Information security director jobs near me - 213 jobs

Step Up For Students is a state-approved, nonprofit scholarship funding organization that helps administer scholarships for Florida schoolchildren: The donor-funded Florida Tax Credit Scholarship (FTC) Program and the Family Empowerment Scholarship for Educational Options (FES-EO) helps K-12 students attend private schools. The Family Empowerment Scholarship for Students with Unique Abilities (FES-UA) empowers families to personalize the education of their students by directing funds to where they're needed most. The Personalized Education Program (PEP), which is part of FTC, for students who are not enrolled full-time in private or public school. New Worlds Scholarship Accounts supports K-5 public school students who need additional academic support in reading and/or math. The Transportation Stipend to help K-8 students travel to a public school of their choice Public education is rooted in the promise of equal educational opportunity, regardless of income, special needs, or home address. Step Up For Students is a partner of public schools, and these scholarships strengthen public education by offering options to all families so they can choose the learning environment that best meets their children's individual needs. The Opportunity: The Chief People Officer (CPO) plays a critical role in supporting the transformation and growth of Step Up For Students. Reporting directly to the CEO, the CPO will provide strategic leadership across Human Resources, Workforce Planning, Coaching and Culture, and Internal Communications. This role requires a collaborative, forward-thinking leader who can align people strategies with the organization's mission and long-term goals. The CPO will work closely with executive leadership to shape a high-performing, inclusive culture that supports both employee well‑being and organizational success. Responsibilities: Build and operationalize a workforce planning model that aligns headcount, skills, and organizational structure to SUFS' growth strategy. Establish an organization-wide performance and talent review rhythm, including leadership assessment, development planning, and succession visibility. Redesign onboarding and reboarding to accelerate clarity, connection to mission, and understanding of the value chain. Set the Learning and Development strategy and introduce programs that strengthen leadership capability and functional excellence at scale. Elevate employee communications and modernize the intranet experience to improve clarity, transparency, and alignment across a fully remote workforce. Lead and develop HR Operations, Talent Acquisition, L&D, Culture, and Employee Communications teams with clear goals, expectations, and operating standards. Partner with C‑Suite to integrate people strategy into financial planning, systems design, and organizational priorities, including compensation philosophy and job architecture. Advise the CEO and senior leadership team on culture, organizational health, and talent decisions while maintaining high standards for employee relations, compliance, and policy stewardship. Ideal Candidate: Minimum 15 years of leadership experience in talent management, including hiring, onboarding, upskilling, performance tracking, and contractor management. SPHR (Senior Professional in Human Resources) certification required. Proven track record of successfully scaling organizations through periods of rapid growth, with experience leading cultural and operational change. Experience leading through complex, high‑pressure, and challenging organizational scenarios with confidence and effectiveness. Demonstrated strategic leadership capabilities and strong policy development proficiency. Minimum 7 years of experience working within nonprofit organizations, especially those serving diverse socio‑economic populations and individuals with a broad range of abilities. Minimum 7 years of experience in fast‑paced, process‑critical sectors such as large enterprises, banking, payments, or retail is an asset, especially with experience supporting timely and efficient operations. Clear alignment with the mission and values of Step Up For Students. Location: United States Remote, East Coast working hours DRiWaterstone is proud to lead this search on behalf of Step Up For Students. #J-18808-Ljbffr

A leading tech company based in the US is seeking a Senior Incident Response Security Consultant for Google Cloud, Mandiant. You will lead incident response engagements, investigate, and help organizations effectively respond to cyber threats. The ideal candidate possesses extensive experience in incident response and forensics. This is a remote-eligible role with a competitive salary range of $132,000-$194,000 plus benefits. #J-18808-Ljbffr

Clearance: Active Secret Clearance Required Employment Type: Full-time Performance-Based Position Description Nationwide IT Services (NIS) is seeking a seasoned Cybersecurity Architect for a potential opportunity supporting our DOD customer. In this role, you will be instrumental in securing complex systems, conducting risk assessments, designing secure system architectures, and ensuring compliance with DoD cybersecurity policies and frameworks. This is a remote opportunity requiring a proactive, independent leader with deep experience in systems security engineering and architecture.Key Performance Responsibilities Security Architecture & Engineering Design and implement secure enterprise architectures aligned with DoD RMF (Risk Management Framework) and NIST standards. Develop architecture artifacts (e.g., DoDAF, diagrams, threat models) to support system development life cycles (SDLC). Cybersecurity Compliance & Risk Management Lead the development and assessment of cybersecurity strategies and technical solutions in alignment with DSCA's security objectives. Ensure system compliance with IASAE Level II frameworks and DoD regulations. Conduct security assessments, gap analyses, and vulnerability mitigation planning. Technical Leadership & Collaboration Serve as the cybersecurity SME, providing guidance to system administrators, engineers, and program leadership. Work collaboratively with