Alpine Operations Group (AOG) VP, Information Security (InfoSec)
San Francisco, California, United States
Applications have closed
Alpine Investors
Alpine Investors is a people-driven private equity firm that is committed to building enduring companies.OVERVIEW
Alpine Investors is seeking a VP, InfoSec to work within the Playbook function of Alpine Operations Group in close partnership with Alpine’s portfolio companies. This role, reporting to Will Chance (CEO of Playbook), is critical in creating the most secure platform to ensure Alpine’s portfolio scales to the next level smoothly and successfully. The VP, InfoSec assumes accountability for safeguarding data and operations in the face of increasingly stringent regulations and plays a pivotal role in helping shield portfolio companies from major existential threats. The success of the VP, InfoSec will depend in part on their ability to communicate security priorities and threats in a manner comprehensible to executive leaders, boards, and employees alike. Broadly, the VP, InfoSec will drive information security excellence in Alpine’s portfolio to protect and create equity value, through minimizing cyber incidents relative to benchmarks and offensively positioning Alpine companies on matters of information security in capital markets transactions. Key outcomes + responsibilities include:
Build and execute Alpine’s InfoSec Program: Develop + lead the cybersecurity strategy across Alpine’s portfolio. Recommend both process, technology, operations, and compliance enhancements to improve security of Alpine portfolio companies.
- Define and communicate a clear standard of excellence for InfoSec, considering individual business contexts while ensuring scalability. Implement measures to achieve zero cyber-caused business interruption events.
- Document processes and procedures to ensure replicability and scalability, enabling seamless execution in the absence of key personnel. Establish key performance indicators (KPIs) to assess the “InfoSec health” of Alpine companies.
- Vet, negotiate engagements, and directly manage third-party implementation vendors, ensuring alignment with the roadmap and successful project execution.
Expert Consultant: Support the portfolio through hands-on engagements and fractional leadership where necessary.
- Quarterback incident response to resolve business interruption issues efficiently
- Serve as a go-to expert across the Alpine ecosystem, delivering high-impact, business-oriented consulting tailored to bespoke company needs.
- Support diligence processes for large and/or strategically important transactions, ensuring no InfoSec surprises.
- Assess existing InfoSec talent within portfolio companies and provide recommendations for hiring or top-grading to achieve program goals, actively participating in the hiring process and ensuring newly hired individuals achieve 'A-player' ratings.
Ongoing Program Management: Maintain ongoing compliance, reporting, and data-tracking; continue learning and evolving to achieve and maintain a world-class InfoSec program.
- Establish a regular reporting cadence with Executive Leadership Team (ELT) on security status, trends, and top risks, accompanied by actionable recommendations.
- Implement an "always on" compliance and threat monitoring dashboard requiring low/no ongoing overhead from portfolio companies, ensuring real-time visibility into security posture.
- Stay abreast of cybersecurity developments through industry conferences, vendor interviews, and expert network interactions, applying insights to continuously improve Alpine’s InfoSec program.
- Create a security-forward culture within Alpine HQ and portfolio.
