Information Security Manager

StackAdapt is a self-serve advertising platform that specializes in multi-channel solutions including native, display, video, connected TV, audio, in-game, and digital out-of-home ads. We empower hundreds of digitally-focused companies to deliver outcomes and exceptional campaign performance everyday. StackAdapt was founded with a vision to be more than an advertising platform, it’s a hub of innovation, imagination and creativity.
As a Information Security Manager, you will play a vital role in keeping StackAdapt’s systems and information secure by detailing and implementing enterprise security processes and procedures with an approach of continual process improvement and scalability. You will be responsible for identifying and remediating gaps in StackAdapt’s security systems, solutions and programs, as well as recommending specific measures that can improve StackAdapt’s overall security posture. 
You will undertake cyber security activities and contribute to the management of risks posed to StackAdapt’s systems and information, from both internal and external security threats. In addition, you will proactively engage with the Information Security community to identify and mitigate relevant cyber threats, investigate incidents and work with stakeholders to raise awareness of the importance of Information Security and ensure continued legal, contractual and regulatory compliance.
You will use your extensive knowledge of industry-standard frameworks, methodologies and good judgment to craft, implement, and coordinate systems that facilitate analysis of large sets of security data. In addition, you will collaborate across the Information Security department to identify, communicate, and remediate threats or vulnerabilities that may impact StackAdapt, our Team Members or our users and the community at large.  
StackAdapt is a ‘Remote First’ company, therefore we are open to candidates located anywhere in North America for this position. 

What you'll be doing:

• Acting as a driving force for operational standard methodologies and building cyber security detections, including implementation, maintenance, automation and continuous improvements. 
• Supporting the delivery of strategic security initiatives, as well as driving tactical security enhancements. 
• Managing / supporting incident response activities, including the collection of event data, detailed analysis of audit logs and reporting. 
• Providing security consultancy to individuals or projects led by the business, reviewing designs and following risk assessment/management procedures as required. 
• Overseeing vulnerability management procedures, including vulnerability scanning, reporting & analysis, validation, prioritisation and remediation. 
• Generating reports for IT administrators and business managers to evaluate the efficacy of the security policies and solutions in place. 
• Preparing and delivering security awareness training material for StackAdapt staff. 
• Providing assurance about internal security controls and mechanisms to clients. 
• Performing risk assessments of our third party suppliers, including assessing the maturity level of security controls and mechanisms operated by third party suppliers. 
• Providing assurance about internal security controls and mechanisms to clients. 
• Supporting StackAdapt’s continuous efforts to meet compliance requirements, for example detailing and evidencing key security controls and mechanisms to external auditors. 

What we're looking for:

• Experience in a wide range of cyber security domains, for example asset management, vulnerability management, network and host security and incident response. 
• Experience interpreting internal/external business challenges and the industry environment, resulting in an ability to provide key recommendations in order to improve products, processes or services. 
• Strong communication skills, an ability to influence senior stakeholders and an ability to communicate information to audiences with varying backgrounds and domain knowledge.
• Knowledge of different cyber security solutions and toolsets is beneficial (e.g. SIEM, EDR, SOAR, vulnerability scanning, email security gateways, internet proxies / gateways, etc.). 
• Experience with cloud computing services is beneficial (e.g. AWS, Azure, GCP, etc.). Experience creating, maintaining and delivering training and awareness material. 

We’ll be reaching out to applicants that have:

• 3+ years of work in a related field. 
• Bachelor’s degree (or higher) in Computer Science or a related field; or a combination of relevant education, experience, and training. 
• Knowledge of current hacking techniques, vulnerability disclosures, data breach incidents, and security analysis techniques. 
• An ability to develop specific expertise, discern patterns of complex threat actor behaviour, and communicate an understanding of current and emerging cyber threats. 
• Strong communication skills, both written and verbal. 
• Strong organisational and time management skills, as well as an ability to meet deadlines. 
• Strong analytical and evaluation skills. 
• Ability to work comfortably in fast-paced environments, subject to frequent change and/or unpredictability. 
• Security / IT Audit Certification is beneficial (e.g. CISSP, CISA, CISM, CompTIA Network+, GSEC, CEH, etc.). 
• Experience with one or more scripting languages is beneficial (e.g. Python, PowerShell, Ruby, Perl, Bash, Javascript, Go, etc.).

StackAdapters Enjoy:

• Competitive salary
• RRSP matching
• 3 weeks vacation + 3 personal care days + 1 Culture & Belief day + birthdays off
• Access to a comprehensive mental health care platform
• Full benefits from day one of employment
• Work from home reimbursements
• Optional global WeWork membership for those who want a change from their home office
• Robust training and onboarding program
• Coverage and support of personal development initiatives (conferences, courses, etc)
• Access to StackAdapt programmatic courses and certifications to support continuous learning
• Mentorship opportunities with industry leaders
• An awesome parental leave policy
• A friendly, welcoming, and supportive culture
• Our social and team events!

#LI-LN1
StackAdapt is a diverse and inclusive team of collaborative, hardworking individuals trying to make a dent in the universe. No matter who you are, where you are from, who you love, follow in faith, disability (or superpower) status, ethnicity, or the gender you identify with (if you’re comfortable, let us know your pronouns), you are welcome at StackAdapt. If you have any requests or requirements to support you throughout any part of the interview process, please let our Talent team know.
About StackAdapt
We've been recognized for our diverse and supportive workplace, high performing campaigns, award-winning customer service, and innovation. We've been awarded:

Ad Age Best Places to Work 2024G2 Top Software and Top Marketing and Advertising Product for 2024Campaign’s Best Places to Work 2023 for the UK2024 Best Workplaces for Women and in Canada by Great Place to Work®#1 DSP on G2 and leader in a number of categories including Cross-Channel Advertising
#LI-Remote