stakeholders to integrate security requirements across project lifecycles. Present findings, risks, and recommendations to senior leadership and decision-makers. Documentation & Reporting Author and maintain key security documentation (SSPs, POA&Ms, risk assessments). Provide weekly and monthly security status reports, ensuring traceability and audit readiness. Required Qualifications Experience 10+ years of information technology experience 8+ years in technical engineering (requirement analysis, systems/network administration, cybersecurity, systems engineering) Education Bachelor's degree in information technology or a related field from an accredited institution Certifications IASAE Level II Certification (e.g., CASP+ CE, CISSP, CSSLP) Clearance Active Secret Clearance is required for consideration About Nationwide IT Services NIS is a CVE-verified Service-Disabled Veteran-Owned Small Business specializing in IT and Management Consulting. We focus on delivering mission-critical services to federal clients, leveraging cutting-edge technology and industry best practices.Why Join NIS? Competitive compensation Remote flexibility Medical, Dental, and Vision Insurance 401(k) with Employer Match Generous PTO, Holidays, and Sick Leave Education Reimbursement & Professional Development Pet Insurance & Employee Assistance Program Equal Employment Opportunity Nationwide IT Services, Inc. provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, national origin, sexual orientation, gender identity, disability, or protected veteran status.

An education-focused organization is looking for a Senior Director for IT Product Management and Engineering to oversee enterprise applications like CRM and ERP. The successful candidate will have over 10 years of experience in application management and 5 years leading teams. Responsibilities include strategy development, ensuring alignment with business goals, and managing a high-performing team. The position is remote and offers a competitive salary range of $199,000 to $209,000 based on qualifications and experience. #J-18808-Ljbffr

Within our Unilin Infrastructure team, we are looking for an Information Security Engineer with strong technical expertise, entrepreneurship and a passion for applying innovative technology to strengthen our Unilin Group's cybersecurity posture. You will be part of the Unilin Information Security team, part of the global Mohawk cybersecurity organization, giving you exposure to international operations and standards. You will be working with leading security platforms andwill have a wide variety of responsibilities including incident management, vulnerability management, security assessments, awareness initiatives and several security projects. As Information security engineer, you will: Enhance and maintain cybersecurity operations processes, identifying gaps, analyzing trends, and recommending improvements to strengthen detection, response, and prevention capabilities. Support incident management activities by assisting with investigations, coordinating mitigation efforts with the MDR partner, and ensuring that procedures are followed correctly to minimize business impact. Maintain strong technical expertise in key platforms used across the environment, such as Palo Alto Cortex XDR, SIEM, and Tanium. Contribute to the vulnerability management programme, including scanning, prioritization, and coordination of remediation efforts with IT and OT teams. Support cybersecurity assessments, assisting with internal vulnerability assessments, penetration testing, and cyber exercises. Contribute to cybersecurity awareness and training initiatives through the KnowBe4 platform, helping to strengthen the organization's overall security culture. Lead or support cybersecurity projects that enhance the overall security posture of the Unilin Group Who are you? Bachelor's or Master's degree in IT, Computer Science, Engineering, or equivalent practical experience. At least 5 years of experience in cybersecurity operations, system administration, or incident response. Proven expertise in network and endpoint security and threat analysis. Experience with tools such as Cortex XDR, Tanium, or Prisma is an advantage. Strong analytical skills with a solution-oriented, hands-on mindset. Independent and self-motivated, able to manage tasks and projects autonomously. Proficient in English and Dutch; knowledge of French is a plus. What can you expect? A competitive remuneration package. An extensive leave system and a flexible work schedule with the option of home working. Luncheon vouchers, hospitalisation and group insurance. Possibility of bike leasing. We invest in your development and we believe in lifelong learning. In our state-of-the-art training centre The Dive you are bound to find training courses that will help you grow. Countless possibilities to build your career. An employer with a transparent sustainability strategy (for our planet, customers and employees). In different locations we have a company restaurant with a varied menu. Benefit from attractive discounts on our products. Child care is an option during a number of school holidays. Make the most of discounts at a number of partners through our Benefits at Work platform. You will often find us at sporting events. You and your family can participate for free. In short, you'll be working for a Top Employer! Who are we? Unilin is a global reference in interior design and construction with a strong focus on sustainability and innovation. Our floors, panels, insulation materials, and technologies can be found in the homes and workplaces of millions of people and public spaces around the world. Our brands Quick-Step, Pergo, and Moduleo probably ring a bell. Worldwide, around 7,900 employees work every day to push boundaries and innovate. Want to know more about our story? Be sure to check out our website. #J-18808-Ljbffr

A well-respected law firm in Washington, DC is seeking an experienced Information Security Engineer to enhance its security operations. This role offers the flexibility to work entirely remote or on-site. The ideal candidate will have a strong background in information security, excellent communication skills, and the ability to collaborate remotely. Competitive salary range is $122,000 to $160,000 annually, with additional benefits available. #J-18808-Ljbffr

