Director, Information Security and Privacy
Culver City, CA
Full Time Executive-level / Director USD 184K - 231K
PERKS & BENEFITSUnlimited Vacation, Paid Sick Days & Holidays100% Employee Covered Medical, Dental, Vision Plan Base PlanLife Insurance, 401k, Flexible Spending Accounts, Commuter Benefits & MoreCatered Lunches & Well-stocked KitchensYoga & Wellness ActivitiesHappy HoursCompany EventsDog Friendly
At Jam City, we are committed to maintaining the highest standards of information security and privacy to protect our people, infrastructure, applications, source code, and sensitive data. Our Information Security and Privacy Program is designed to reduce cyber risks and optimize security controls in alignment with our business objectives. As we continue to grow, we are seeking a dynamic and experienced Director of Information Security and Privacy to lead our efforts in safeguarding our assets and ensuring compliance with industry standards and best practices.
The Director of Information Security and Privacy will play a crucial role in overseeing all aspects of information security and privacy within Jam City. This person will be responsible for developing, implementing, and maintaining robust security policies, procedures, and controls to protect our assets from unauthorized access, data breaches, and other cyber threats. The Director will work closely with cross-functional teams to assess risks, identify control gaps, and implement effective security measures in line with our strategic objectives.
REQUIREMENTS
- Develop and maintain a comprehensive Information Security and Privacy Program aligned with the mission and objectives of Jam City.
- Assess cyber risks and vulnerabilities across our business environments, applications, infrastructure, and data assets.
- Implement and oversee data protection measures, including encryption, access controls, and data masking, to safeguard sensitive information.
- Define and enforce security policies, standards, baselines, guidelines, and procedures to ensure compliance with regulatory requirements and industry standards (e.g., NIST 800-53, SOC 2, SOX, COPA, GDPR, CCPA).
- Collaborate with internal stakeholders and external partners to identify and implement security solutions, including those provided by Managed Security Service Providers (MSSPs).
- Monitor security alerts and incidents, triage and respond to security breaches, and lead incident response efforts as necessary.
- Conduct regular security assessments, audits, and compliance reviews to evaluate the effectiveness of security controls and identify areas for improvement.
- Provide leadership and guidance to all teams across the company, on security and privacy best practices and compliance requirements.
- Partner with Legal, IT, Procurement, Finance, Facilities, and other departments to address security and privacy concerns in contractual agreements, budget planning, physical security, and incident response.
- Serve as the primary point of contact for security-related inquiries, audits, and communications with regulatory authorities, law enforcement, media, and other external stakeholders.
- Serve as the primary point of contact for data privacy inquiries, incidents, and breaches, and coordinate the appropriate response and remediation efforts.
- Stay abreast of emerging threats, vulnerabilities, and regulatory changes in the cybersecurity landscape, and proactively adapt security strategies and controls as needed.
QUALIFICATIONS
- Bachelor's degree in Information Security, Computer Science, or a related field; advanced degree and relevant certifications (e.g., CISSP, CIPP) preferred.
- 5+ years of progressive experience in information security, with a proven track record of leading security programs in complex environments.
- Strong knowledge of cybersecurity frameworks, standards, and regulations, such as NIST, SOC 2, GDPR, CCPA, SOX and others mentioned in the company's strategy.
- Experience with managing and coordinating security assessments, audits, and compliance activities.
- Excellent leadership, communication, and interpersonal skills, with the ability to collaborate effectively with diverse teams and stakeholders.
- Demonstrated ability to think strategically, analyze risks, and develop pragmatic security solutions aligned with business objectives.
- Proficiency in incident response, crisis management, and communication with internal and external stakeholders during security incidents.
CHECK OUT LIFE AS A JAM CITIZEN:- Company news and events on our LinkedIn- Company Blog- Employee Feedback on our Comparably page- Find videos on our teams and games on our Youtube
OUR COMMITMENT TO EQUITY, DIVERSITY, & INCLUSIONWe believe in creating games that unite people across the world and that showcase our commitment to providing an environment that is both inclusive and diverse for our players and employees. We strive to create a workforce that is reflective of our global player community as we know that we are stronger and better when we play together. To help promote an inclusive culture, we celebrate the visible and invisible diversity of our Jam Citizens through initiatives including Employee Resource Groups, cultural events, trainings, speaker series, and more.
Jam City is an equal opportunity employer. We enthusiastically accept our responsibility to make employment decisions without regard to race, age, sex (including pregnancy), national origin, ancestry, religion, ethnicity, marital, or domestic partnerships status, disability, genetic information (including the refusal to submit to genetic testing), predisposing genetic characteristics, military status, veteran status, domestic violence victim status, sexual orientation, gender identity or expressions, or any other classification protected by federal, state, and local laws. Our management is committed to following this policy with respect to hiring, placement, promotion, transfer, demotion, layoff, termination, recruiting, pay, and other forms of compensation, training, and general treatment during employment.
ABOUT JAM CITYJam City is an award-winning mobile entertainment studio providing unique and deeply engaging games that appeal to a broad, global audience.
Led by CEO Josh Yguado, former 20th Century Fox executive, Jam City is the creative powerhouse behind some of the highest-grossing and most enduring mobile games. Jam City’s global franchise Cookie Jam has generated more than half a billion dollars, and Panda Pop has more than 120 million downloads to date.
The company also is the go-to studio for Hollywood, having developed immersive, narrative-rich mobile games around iconic entertainment brands. The company’s popular RPG game Harry Potter: Hogwarts Mystery was the #1 game in more than 40 countries at its launch in April 2018.
Jam City has nine studios located in Los Angeles (HQ), Berlin, Buenos Aires, Bogotá, Burbank, Cedar Falls, San Diego, San Francisco, and Toronto.
Tags: Audits CCPA CIPP CISSP Compliance Computer Science Encryption Finance GDPR Incident response NIST NIST 800-53 Privacy Security assessment SOC SOC 2 SOX Strategy Vulnerabilities
Perks/benefits: 401(k) matching Career development Equity Flex vacation Health care Insurance Medical leave Parental leave Team events Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Analyst jobs
- Open Staff Security Engineer jobs
- Open Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open IT Security Analyst jobs
- Open Security Researcher jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open APIs-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open Forensics-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open CEH-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs