral
- Drive improvements and execution of risk and governance awareness programs
- Work as part of a global operating team across multiple timezones
Requirements
- 5+ years of experience managing, consulting, auditing, or working in the fields of Information security or Technology Risk required
- AWS Cloud Security experience preferred
- Demonstrate strong analytical, communication, and problem solving skills
- Experience identifying and communicating key risks related to cloud implementations and architectures
- Ability to manage multiple high-visibility and high-impact projects while maintaining superior results
- Familiarity with control frameworks (e.g. NIST Cybersecurity Framework, NIST 800-53, ISO) and SOC2 audit compliance
- Hands-on experience with Amazon Web Services (AWS) or similar cloud platform
- Basic understanding of core AI concepts and emerging technologies within the AI space
- [Optional] Professional certification: AWS Certified Solutions Architect, AWS Certified Security Specialty, Certified Information Security Auditor (CISA) or Certified Information Systems Security Professional (CISSP)
Benefits
- bonus
- equity
- benefits
- Global flexible workforce model (offices in New York City, Salt Lake City, Chicago, London, Edinburgh, Pune and Dubai)
- Reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment
- Embrace Learning: Engage our community to broaden our perspective. Bring a growth mindset.
ATS Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
Information SecurityRisk ManagementCloud SecurityRisk AssessmentProject ManagementAnalytical SkillsProblem SolvingControl FrameworksSOC2 ComplianceAI Concepts
Soft skills
CommunicationLeadershipOrganizational SkillsCollaborationTime Management
Certifications
AWS Certified Solutions ArchitectAWS Certified Security SpecialtyCertified Information Security Auditor (CISA)Certified Information Systems Security Professional (CISSP)