As Director of Information Security at Moov you will be responsible for the comprehensive enterprise-wide information security policy, strategy, architecture, operations, and capability enhancements of Moov and our platform. This position collaborates with the senior leadership team on security strategy, capability enhancements, and the development of enterprise security awareness and accountability. You will: Key Responsibilities: Develop, implement, and maintain information security policies, practices, and operations. Oversee incident evaluation and response, ensuring swift and effective handling. Manage corporate information security risk and regulatory architecture and status reporting efforts. Create and roll out audit and compliance programs. Implement technical compliance solutions and support for security awareness and training programs to ensure compliance. Collaborate with cross-functional teams to maintain a high standard of cybersecurity posture and response. Build and operate a security and compliance program for money movement regulations, aligning with information security policies and standards. Foster a security-conscious culture and ensure the platform's security. Leadership and Strategy: Execute a plan to achieve and maintain industry compliance for SOC 1, SOC 2, PCI, NACHA, FedRAMP, and other compliance programs. Research, educate, and recommend technical solutions to support compliance efforts. Develop, implement, and manage a comprehensive organization-wide information security and risk management program. Deliver education on compliance with security policies. Conduct security risk assessments and manage risk management processes. Ensure compliance with relevant laws, regulations, and policies in Moov's information security practices. Lead the information security team that is protecting Moov. Recruit, motivate, mentor, and lead the best security talent. You have: Bachelor's degree in Computer Science, Engineering, Information Systems, Cyber Security, Business, or a related academic discipline. 7-10+ years of relevant experience or an equivalent combination of education and experience. Strong knowledge of regulatory requirements and information security management frameworks, including SOC 1, SOC 2, ISO/IEC 27001, ITIL, SOX, PCI, FedRamp, and NIST. Ability to work in a fast-paced environment. Knowledge of payment systems, fintech, or online banking. Certification in CISSP, CISM, CRISC, CISA, CFE, or similar is highly recommended. Experience with banking regulations. Knowledge of OSS tools and active participation in OSS community. Experience working with remote-only teams. Experience with mid-size organizations and startups. Our company: Moov is a 100% remote company with people from more than 26 states. We're backed by a16z and other respected investors. We won Visa's global Everywhere Initiative and our community of builders grows larger every day. We're committed to building a team that represents a variety of backgrounds, perspectives, and skills and we embrace diversity, creativity, and equal opportunity. Our people: Our customers come from all walks of life and so do we. We hire great people from a variety of backgrounds, not just because it's the right thing to do, but because it makes our company stronger. We have mountain bikers, skiers/boarders, runners, video gamers, musicians, movie buffs, weight lifters, and about every other type of person in between. We enjoy solving problems and tackling challenges with creativity. If we don't know the answer, we revel in the hunt to find it. We like helping people and choose to give first. We're patient, open, and honest. If you share our values and enthusiasm for making the complex simple and delightful, you'll find a home at Moov. Benefits include: Competitive base salary + employee stock options w/early exercise opportunity 100% remote. We make remote-work work. We match what you contribute to your 401(k) up to 5% of your salary Generous parental leave Medical Ins: Health Savings Account (HSA) option w/employer contribution EAP and other wellness resources Unlimited PTO+ generous paid holiday schedule Professional Development Budget, we have a culture that encourages and promotes professional growth and development Home office stipend Culture of people helping people who give first, celebrate wins together and embrace autonomy, transparency, and trust The opportunity to join an experienced and ambitious team passionate about solving customers' needs and who love what they do Partner with a community of 3000+ developers around the world, helping them focus on possibilities vs payments Employee referral incentive Salary range: $220k - $232k based on experience, geography, and other key factors Advice: If you're nervous about not meeting every qualification above, apply anyway. Moov is all about pushing boundaries-ours, yours, and the industry's-so we look for curious people willing to experiment and grow. While we can't teach curiosity and compassion, we can teach some technical skills. Of course, we can't guarantee anything, but as Michael Scott says,“You miss 100% of the shots you don't take!” (Or was that Wayne Gretzsky?) One more thing: Don't go iron your clothes for your interview (do people still own irons?). We're all pretty casual here, so you can wear whatever you are most comfortable in. Okay-last thing: When you meet with us, have some concrete, tangible examples of when you've added value, improved something, created something, or done some fantastic, customer-centric work. We also want to learn about you as a person. If you want to know what it's like working at Moov, check out stories from our employees. PS: Share our job roles with others! Wouldn't it be nice to make new friends and bring over old friends? We think so. Moov Financial is a participant of E-Verify. All potential employees and employees are bound by the guidelines in the MOU and the rules and responsibilities. For more or up to date information on E-verify, go to ********************** and click on E-verify.

