What your day could consist of:
Champions and leads the ISMS program at an enterprise level, including the development and management of policies and proceduresWorks within the cross-functional team members and departments to internally audit and collect evidence for implemented security controlsResponsible for working with Customer Success resources to assist with information security questionnaires and RFI’s for customers, partners and vendorsDevelopment and maintenance of a security and compliance knowledge base, utilized to respond to information security questionnaires and RFI’sPrepares metrics on the effectiveness of the compliance programs, including implementation KPIs for initiativesLeads the ISO 27001 and SOC2 / Type 2 program, working with internal and external auditorsParticipates as a member of the Incident Response Team (IRT) to assist with oversight as it relates to the ISMS and SOC2 programsSchedules and supports third party pen testing, vulnerability monitoring, security audits, and risk assessmentsAudits and regularly evaluates company performance for compliance to information security standardsLeads the operational risk board and maintains the risk registryPerforms additional duties as requiredAssists with the development, rollout and delivery of security awareness trainingWorks with the Procurement team to perform security related risk assessments within the supplier relationship management programWorks with Legal new regulations and participates in discussions regarding new compliance needsWhat is needed:
BS in Computer Science, Information Systems, IT or equivalent experience5+ Years’ experience within an information technology/security role supporting cloud-based solutionsExcellent written and verbal communication skills for effective interaction with team members, customers, partners, and auditorsExperience with ISMS governance models (such as NIST), information security roles, and creating and implementing security controls ISO, ITIL, NIST, PCI, and SOCStrong risk management and auditing experienceExperience with data privacy regulations such as GDPR and Privacy ShieldCertification CISSP, CISA, CISM, CompTIA, GSEC, CEH, or similar certification relating to information security preferredExperience defining, driving, and executing a program vision with clear milestonesCompensation:
$
120,000 -
165,000
(per year salary)
Compensation details listed in this posting reflect the base rate only and do not include bonus, equity, sales incentives or other role specific compensation that the role may be eligible for. ActiveCampaign believes in and is committed to equitable compensation practices. The salary range provided above is a good faith estimate of the pay range determined by the location associated with the job posting. The actual salary depends on a candidate’s skills, experience, and work location.
About ActiveCampaign:
ActiveCampaign is an AI-first, end-to-end marketing platform for people at the heart of the action. It empowers teams to automate their campaigns with AI agents that imagine, activate, and validate–freeing them from step-by-step workflows and unlocking limitless ways to orchestrate their marketing.
With AI, goal-based automation, and 950+ app integrations, agencies, marketers, and owners can build cross-channel campaigns in minutes–fine-tuned with billions of data points to drive real results for their unique business.
ActiveCampaign is the trusted choice to help businesses unlock a new world of boundless opportunities–where ideas become impact and potential turns into real results.
As a global multicultural company, we are proud of our inclusive culture which embraces diverse voices, backgrounds, and perspectives. We don’t just celebrate our differences, we believe our diversity is what empowers our innovation and success. You can find out more about our DEI initiatives
here.
Perks and benefits:
ActiveCampaign is an employee-first culture. We take care of our employees at work and outside of work. You can see more of the details
here, but some of our most popular benefits include:
-Comprehensive health and wellness benefits that includes a High Deductible Health Plan (HDHP) fully covered by ActiveCampaign, complimentary access to telehealth and tele-mental health resources, and a complimentary membership to Calm
-Open paid time off
-Generous 401(k) matching program with immediate vesting
-Quarterly Path Perks with options for commuter and lunch benefits (for those reporting to a Hub), or a remote home office stipend
-Access to professional development resources through LinkedIn Learning
-After five years of service, you’ll be eligible for a four-week paid sabbatical leave and a sabbatical leave bonus
ActiveCampaign is an equal opportunity employer. We recruit, hire, pay, grow and promote no matter of gender, race, color, sexual orientation, religion, age, protected veteran status, physical and mental abilities, or any other identities protected by law.
Our Employee Resource Groups (ERGs) strive to foster a diverse inclusive environment by supporting each other, building a strong sense of belonging, and creating opportunities for mentorship and professional growth for their members.
