Ensure the strong security of all infrastructure, including cloud technologies, hardware, software, and network assets for internal and external information technology operations.
Partner with the Director of Infrastructure and Technology to review customer security and compliance requests as well as relevant contract language.
Develop and maintain IMPLAN’s policies, procedures, and controls to reflect a mature security stature.
Work with external assessors to successfully complete annual compliance audits, such as SOC 2 and NIST Cybersecurity Framework.
Manage IMPLAN’s risk assessment program by assessing IMPLAN sub-processors and 3rd party vendors security and compliance policies, identifying areas that would expose IMPLAN to risk.
Provide internal team members with information security and policy training.
Continually enhance the implementation of Datadog or similar toolsets reporting to refine and leverage real time security alerts.
Through the use of the 3rd party tools like Fingerprint, analyze customer activity to identify prohibited use, such as account sharing and botting.
Review penetration tests and vulnerability scans to aid the team in remediating risks.
Stay current on security vulnerabilities, regulatory, and industry standard changes.

Requirements

Strong knowledge of infosec standards, frameworks, and benchmarks, or the ability to quickly research and apply them.
Application of critical thinking and promptness to respond to customer security and compliance requests.
Communicate clearly and efficiently with excellent written and verbal skills.
Flexibility and adaptability in a changing business environment.
Ability to lead company presentations and training sessions.
1+ year recent experience in an information security or compliance role preferred.
Familiarity with GRC platforms is a bonus.
Experience supporting SOC 2, NIST, TX-RAMP, or other security and compliance frameworks is a bonus.

Benefits

Medical, Dental, Vision, Short & Long Term Disability, and Basic Life insurance
Flexible Spending Accounts
Retirement 401k plan with Company Match
Gym Membership Reimbursement
Paid Time Off and 10 Company Paid Holidays

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

information securitycompliance auditsrisk assessmentpenetration testingvulnerability scanningsecurity policiessecurity frameworkscritical thinkingcustomer security requestssecurity compliance

Soft Skills

communication skillsflexibilityadaptabilityleadershiptrainingproblem-solvingteam collaborationtime managementattention to detailcustomer service

Certifications

SOC 2NIST Cybersecurity FrameworkTX-RAMP