We're seeking an experienced Director of Information Security to join our dynamic team and help drive our growth. In this role, your job will be to coordinate people and processes to instill a “security first” mindset for information management, systems development, acceptable use of these systems, staff awareness, and oversight of our vendors and partners. This security professional will lead the management of risk and compliance of intellectual property, including day-to-day network and cyber tool monitoring, oversight, and ongoing security testing. The individual performing this role will enforce policies and procedures that ensure compliance with state, federal, and industry standards and requirements, ensuring our customers' and company's data are protected. As the Director of Information Security, you will implement a security-readiness plan and provide guidance on how to quickly and effectively respond to any and all security incidents. In addition, this role will be instrumental in implementing controls and monitoring capabilities that provide visibility into the organization's security posture. At RxVantage we transform how medical practices engage with life sciences resources and expertise to improve patient care. Our platform intelligently connects healthcare providers with the precise life sciences experts that they need, when they need them. As a result, medical practices stay on the cutting edge of patient care without disrupting workflows. Trusted by more than tens of thousands of healthcare practitioners and all major life sciences companies, RxVantage has powered millions of educational exchanges between healthcare teams and life sciences companies. What you'll be doing: Creating and implementing a security roadmap based on current and ongoing assessments Ensuring policies are developed and maintained from both a business & technical perspective for the application, data, and security needs of the organization Working with Legal to ensure agreements are congruent with policies Overseeing the GRC (Governance Risk and Compliance) process Ensuring compliance with industry laws and regulations for data security and privacy to include CCPR, 21 CFR Part 11, SOC2, NIST SP800-53 Monitoring the Identity and Access Management Framework Benefits: Competitive Salary 100% Company-Paid Premiums for Employee's Medical Health (HDHP 4500), Vision, and Dental Plans + $4,400 company sponsored contribution into an HSA Short-term and Long-term Disability Life Insurance 401k Matching Work from Anywhere within the US Flexible PTO 100% Paid Parental Leave Post-Parental Leave Program - $5k stipend to assist with expenses, 4 week 100% paid “Ease-Back” return to work transition period Charitable donation matching Location: Our “Work from Anywhere” philosophy is aimed at making sure that we recruit a diverse range of thought leadership to ensure that our technology is better able to serve local health care providers. Our goal is to hire the country's top talent and allow them to create an environment within the U.S. where they can do their best work. About Our Organization: At RxVantage, we're a small company with a big mission: to connect healthcare providers with the right life science experts and resources they need, exactly when they need them, to improve patient care. We've built a software platform that's changing the way providers learn about the latest medical advancements and technologies. Every year, our platform powers over 1 million educational exchanges between medical practices and life science companies, making it easier for them to stay informed and provide better care. We have a proven product, a strong mission, and a passionate team. Now, we're looking for talented people to help us grow even more. If you're driven, eager to make an impact, and ready to be part of something meaningful, we want to hear from you! --- RxVantage is an equal opportunity employer and dedicated to ensuring that we represent the local communities where our health and wellbeing providers serve as pillars of support to our family, friends, and neighbors. Our representation within these communities allows us to embody a diverse set of backgrounds, experiences, abilities and perspectives; and provide an inclusive environment for our team to feel empowered to be their authentic selves, without fear of harassment or discrimination.

