Americas Information Security Officer
US Remote
Applications have closed
Kin + Carta
Leveraging 2,000 consultants, engineers and data scientists, Kin + Carta makes the journey to becoming a digital business tangible, sustainable, and profitable.At Kin + Carta, we’ve got opportunities to offer you — for growth, for leadership, for big, world-changing impact and for, dare we say it, fun. We are a global workforce that is committed to building a world that works better for everyone. And that starts with our Kin. That’s why we’re proud of:
- The life we create within our virtual walls, every day
- Being B Corp certified
- Our honor as a “Best Company to Work For” by Women's Choice Award
The role
The ideal Americas Information Security Officer for Kin + Carta is innovative, passionate about global information security with both policy and technical experience. This person looks to continually learn, and enjoys sharing expertise. Strong verbal and written communication are a must. Experience working with HITRUST, or Nessus is a plus.
Role responsibilities
- Pursue infosec excellence for the region with the continuous development and management of K+C InfoSec standards to ensure compliance for HITRUST, PCI-DSS, ISO 27001 and other required controls.
- Perform internal audits on information security in line with international standards, which includes but not restricted to HITRUST
- Security assess new and current suppliers - plan, organize and review Digital implementations, tools, APIs and platforms.
- Support the completion of stakeholder infoSec schedules for RFPs, MSAs, delivery and project teams, by resolving project queries and approval of security requirements
- Contribute to the InfoSec Risk Register and collaborate on treatment of risks tailored to the needs of the region. Manage and track mitigations, remediations and compensating controls.
- Completing Information Security assessments from external parties in a timely manner
- Contribute to the performance and improvement of the ISMS
- Establish and review monitoring and logging process and standards
- Designing, delivering and monitoring InfoSec training and awareness
- Reviewer and approver of ISMS documentation
- Collaborate with K+C and CDS, providing information security consultancy, strategy and implementation planning along with the prioritization of the highest impact projects
- Joint responsibility with the Digital Defense team for all BAU tickets and tasks and recording time and tag allocation.
Minimum qualifications
We want all new hires to succeed in their roles at Kin + Carta. That's why we've outlined the job requirements below. To be considered for this role, it's important that you meet all Minimum Qualifications. If you do not meet all of the Preferred Qualifications, we still encourage you to apply.
- Experience in a security role with the emphasis on risk, policy and governance
- ISMS Documentation Development
- A working understanding of security frameworks or methodologies, HITRUST and/or ISO27001, NIST, CIS
- Exposure to Enterprise Security tools AV, Vulnerability, IAM, SSO.
- Continuous improvement with activities that stretch you beyond your job role, an opportunist who finds the positive side of a challenge.
- Critical thinking skills with a mindset that considers solutions prior to presenting challenges
Preferred qualifications
- BS in Computer Science, or a related field
- Certified CSF Practitioner or training towards
- CompTIA Security+ Certification
- Microsoft Certified Cybersecurity
- CISSP, CISM or equivalent training
- Experience working with international security standards
About Kin + Carta
Kin + Carta is a global digital transformation consultancy committed to working alongside our clients to build a world that works better #ForEveryone. Our 2,000 curious minds make creative connections between people, data and technology to create connected outcomes across the full lifecycle of the product and platform ecosystems.
We’re makers, builders and creators by nature, and we come to work every day to build experiences for some of the world’s most influential companies. We help businesses accelerate their digital roadmap, rapidly innovate, modernize their systems, enable their teams and optimize for continued growth.
We are a technology business with trust and human connection at its heart. As a Certified B Corp, our triple bottom line focus on people, the planet and profit is at the core of everything we do.
We welcome our Kin to show up as their authentic selves every day. Because this is so important to us, Kin + Carta is proud to be an equal opportunity employer. To read further about our commitment to Inclusion, Diversity, Equity and Awareness, check out the IDEA page on our website.
If you need accommodations at any point in the application or interview process, please let us know.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs Audits C CISM CISSP Compliance CompTIA Computer Science Governance HITRUST IAM ISMS ISO 27001 Monitoring Nessus NIST Security assessment SSO Strategy
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs