Director of Information Security and Compliance

As the Director of Information Security and Compliance at ActivTrak, you will oversee and implement security measures to protect the organization's infrastructure, assets, and personnel. You will manage our compliance programs, including SOC2, GDPR, and emerging state and country privacy laws. You will support our pre-sales process, ensuring we can meet our customer’s security questions with clarity and candor, including engaging directly with prospects as required. Your duties will include, but are not limited to:

• Develop and maintain a comprehensive security program that includes policies, procedures, and guidelines that align with industry standards and best practices.
• Identify and assess potential security risks and develop plans to mitigate them.
• Collaborate with other departments to integrate security measures with overall business objectives.
• Evaluate and implement security technologies, tools, and systems to enhance the organization's security posture.
• Collaborate with sales engineers to understand the security requirements of potential customers and develop solutions to meet those requirements.
• Participate in customer-facing sales calls to address security concerns and provide technical expertise.
• Create and deliver security presentations and training materials to support the sales process, leveraging tools such as RFPIO to provide responses at scale
• Collaborate with the product development team to ensure that security features and capabilities are integrated into new products and updates.
• Provide ongoing security support and guidance to existing customers.

Requirements

• Professional experience in security, including running SOC2, advising engineering teams on security, and managing security tools.
• You are comfortable speaking with customer security teams and have participated successfully in the sales process.
• Strong knowledge of security best practices and technologies, including access control, intrusion detection, and incident response.
• Experience with cloud security, specifically in Google Cloud Platform (GCP).
• A demonstrated ability to identify and implement practical, effective security solutions without relying solely on new product development.
• Excellent communication skills, including communicating complex security concepts to non-technical stakeholders.
• Possess the ability to provide context to security requirements and reframe risks in terms of business outcomes.
• Strong leadership skills and the ability to motivate and manage a team effectively.
• A demonstrated ability to manage budgets and allocate resources effectively.
• Relevant security certifications such as CISSP, CISM, or CPP are preferred.
• Experience in people management and leading teams would be beneficial but is not required to apply for this position.

Benefits

Work environment:

• Position is remote within US
• Minimal travel
• Limited physical demands

If you are an experienced security professional passionate about keeping organizations safe and secure, we encourage you to apply for this exciting opportunity.

ActivTrak is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. ActivTrak does not discriminate on the basis of race, color, religion, sex, national origin, political affiliation, sexual orientation, marital status, disability, age, protected veteran status, gender identity or any other factor protected by applicable federal, state or local laws. #LI-REMOTE