Information Technology at Procter & Gamble is where business, innovation and technology integrate to build a competitive advantage for P&G. Our mission is clear -- we deliver IT to help P&G win with the over 5 billion consumers we serve worldwide. Our IT professionals are diverse business leaders who apply IT expertise to deliver innovative, tech-focused business models and capabilities for our 65 iconic, trusted brands. From Day 1, you'll be trusted to dive right in, take the lead, use your initiative, and build billion-dollar brands that help make everyday activities easier and make the world a better place! Our company offers purposeful work that will take your career places you never envisioned, in creative workspaces where innovation thrives and where your technical expertise is recognized and rewarded. The Opportunity P&G is seeking a Governance, Risk, and Compliance Director passionate about safeguarding data, enabling business through smart risk management, and shaping the future of cybersecurity. The IT Governance, Risk, and Compliance (GRC) Organization at Procter & Gamble is responsible for risk identification, assessment, and remediation across the IT landscape, as well as driving automated governance and compliance breakthroughs. As the GRC expert, you'll play a critical role in maturing and maintaining the security risk and compliance posture of our organization. You will lead initiatives that align our security program with business goals, ensure regulatory and policy compliance, and creatively solve problems to manage risk for the company. Responsibilities: Governance: Maintain and evolve the information security policy framework and controls aligned with industry best practices (e.g., NIST, ISO 27001, CIS). Establish and track metrics to measure policy adherence and program maturity. Drive internal alignment on security roles, responsibilities, and expectations. Risk Management: Manage the enterprise risk management process including risk identification, analysis, treatment planning, and reporting. Conduct security risk assessments for internal systems, projects, vendors, and business processes. Facilitate risk-based decision-making at all levels of the organization. Compliance: Ensure ongoing compliance with applicable regulations and frameworks (e.g., GDPR, HIPAA, CCPA, SOX). Maintain a library of evidence and documentation to support audit and regulatory needs. Monitor the effectiveness of IT controls and identify gaps in compliance. Analyze control measurements for negative trends and reoccurrence frequency. Collaborate with internal/external auditors on compliance audits, audit findings, and issue remediation Awareness & Enablement: Contribute to the continuous improvement of the risk and compliance mindset across P&G. Build IT risk awareness by providing support and training to others. Collaborate cross-functionally with IT, Legal, Privacy, and Business Operations teams. Stay up to date with how current events, security focus areas, and the regulatory environment may impact P&G's compliance processes Estimated Percent of Time Spent on Work 25% - Risk identification, analysis, and assessment 40% - Plan and drive enterprise-wide initiatives to reduce risk and improve compliance across the organization 25% - Assess and improve the effectiveness of IT controls and compliance across the enterprise 10% - Collaboration with internal/external auditors, driving a risk-aware compliance mindset Job Qualifications Required: Bachelor's degree in Computer Science, Computer Systems Engineering, Cybersecurity, Industrial Engineering, Business Management Information Systems, Software Development, or related field Prior hands on experience working in a security-focused role, such as Information Security Analyst, SOC Analyst, Security Engineer, etc. 8+ years of experience in Governance, Risk, and Compliance with a focus on Information Security In-depth knowledge of major security frameworks (e.g., NIST CSF, ISO 27001, SOC 2). Experience conducting risk assessments, audits, and control testing. Strong understanding of regulatory compliance requirements (e.g., GDPR, HIPAA, SOX, PCI DSS). Proven ability to write policies, manage documentation, and communicate clearly to both technical and non-technical stakeholders. Ability to influence and build relationships with business unit stakeholders, external service providers, and architecture teams. The ability to work independently, collaborate, and learn quickly. English fluency (speak, write, and read) Preferred Skills: Certified in CISSP, ISACA CRISC, CGEIT, CISA, or similar Pay Range: $160,000 - $220,000 Compensation for roles at P&G varies depending on a wide array of equal opportunity factors including but not limited to the specific office location, role, degree/credentials, relevant skills, and level of experience. At P&G compensation decisions are dependent on the facts and circumstances of each case. Total rewards at P&G include salary + bonus (if applicable) + benefits. Your recruiter may be able to share more about our total rewards offerings and the specific salary range for the relevant location(s) during the hiring process. Our company is committed to providing equal opportunities in employment. We value diversity and do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Immigration Sponsorship is not available for this role. For more information regarding who is eligible for hire at P&G along with other work authorization FAQ's, please click HERE. P&G participates in e-verify as required by law. Qualified individuals will not be disadvantaged based on being unemployed. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. Job Schedule Full time Job Number R000136880 Job Segmentation Experienced Professionals Starting Pay / Salary Range $160,000.00 - $220,000.00 / year

