Director Of Information Security And Compliance

As the Director of Information Security and Compliance at ActivTrak, you will oversee and implement security measures to protect the organization's infrastructure, assets, and personnel. You will manage our compliance programs, including SOC2, GDPR, and emerging state and country privacy laws. You will support our pre-sales process, ensuring we can meet our customer’s security questions with clarity and candor, including engaging directly with prospects as required. Your duties will include, but are not limited to:

• Create and deliver security presentations and training materials to support the sales process, leveraging tools such as RFPIO to provide responses at scale
• Collaborate with sales engineers to understand the security requirements of potential customers and develop solutions to meet those requirements.
• Participate in customer-facing sales calls to address security concerns and provide technical expertise.
• Provide ongoing security support and guidance to existing customers.
• Collaborate with other departments to integrate security measures with overall business objectives.
• Collaborate with the product development team to ensure that security features and capabilities are integrated into new products and updates.
• Identify and assess potential security risks and develop plans to mitigate them.
• Develop and maintain a comprehensive security program that includes policies, procedures, and guidelines that align with industry standards and best practices.
• Evaluate and implement security technologies, tools, and systems to enhance the organization's security posture.

Requirements

• You are comfortable speaking with customer security teams and have participated successfully in the sales process.
• Strong leadership skills and the ability to motivate and manage a team effectively.
• Professional experience in security, including running SOC2, advising engineering teams on security, and managing security tools.
• Experience in people management and leading teams would be beneficial but is not required to apply for this position.
• A demonstrated ability to manage budgets and allocate resources effectively.
• Excellent communication skills, including communicating complex security concepts to non-technical stakeholders.
• Possess the ability to provide context to security requirements and reframe risks in terms of business outcomes.
• A demonstrated ability to identify and implement practical, effective security solutions without relying solely on new product development.
• Relevant security certifications such as CISSP, CISM, or CPP are preferred.
• Experience with cloud security, specifically in Google Cloud Platform (GCP).
• Strong knowledge of security best practices and technologies, including access control, intrusion detection, and incident response.

Benefits
Work environment:

• Limited physical demands
• Position is remote within US
• Minimal travel

If you are an experienced security professional passionate about keeping organizations safe and secure, we encourage you to apply for this exciting opportunity.
ActivTrak is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. ActivTrak does not discriminate on the basis of race, color, religion, sex, national origin, political affiliation, sexual orientation, marital status, disability, age, protected veteran status, gender identity or any other factor protected by applicable federal, state or local laws.