InfoSec Compliance Officer

Description: The Information Security Compliance Officer will be hired to provide an audit role to ensure that blackthorn.io meets all necessary security requirements. They will be responsible to ensure that Information Security is maintained through the preservation of Confidentiality, Integrity and Availability of Force Information Systems and data held therein, in accordance with relevant security policies and legislation.

Base Salary: $90,000 – 100,000 USD

What you’ll do

• Evaluate the results of internal & external system vulnerability scans, and arranging necessary internal follow-up to facilitate agreement regarding any recommended remediation items
• Tracking agreed security remediation efforts from vulnerability tests with the support of the executive team, and ensuring successful disposition of each item
• Working to enhance the confidentiality, integrity, and availability of data at blackthorn, regardless of form
• Maintaining information security documentation and developing security policies and procedures
• Working with the leadership team to identify key metrics and reporting requirements as they relate to technology performance and operation
• Communicate effectively at multiple levels of sensitivity and across multiple audiences

What we look for

• 4+ years of progressive infrastructure and cyber security experience, preferably within a growing b2b SaaS organization
• 4+ years of experience working in an operations environment, driving improvements resulting in measurable business impact
• Knowledge about translating security concepts into language that is meaningful to many audiences, including business and technical leaders, and individual contributors
• Advanced knowledge of NIST, ISO, SOC and/or related frameworks
• Experience with metrics-based projects and utilizing metrics to gauge risk and success
• Expert at developing enterprise-wide Security Compliance programs designed to anticipate, assess, and minimize control gaps and audit findings