The Role Optery is seeking a hands-on, entrepreneurial CISO to lead and extend our security program end-to-end. This is a hands-on builder role for someone who not only sets the strategy, but also executes the plan, manages controls, reviews data, and interacts directly with employees, customers and auditors. You will partner closely with company leadership to advance our security, privacy, compliance, and controls programs. Optery's security program is already well-established, having successfully completed its SOC 2 security audits every year since 2022 through to today. You will be responsible for policies, risk, security operations, third-party/vendor security, application/product security, incident response, and supporting customer/security questionnaires. You will also be the internal champion for securing the organization and its people, customers, systems, and processes. Key Responsibilities Own Optery's information security strategy, roadmap, and policies, aligned to our industry-leading security and privacy products Lead and extend Optery's security program mapped to common frameworks (SOC 2, ISO 27001, CIS, NIST), appropriate for a high-growth, remote-first company Partner with engineering to embed secure SDLC practices: threat modeling, code scanning, secrets management, access controls, and secure cloud configuration Design and run an incident response program, including playbooks for data handling, data broker interactions, ransomware/social engineering scenarios, and customer notifications Oversee identity and access management across core systems (SaaS, cloud, data, admin apps) following least-privilege principles Lead vendor and third-party security reviews, especially for data- or privacy-impacting services Partner with GTM, finance, ops, and sales to complete security questionnaires, DPAs, and customer diligence to unblock deals Work with product/legal to ensure our data flows and retention/erasure practices align with CCPA, GDPR, and other consumer privacy laws we help our customers exercise Define, track, and report security KPIs/KRIs to leadership and the board Train and evangelize security practices across a distributed team so security is part of onboarding and day-to-day work Qualifications 8+ years in information security, with increasing ownership across GRC, security engineering, and/or product/app security Experience building or maturing a security program at a SaaS, data, cybersecurity, or privacy-focused company Practical experience with SOC 2 and/or ISO 27001 (authoring policies, gathering evidence, working with auditors, driving remediation) Strong understanding of cloud security (preferably AWS): networking, IAM, secret management, logging/monitoring Comfortable meeting with customers, prospects, and partners to explain Optery's security posture and win trust Excellent written and verbal communication skills; able to write policies people can actually follow Startup-friendly mindset: willing to prioritize, right-size controls, and make progress quickly Nice to have Experience at a company that handles PII Experience securing distributed/remote teams and mixed contractor/employee environments Background in data protection technologies (DLP, EDR, MDM, SSO, CASB) and how to roll them out in stages Experience supporting enterprise sales cycles by answering security questionnaires Recognized thought leader in security, fluent public speaker, and active participant in public-facing security communities and conferences Location Optery is a fully remote global team. This role is based in the United States and requires working U.S. business hours (Eastern, Central, Mountain, or Pacific). Compensation and Benefits Base Salary: $200,000 - $220,000 Competitive Equity Health, dental, and vision insurance 401(k) with employer match Paid time off Home office stipend Equal Opportunity Optery values diversity and is an equal opportunity employer. We do not discriminate on the basis of race, color, religion, sex (including pregnancy and gender identity), national origin, sexual orientation, marital status, disability, genetic information, age, parental status, military service, or any other non-merit factor.

The Chief of Information Security and Security Officer (CISO) is responsible for providing leadership and operational excellence for developing and supporting security initiatives and policies along with developing strategies to protect sensitive data, managing security risks, investigating and remediating security incidents and promoting security awareness and compliance across the organization. The CISO acts as the primary contact for security-related matters and serves as the organization's HIPAA Security Officer. Job Responsibilities: Leadership & Strategy: Develop and manage a comprehensive information security and risk management program aligned with business objectives and regulatory requirements. Serve as the organization's HIPAA Security Officer and lead all activities related to ensuring the security of protected health information (PHI). Collaborate with executive leadership, legal, compliance, and IT teams to integrate security into all aspects of operations and technology. Serves in a leadership capacity in the execution of the organizations Cyber Incident Response plan, coordinating action, communication, and mitigation efforts in conjunction with Executive Leadership. Keep current with emerging security trends, conduct research and make recommendations for improvements to current processes. Advise, counsel and educate executive and management teams on technology's relative importance and financial impact. Governance, Risk & Compliance: Establish, implement, maintain, and audit information security policies, procedures, and controls in accordance with PathGroup's Compliance Program, federal laws, and industry-standard best practices. Conduct regular risk assessments and security