Information Security Specialist (Remote Nationwide)

Answerlab San Francisco , CA 94118

Posted 4 days ago


Facebook, Google, Cisco, FedEx, Amazon, American Express, PayPal, Mazda, Walmart, Honda, Genentech. . . all of these companies rely on AnswerLab's research to support key business and product decisions. We are a growing leader in a rapidly-growing industry and we're looking for a full-time Information Security Specialist.

Job Purpose

The Information Security Specialist is responsible for the day-to-day operation, maintenance, and monitoring of the overall Governance, Risk and Compliance Information Security program at AnswerLab.

Job Responsibilities

  • Act as subject matter expert and as the point of contact for external parties (clients, auditors, consultants, study participants) on all things related to information security, governance and compliance.

  • Lead all efforts to obtain and maintain data security compliance certification and reporting, including but not limited to ISO 27001, SOC 2, GDPR, CCPA, etc.

  • Complete client requested data security questionnaires, review data security contracts, and attend calls with clients as needed.

  • Conduct and/or support routine vulnerability, security configuration, and/or penetration testing assessments, and manage the resulting findings.

  • Monitor networks, systems, and applications for suspicious behavior, attacks, and security breaches.

  • Collaborate with internal teams, clients, partners, and study participants on incident response and Business Continuity & Disaster Recovery Plan (BC/DR).

  • Identify opportunities for implementing additional technology controls to improve information security.

  • Maintain and updated as needed all information security policies and procedure documentation (e.g., Information Security Management System).

  • Oversee information security training and phishing awareness/testing program.

  • Oversee Security projects in alignment with organization goals.

  • Stay current on information security best practices and new regulations and make recommendations as needed to IT management.

  • Maintain and report key security metrics.

  • Communicate overall compliance posture and information security risk factors to executive management team.

Key Relationships

  • Reports to the Director of IT & Operations

  • Works closely with employees, clients, vendors, and study participants

  • This job has no supervisory responsibilities

Knowledge, Skills and Experience

  • We understand that outstanding candidates can come from a variety of backgrounds. While specific experience is important, we are ultimately looking for candidates who have the personal characteristics to thrive in a growing client-focused business. The ideal candidate will likely meet many or most of the job criteria listed below.

  • Minimum two years of experience in information security, governance or compliance, or other information security-related positions.

  • CISA, CISM, CompTIA Security+ preferred, but not required.

  • Proficient with Windows/Mac hardware, Windows/Mac OS, networks, phone systems, cyber security, active directory, mobile devices (Apple, Android), Office 365, web conferencing services, and other related hardware and software platforms.

  • Understanding of network security concepts (TCP/IP protocol, firewalls, vLAN segmentation, IDS/IPS, common ports and protocols).

  • Experience with SIEM Tools and Endpoint Security Platforms a plus

  • Ability to work in a fast-paced environment that requires time management, task prioritization, and ability to identify problems and work toward solutions.

  • Excellent verbal and written communication skills, including the ability to produce coherent and organized documentation.

  • Track record of operating independently, being detail-oriented, and delivering results in a highly organized manner.

  • Must be available to be on-call for infrequent after-hours emergencies.

  • A healthy sense of humor and a fun personality

  • Must be able to lift 50 lbs.

  • Travel required up to 10%.

In addition to expertly meeting the requirements outlined above, your success will be measured on our eight Core Values:

Core Values:

  • Build trust

  • Provide amazing service

  • Support and Encourage Inclusivity

  • Jump in to help others

  • Handle change with flexibility

  • Innovate our products and processes

  • Figure it out and get it done

  • Make AnswerLab a great place to work

Physical Requirements

  • Overtime may be required to meet project deadlines.

  • Sitting for extended periods of time.

  • Dexterity of hands and fingers to operate a computer keyboard, mouse, and other devices and objects.

Note: This job description is subject to change at any time.

No staffing/recruiting agencies please.

We are interested in every qualified candidate who is eligible to work in the United States. However, we are not able to sponsor visas.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Head Of Information Security


Posted 3 days ago

VIEW JOBS 2/16/2020 12:00:00 AM 2020-05-16T00:00 Checkr's mission is to build a fairer future by improving the understanding of the past. Since graduating Y-Combinator in 2014, Checkr's product has shifted the on-demand economy and has continued to scale into serving enterprise companies across various industries. As a company that provides modern and compliant background checks for global enterprises and startups, Checkr knows first hand how difficult it may be for individuals with prior criminal history to find employment and we want to help provide fair chances for the formerly convicted. A career with Checkr provides the opportunity to make an impact on the professional lives of millions of people and we encourage all qualified individuals to apply for our roles. Checkr is looking for a Head of Information Security to help develop and mature information security strategic initiatives and operational capabilities. In this role, you'll work closely with the Chief Trust & Security Officer to set strategy and drive execution of infrastructure security, product security and security operations. This role is very cross-functional across different Trust & Security areas in addition to across different teams to include Product, Engineering, Ops, Revenue, CS, Finance, Legal and the executive team. You will also contribute to protecting Checkr and the people who trust us with their information and safety. This work directly impacts our mission in creating a fairer future - come help us change the world! What a typical week may look like at Checkr: * Drive detection, response, investigation, and remediation of security vulnerabilities. * Collaborate with internal partners to understand security risks and suggest effective options to reduce or remediate risks. * Consult and advise on security architecture, authentication, configurations, policies and processes. * Optimize management, configuration, and design of existing information security systems, infrastructure and process. * Evaluate and implement new security technology and tools to support and enable a growing organization with evolving needs. * Prioritize resources, programs, projects, goals, and tasks. * Manage, develop and grow a high performing team. What we value in a Head of Information Security: * 12+ years of relevant leadership and practical experience in information security (infrastructure, product/application, operations) * Forward-thinking strategist with proven success in translating strategy to tactical plans with high-quality execution and delivery * Experience with modern cloud-based infrastructure and SaaS/PaaS applications/tools * Ability to manage and motivate a high performing distributed team * Strong people skills to build collaborative relationships * Embraces the responsibility that information security is critical to protecting critical data and business/brand trust Brownie Points: * Proven technical expertise in one or more information security area (application security, infrastructure security, security operations) * Experience protecting highly sensitive data or content against evolving and emerging threats * Exposure and understanding of trust programs/framework requirements and controls (SOC2, CCPA, GDPR, CSA CSTAR, ISO 27001, 27017, 27018, 27701, 22301, FedRAMP, NIST 800-53). * Worked in a fast paced startup environment What you get: * A fast-paced and collaborative environment where we leverage the latest technology * Hands-on coaching and professional development * Competitive compensation and opportunity for advancement * 100% medical, dental and vision coverage * Unlimited PTO policy * Gym membership, transportation reimbursements * Catered lunch, dinner, and snacks Equal Employment Opportunities at Checkr Checkr is committed to hiring talented and qualified individuals with diverse backgrounds for all of its tech, non-tech, and leadership roles. Checkr believes that the gathering and celebration of unique backgrounds, qualities, and cultures enriches the workplace. Checkr also welcomes the opportunity to consider qualified applicants with prior arrest or conviction records. Checkr's commitment to diversity extends to hiring talented individuals in spite of a prior criminal history in accordance with local, state, and/or federal laws, including the San Francisco's Fair Chance Ordinance. Checkr San Francisco CA

Information Security Specialist (Remote Nationwide)