Director of Information Security and IT

Company Description

Thought Industries is a leading enterprise learning platform designed to help organizations deliver exceptional customer, partner, and professional training at scale. Founded in 2014 and headquartered in Boston, the company is focused on driving customer lifetime value and revenue through learning. With committed PE backing from Luminate Capital Partners, this is an exciting opportunity to partner with industry leaders.

Job Description

Role Overview

The Director of Information Security is responsible for establishing and implementing information security strategies, policies, standards, and risk management processes for both our internal operations and SaaS product offerings. This is a full-time position based in our Boston office, with a requirement to work onsite at least three (3) days per week as part of our hybrid work model. This role reports to the Chief Financial Officer.

Key Responsibilities:

Lead our enterprise information security strategy and implementation to create a competitive advantage

Be our customer-facing security expert for both customers and prospects, including completing RFP responses

Develop, implement, and monitor our strategic, comprehensive enterprise information security and risk management program

Complete our SOC2 certification process and other security certifications, audits, and assessments

Lead the identification, reporting, and response to information security incidents, if any.

Responsible for staying abreast of the changing landscape of cybersecurity threats while updating our information security plan as needed

Work directly with the business units to facilitate risk assessment and risk management processes

Partner with business stakeholders across the company to raise awareness of risk management concerns

Assist with the overall business technology planning, providing current knowledge and future vision of technology and systems

Develop metrics for measuring and improving the effectiveness of the overall information security plan and reporting to the executive team

Manage our internal and outsourced IT support function

Qualifications

BS or MS in Computer Science, Engineering, or Information Security

Minimum of 5 years at a rapidly growing SaaS Company

Minimum of 10 years of experience in a combination of risk management, information security, and IT positions

Experience implementing compliance programs addressing regulations, including SOC2, ISO27001, GDPR, CCPA, SAD-Q, PCI, etc.

Industry certification (CCNP-Security, CCNP, CISA, CISSP)

Excellent written and verbal communication skills and a high level of personal integrity

Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams

Experience with customer InfoSec requests and vendor management

Experience with AWS computing and SaaS infrastructure

Ability to prioritize and multitask

Flexible and adaptable in work approach

Additional Information

All your information will be kept confidential according to EEO guidelines.

The salary range for this position is $175,000 to $200,000, with eligibility for a bonus of up to $20,000

Thought Industries does not discriminate in employment opportunities or practices on the basis of race, color, religion, sex, national origin, age, disability, or any other characteristic protected by law. Employment decisions at Thought Industries are based on merit, qualifications, and abilities.