audits to identify vulnerabilities and recommend mitigations. Oversee security incident response planning and investigation of security breaches, including documentation and reporting. Work closely with the Chief Information Officer and Privacy Officer to develop and administer security awareness training for all employees and contractors. Security Operations: Lead strategic security and incident response planning to achieve business goals by prioritizing defense initiatives through the deployment, monitoring, maintenance, development, and upgrading of current and future security tools, technologies, and systems. Ensure regular risk assessments, penetration testing, and remediation efforts are conducted on a regular and timely basis. Monitor and analyze network and system activity for anomalies and trends to prevent and remediate security incidents in a timely manner. Work with IT to implement secure system configurations and DevSecOps practices. Third-Party, Vendor and Client Management: Evaluate third-party vendors and partners for security and compliance posture. Complete all required security assessments from existing or prospective clients. Participate in contract negotiations to ensure appropriate security requirements and data protection terms are in place. Management: Manage the employee hiring process including developing and updating s, developing performance expectations, identifying essential functions and knowledge, skills and abilities required for applicable positions, and selecting and assigning staff. Supervise and manage employee and team performance by coaching, counseling, motivating, and evaluating employees on a continual basis. Implement disciplinary action as needed and in consultation with Human Resources. Coordinate team projects, schedule work assignments, set priorities, and direct the work of subordinate employees. Ensure effective employee relations by sustaining an ethical, non-discriminatory and safe work environment and establishing effective communication lines and methods. Identify and solve employee problems, manage conflict, and respond to grievances as needed. Perform all job responsibilities in alignment with the industry's best security practices and regulatory guidelines to protect confidentiality, integrity, and availability of protected health information and other sensitive company data. Must be familiar with and abide by the Corporate Compliance Program and all Corporate policies, including the Privacy and Security policies. NON-ESSENTIAL FUNCTIONS: Nothing in the job description restricts management's right to assign or reassign duties and responsibilities to this job at any time. Other duties as assigned

DISCLOSURES The specific statements shown in each section of this are not intended to be all-inclusive. They represent typical elements and criteria considered necessary to perform the job successfully. The job's responsibilities/tasks may be modified and/or expanded over time. Company will inform the personnel member when changes in the respective job description are made. ABOUT ENTERPRISE MANAGEMENT SOLUTIONS, LLC Enterprise Management Solutions, LLC (Enterprise) is a full-spectrum administrative and operational management firm headquartered in Baltimore, Maryland. We provide contracted infrastructure support to independently governed organizations in sectors such as behavioral health, primary care, supportive housing, food service, commercial real estate, and nonprofit development. Enterprise does not own or govern the organizations we serve. Instead, we operate as a trusted administrative services provider under formal contractual agreements, offering high-level back-office services that allow our clients to focus on mission execution and program delivery. Our scope of service includes: Comprehensive fiscal systems and multi-entity accounting Human resource infrastructure and staff onboarding Legal compliance and audit readiness Technology integration and IT systems governance Organizational growth planning and fiscal sustainability analysis Federal and state grant compliance, budget monitoring, and reporting Financial and operational performance dashboards CEO- and executive-level strategy support Our goal is to relieve mission-driven companies of administrative burden by overseeing financial and operational systems that allow leadership teams to focus on quality care and innovation. COMPANY WEBSITE: ********************************* COMPANY PHONE NUMBER: ************** HUMAN RESOURCES PHONE NUMBER: ************** ext. 10 POSITION TITLE: Chief Information Security Officer (CISO) ALTERNATE TITLE(S): Chief Cybersecurity Officer (CCSO), Chief Security Officer (CSO - Cybersecurity), Senior Cybersecurity Executive COMPANY: Enterprise Management Solutions, LLC (in support of all customer companies under contract) DIVISION: Technology & Information Security DEPARTMENT: n/a UNIT: n/a BENEFITS PACKAGE: This position is eligible for standard W-2 employee benefits, including but not limited to those outlined in the Company's official benefits package. Eligibility and participation are subject to the terms and conditions of the applicable plans. Full details are provided in the current benefits package documentation. WORK SCHEDULE: Two days per week: Tuesday and Thursday, 8:00 AM - 5:00 PM (daily lunch break from 12:00 PM - 1:00 PM) ACCOUNTABLE TO: Chief Executive Officer (COO, in absence of CEO) ACCOUNTABLE FOR: Oversight of cybersecurity strategy, data protection, regulatory compliance, and the supervision of all information security systems, personnel, and vendors across all affiliated companies. This role is responsible for ensuring uninterrupted cybersecurity operations, incident response readiness, and cross-training protocols to protect critical client and company assets. CLASSIFICATION: W-2 employee; part-time hourly