As Director of Security, your overall responsibility is protect Evernote's 200 million
You will be responsible for managing and directing the security team, executing the security program, and evolving it to adapt to ongoing modern threats and industry expectations. This is a superb opportunity for a security professional to step into a role where they own their own program.
Are you an Evernote user? Join us and secure the cloud you already use. For a look at what we've done so far, please see: https://evernote.com/security/
What you'll do:
You will be responsible for the security program at Evernote and work with senior security team members to design security controls that protect customer data.
You will be the voice of security to our customers and our employees.
Lead our security vendor relationships
You will handle the security team's yearly budget
Support our business sales team by answering security questions
Perform our yearly PCI DSS self-assessment
Draft and formalize policies when needed
What you've done:
You ran a security team for at least 4 years
Worked in a security related role for at least 8 years
You have successfully led highly complex technology projects to completion
Performed gap assessments against industry control frameworks
Secured data in a cloud environment
Who you are:
A highly organized and a natural problem-solver
An excellent verbal and written communication skills
You are calm and inventive in stressful incident response situations
You like interacting with people across various teams within the company
You have a deep understanding of web services architecture and commonly employed technologies to protect it
You understand threat modeling and how to evaluate risk