YOU SHOULD HAVE
- In-depth knowledge of designing + implementing scalable cybersecurity strategies, best practices, and frameworks
- Familiarity with the current security features of various platforms, operating systems, applications, firewalls, network protocols, and secure application development practices
- Relevant experience in systems security and the necessary subject-area expertise, encompassing the administration of security services like intrusion detection and network sensors, conducting assessments for application security and penetration testing, as well as managing security incidents across diverse scenarios
- Direct experience with performing risk assessments and effective incident response
- Experience with the hands-on management of enterprise grade security tools and infrastructure
- Experience in SOC, HIPAA, GDPR or PCI DSS and strong knowledge in cloud security and governance (AWS + Azure)
- Excellent written and verbal communication, presentation, and listening skills, with the ability to present complex technical information to a variety of technical and non-technical audiences
- Alignment with Alpine’s core values
COMPETENCIES + ATTRIBUTES
- Set Clear Standards: Develop a scalable standard of excellence considerate of individual business needs
- Documentation Skills: Document processes clearly for execution by individuals with limited InfoSec expertise
- Visionary Leadership: Articulate a vision aligned with organizational goals, inspiring commitment from stakeholders
- Prioritization Skills: Proficient in prioritizing projects based on data, business initiatives, and other relevant factors
- Strong Communication: Communicate effectively with stakeholders at all levels, tailoring messages appropriately
- Strategic Thinking: Develop long-term strategies aligned with organizational goals
- Results Orientation: Deliver results within tight timelines and maintain high standards of excellence
- Problem-Solving: Identify security issues and develop effective solutions
- Technical Proficiency: Expert understanding of cybersecurity principles and technologies
- Resilience and Ethical Conduct: Remain calm under pressure, uphold high ethical standards
- Continuous Learning: Commitment to staying updated on cybersecurity trends
- Collaboration: Work effectively with internal teams, external partners, and industry peers
QUALIFICATIONS
- 10+ years of experience in information security, with leadership roles in complex environments
- Proven track record of building and executing world class InfoSec programs
- Bachelor’s degree in computer science, information security, or related field (Master’s preferred)
- Preference for any of the following certificates: CISA, CISSP, CISM, OSWE, OSEP, CCSP
WHAT WE OFFER
- Competitive compensation and bonus
- Flexible time off
- Full medical, dental and vision coverage
- 401k matching
- PeopleFirst Culture
- Events and activities both team-based and company-wide that inspire, educate, and cultivate
JOB EXPECTATIONS
- 3+ days in office per week
ABOUT ALPINE INVESTORS
Alpine Investors (“Alpine”) is a San Francisco, New York City, and Salt Lake City-based private equity firm that is completely reimagining the private equity space. With $16B in assets under management across nine flagship funds and an established track record of strong performance (most recent fund of $4.5B), Alpine continues to demonstrate that pursuing and investing in passionate individuals is the key driver in building enduring companies and delivering market-leading returns.
Alpine is proud to be recognized as a UNPRI certified business, B-Corporation organization, Great Place to Work™, and Inc. Top Founder Friendly firm. The Alpine team believes in hiring for attributes over experience and our team includes 150+ professionals with diverse investing, operations, management, and finance backgrounds. Learn more by visiting our website.
DIVERSITY, EQUITY, & INCLUSION AT ALPINE
At Alpine, we believe a focus on diversity, equity, and inclusion (“DEI”) is integral to hiring exceptional people and creating enduring businesses. To inspire growth at our firm and throughout our portfolio, we strive to create an organization where every individual is celebrated, heard, valued, and empowered to reach their full potential. These beliefs and actions are true to Alpine’s PeopleFirst philosophy, which is rooted in how we invest, hire, and show up day in and day out.
We will continuously look for ways to improve and evolve in our ever-changing world and we are committed to ensuring Alpine is one of the best places to work for all by creating diverse teams, strengthening our culture of inclusion, and giving everyone an equitable opportunity to succeed. To learn more about our DEI work, please read our Force For Good Report.
COMPENSATION
The annualized base pay range for this role is expected to be between $250,000-300,000. Actual base pay could vary based on factors including but not limited to experience, subject matter expertise, and the applicant’s skill set. The base pay is just one component of the total compensation package for employees. Other rewards may include an annual cash bonus and a comprehensive benefits package.
Alpine Investors is proud to be an Equal Opportunity and Affirmative Action Employer. We evaluate qualified applicants without regard to race, color, religion (including religious dress and grooming practices), sex (including pregnancy, childbirth and related medical conditions, breastfeeding, and conditions related to breastfeeding), gender, gender identity, gender expression, national origin, ancestry, age (40 or over), physical or medical disability, medical condition, marital status, registered domestic partner status, sexual orientation, genetic information, military and/or veteran status, or any other basis prohibited by applicable state or federal law.
As an equal opportunity employer, we offer competitive compensation packages, robust benefits and professional growth opportunities aimed at helping to improve our employees' lives and careers.
Tags: Application security AWS Azure CCSP CISA CISM CISSP Cloud Compliance Computer Science Finance Firewalls GDPR Governance HIPAA Incident response Intrusion detection KPIs Monitoring OSWE PCI DSS Pentesting Risk assessment SOC Strategy
Perks/benefits: Career development Competitive pay Conferences Equity Flex vacation Health care Salary bonus Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs