SmartCommerce

IT Security Manager

SmartCommerce

full-time

Posted on:

Location Type: Remote

Location: Remote • 🇺🇸 United States

Visit company website
AI Apply
Apply

Salary

💰 $125,000 - $160,000 per year

Job Level

SeniorLead

Tech Stack

Cyber Security

About the role

  • Manages the team responsible for ensuring the security of the organization's systems and information assets.
  • Oversees the development and implementation of security systems, guidelines, and strategies.
  • Implements processes and procedures to protect the organization against unauthorized access, use, disclosure, disruption, modification, and/or destruction.
  • Conducts and reviews audits and risk assessments.
  • Reviews and evaluates internal operations and controls.
  • Oversees the migration of non-compliant environments to compliant environments.
  • Ensures compliance with data protection guidelines and applicable laws.
  • Develops, implements, and maintains a robust corporate compliance program that covers all relevant laws, regulations, and ethical standards.
  • Defines, establishes, and continuously improves SmartCommerce's information security strategy, policies, and procedures.
  • Leads risk assessments and develops mitigation strategies for compliance and security risks.
  • Oversees the development and delivery of comprehensive compliance and security training programs for all employees.
  • Manages and responds to internal and external audits related to compliance, security, and data privacy.
  • Stays abreast of evolving regulatory landscapes, industry best practices, and emerging threats.
  • Develops and manages incident response plans for security breaches and compliance violations.
  • Collaborates closely with relevant departments including Product, Engineering, Data Operations, and Sales teams.
  • Oversees third-party vendor risk management programs related to data security and compliance.
  • Establishes and manages relevant certifications (e.g., SOC 2) and compliance frameworks pertinent to SmartCommerce's business.
  • Prepares and presents regular reports on compliance and security posture, incidents, and initiatives to the executive team.
  • Leads, mentors, and potentially builds a team of compliance and security professionals.
  • Manages non-platform infrastructure, including user technical support, access requests, terminations, etc.

Requirements

  • Education Requirement: Bachelor's degree in Computer Science, Information Security, or a related field.
  • Experience Requirement: 7+ years of progressive experience in information security, with at least 3-5 years in a management or leadership role.
  • Strong knowledge of information security frameworks (e.g., NIST, ISO 27001, SOC 2) and cybersecurity best practices.
  • Proven track record of developing and managing effective security programs in a dynamic environment.
  • Experience with risk assessment methodologies and GRC (Governance, Risk, and Compliance) platforms.
  • Superior communication (written and verbal), negotiation, and interpersonal skills, with the ability to influence and align diverse stakeholders.
  • Relevant certifications such as CISSP, CISM, or CompTIA Security+ are highly desirable.
  • Deep expertise in global data privacy regulations (e.g., GDPR, CCPA, LGPD) and experience implementing robust privacy programs.
  • Familiarity with the e-commerce, retail technology, or advertising technology ecosystem is a significant plus.
Benefits
  • Health Care Plans (Medical, Dental & Vision)
  • Retirement Plan (401k, Profit Sharing)
  • Life Insurance (Basic, Voluntary & AD&D)
  • Long-Term Disability
  • Short- Term Disability
  • Paid Time Off (Vacation, Sick & Public Holidays)
  • Family Leave (Maternity, Paternity)
  • Work From Home
  • Wellness Resources

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
information securityrisk assessmentcompliance managementsecurity program developmentincident responsedata protectioncybersecurity best practicesGRC platformssecurity frameworksaudit management
Soft skills
communicationnegotiationinterpersonal skillsleadershipmentoringinfluencingcollaborationreportingteam managementstakeholder alignment
Certifications
CISSPCISMCompTIA Security+
MKS2 Technologies

Information System Security Engineer

MKS2 Technologies
Senior · Leadfull-time$89k–$115k / yearPennsylvania · 🇺🇸 United States
Posted: 55 minutes agoSource: boards.greenhouse.io
Cyber Security
Nava

Senior Security Engineer

Nava
Seniorfull-timeAlabama, Arizona, California, Colorado, District of Columbia, Florida, Illinois, Louisiana, Maine, Maryland, Massachusetts, Minnesota, Missouri, Montana, Nevada, New Jersey, New York, North Carolina, Ohio, Oklahoma, Oregon, Pennsylvania, Rhode Island, South Carolina, Tennessee, Texas, Utah, Virginia, Washington, Wisconsin · 🇺🇸 United States
Posted: 3 hours agoSource: jobs.lever.co
CloudLinuxUnix
Nerdy Dragon

Security Engineer – Detection & Response

Nerdy Dragon
Mid · Seniorfull-time🇺🇸 United States
Posted: 6 hours agoSource: boards.greenhouse.io
AWSCloudPython
Hone Health

Software Engineer – Security

Hone Health
Mid · Seniorfull-time$100k–$120k / year🇺🇸 United States
Posted: 6 hours agoSource: boards.greenhouse.io
AWSAzureCloudGoGoogle Cloud PlatformJavaPython