Head Of Information Security

Calendly Atlanta , GA 30301

Posted 1 week ago

What is Calendly?

Calendly takes the work out of scheduling so our customers have more time to work on what's really important. Our software is used by millions of people worldwide-with hundreds more signing up every day. To maintain this exciting growth, we're looking for top talent to join our team and help shape the future of our product.

Why join Calendly's Finance & Operations team?

Calendly is looking for a Head of Information Security to join our fast growing team. This role will report to the Head of Finance & Operations and work alongside key business leaders to oversee all aspects of risk management, security policies, and security issues related to IT infrastructure.

Area of focus include: Enterprise Compliance, Business Continuity, Enterprise Risk Management, and Information Security. This role will work with various locations and departments to improve physical and cloud-based security and drive a holistic security roadmap at scale according to HITRUST, GLBA, and HIPAA frameworks.

What are some of the high impact opportunities you'll tackle?

  • Develop, manage and set the vision for the Information Security Program

  • Design the strategy and architecture for security programs that include: Audit and Compliance functions, Risk Governance, Security Policies and Procedures, Security Awareness Training, Security Information and Event Management, Incident Response Management and Business Continuity Processes

  • Develop an end-to-end understanding of all Calendly systems, tools and processes to identify areas of risk and exposure and a roadmap to remedy them

  • Ensure security architecture deliverables reflect and support business, technical, operational, and compliance objectives

  • Build out the Security function at Calendly to keep pace with the growth acceleration and industry demands

  • Develop and maintain detailed Security Architecture Plans and Designs

  • Review Threat and Vulnerability reports and create detailed Action Plans to address risks

  • Maintain awareness of IT/ Security industry trends, evaluate new solutions and techniques, as remain aware of emerging threats

  • Create Security Standards for Hardened Server, Workstations, and Network Components

  • Promote awareness of Information Security Best Practices and adequate representation across lines of business

  • Prioritize and delegate Risk Assessment activities and ensure completion

  • Oversee newly implemented technologies and coordinate internal/external audits

  • Ensure compliance of the Information Security and Risk Management programs with all Regulatory, Contractual, Association, and Client requirements

  • Lead compliance efforts consisting of HIPAA, HITRUST, GLBA, SSAE 18 SOC 1 and 2 reporting, client audit response (For IT, Security, and related items), PCI, and other compliance requirements

This opportunity is for you if you have/are:

  • Bachelor's degree in related field at a minimum and a master's degree in related field highly desirable

  • 10+ years of Progressive Experience in Managing Security Department Staffing, Budgets and Invoicing, Contractors, Vendors, and Corporate Security Programs and Projects

  • CISSP, CISM, or other equivalent security certification required

  • CRISC, CISA, CISM preferred

  • ITIL Certification preferred

  • Hands-on Technical Experience with Telecommunications and Network, Security Solutions (Firewalls, IDS/ IPS, SIEM, Vulnerability Assessment Tools) Access Control Systems, Cryptography, Physical Security Systems, and Secure SDLC Methodologies

  • Authorized to work lawfully in the United States of America. Calendly does not engage in immigration sponsorship at this time.

Calendly is registered as an employer in many, but not all, states. If you are not located in or able to work from a state where Calendly is registered, you will not be eligible for employment.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Chief Information Security Officer


Posted 4 days ago

VIEW JOBS 9/15/2020 12:00:00 AM 2020-12-14T00:00 Mailchimp is a leading marketing platform for small business. We empower millions of customers around the world to build their brands and grow their companies with a suite of marketing automation, multichannel campaign, CRM, and analytics tools. Mailchimp is seeking a highly experienced CISO to collaborate with leadership across the organization on the successful creation and execution of our company-wide security programs. This function will report to the General Counsel and will work with other company stakeholders to define, drive, and implement Mailchimp's security strategy to protect the business from security threats and cyber-attacks. This position will work closely and cross-functionally with Legal, Finance, IT, Engineering, and other leadership stakeholders to ensure the entire Mailchimp ecosystem is secure from threats. Our leadership team is highly collaborative and supportive of each other, so we are looking for a leader that will excel and thrive in an environment where decisions are made as a group and with candid feedback. The right person is eager to support their peers in a fast-paced, highly dynamic environment while always thinking of creative ways to innovate how Mailchimp operates as an organization. What you'll do here: * Create and implement a strategy for the further development of long-range policies and practices for our company-wide security, including information security policies and practices to secure protected and sensitive data * Work with other parts of the organization to establish long-range corporate policies and protocols related to our company-wide security posture, including policies and procedures that protect the organization's digital assets * Develop and communicate guidelines and controls to mitigate risks and to ensure compliance with legal and contractual requirements, corporate security to safeguard a secure business environment * Stay ahead of the global threat landscape and the technologies used to defend Mailchimp's corporate assets * Track the latest technical security innovations and stay up to date with the latest cyber security technologies * Drive change projects and build new capabilities that support a secure environment * Effectively communicate and educate Mailchimp's employees from all functions on the purpose and vision of our security strategies * Work with the technical security team to provide guidance on internal/external audits as needed * Establish and iterate on system safeguards by directing disaster preparedness development as well as conducting preparedness tests * Advise senior leadership by identifying critical security issues and recommending risk-reduction solutions * Advise other parts of the organization on general security topics, such as overall corporate security and physical security We'd love to hear from you if: * You have a minimum of 10 years of experience in a combination of risk management, information security and information technology fields. At least 7 years of experience in a senior leadership role * You have excellent people leadership skills - providing direction, monitoring performance, motivating staff and building a positive working environment * You have a proven track record of building inclusive and high quality security organizations * You are able to communicate and collaborate with leadership as the subject matter expert in security, while putting threats and incidents into business context * You have significant experience in developing information security policies and procedures, as well as successfully executing programs that meet the objectives of the business * You have experience in dealing with internal / external auditors * You have experience with colocation and cloud services spanning multiple countries Mailchimp is a founder-owned and highly profitable company headquartered in the heart of Atlanta in the historic Ponce City Market, right on the Beltline. Our purpose is to empower the underdog, and our mission is to democratize cutting edge marketing technology for small business. We offer our employees an exceptional workplace, extremely competitive compensation, fully paid benefits (for employees and their families), and generous profit sharing. We hire humble, collaborative, and ambitious people, and give them endless opportunities to grow and succeed. If you'd like to be considered for this position, please apply below. We look forward to meeting you! Mailchimp is an equal opportunity employer, and we value diversity at our company. We don't discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Curious to how hiring has shifted related to COVID-19? Click here to find out more! Mailchimp Atlanta GA

Head Of Information Security