COMPENSATION RANGE: Ranges between $55.00 per hour to $90.00 per hour, and is commensurate with experience, expertise, verified credentials, and available company budget. ANTICIPATED TRAVEL: Up to 10% of the time (interoffice and site-based meetings) WORKPLACE POLICY: This is a 100% in-office role at Baltimore HQ, two days per week. Remote work or telework is prohibited unless explicitly pre-approved in writing by the CEO. SUMMARY OF POSITION RESPONSIBILITIES The Chief Information Security Officer (CISO) serves as the organization's highest-ranking cybersecurity executive, responsible for designing, implementing, and maintaining a resilient information security program that safeguards company and client systems against internal and external threats. The CISO oversees all areas of cybersecurity including policy development, risk management, threat detection, incident response, and compliance with federal and state regulations (HIPAA, HITECH, GDPR, SOC2, PCI-DSS, NIST, and others as applicable). This role also ensures that Enterprise delivers all contracted Information Security, IT Governance, and Cybersecurity Risk Management services to affiliated entities, protecting sensitive healthcare, housing, financial, and client records. The CISO plays a critical role in aligning technology security with enterprise goals, while proactively mitigating risks across all operational areas. SCHEDULED DUTIES AND RESPONSIBILITIES Cybersecurity Strategy & Leadership Develop and execute a company-wide cybersecurity program aligned with business and client requirements. Translate the CEO's strategic vision into measurable, risk-based security initiatives. Conduct long-term security planning, including disaster recovery and business continuity. Risk Management & Regulatory Compliance Ensure strict compliance with HIPAA, HITECH, GDPR, SOC2, PCI-DSS, NIST, and state regulations. Perform enterprise-wide risk assessments and vulnerability scans. Maintain and update incident response, breach notification, and audit readiness protocols. Threat Monitoring & Incident Response Direct the Security Operations Center (SOC) or equivalent vendor-managed services. Oversee intrusion detection, SIEM monitoring, log review, and malware defense. Lead incident response, forensic investigation, and breach communication with executive leadership. Identity, Access, and Data Security Manage identity and access management systems, including MFA and privileged access controls. Oversee endpoint, mobile device, and server security configurations. Ensure encryption, secure backups, and data loss prevention across all platforms. Vendor & Third-Party Oversight Review vendor contracts, security certifications, and compliance attestations. Establish standards for secure integration with external technology providers. Lead vendor risk management and third-party security audits. Internal Policies & Training Develop internal cybersecurity policies, acceptable use guidelines, and SOPs. Deliver quarterly staff training on phishing, ransomware, and cybersecurity awareness. Conduct simulated incident drills and security tabletop exercises. Collaboration & Executive Support Advise the CEO and COO on cybersecurity risks and budget needs. Partner with CFO, HR, and Operations Managers to ensure cross-department compliance. Provide security briefings to the Board of Directors and client executives. UNSCHEDULED DUTIES AND RESPONSIBILITIES Respond to emergent cybersecurity threats or system alerts. Support investigations of insider threats, fraud, or data misuse. Participate in interdepartmental workgroups to integrate new systems securely. Maintain active knowledge of evolving threats, ransomware tactics, and industry best practices. Lead recovery efforts in the event of a cyber-attack or natural disaster affecting IT infrastructure. PHYSICAL DEMANDS Prolonged periods sitting at a desk and working on a computer. Occasional lifting up to 25 pounds. WORKING CONDITIONS Cross-functional collaboration with executives and technical staff. 100% in-office role at Baltimore HQ (two days per week, no remote or hybrid unless CEO approved). Travel up to 10% may be required for audits, client meetings, or incident response. Must be available during scheduled hours with flexibility for emergent needs. COMPETENCIES AND SKILLS Visionary leadership with deep technical and cybersecurity acumen. Expertise in risk management, incident response, and compliance frameworks. Skilled in cloud security (AWS, Azure, Google Cloud), SaaS protection, and on-premises systems. Strong command of cybersecurity frameworks: NIST CSF, ISO 27001, COBIT. Familiarity with healthcare IT and HIPAA/HITECH security requirements. Effective communicator able to brief executives and train staff. Demonstrated ability to lead multidisciplinary teams and manage security vendors. LEVEL OF EDUCATION / TRAINING / QUALIFICATIONS Master's degree in Cybersecurity, Computer Science, or Information Technology (required). Certified Information Systems Security Professional (CISSP) in good standing (required). Additional certifications (CISM, CISA, CCSP, CRISC) strongly preferred. Minimum 8-10 years of progressive cybersecurity leadership experience, with at least 5 years in a senior or CISO role. Experience overseeing security in healthcare, housing, financial, or government environments strongly preferred. Demonstrated track record of regulatory compliance, successful incident response, and enterprise-level security program development.

Introduction KLDiscovery offers a fantastic opportunity for you to use your talents to make a meaningful impact in a fast-paced, growing technology and services organization! KLDiscovery is a global leader in eDiscovery, compliance, and data management solutions, empowering law firms, corporations, and government agencies to tackle their most complex legal and regulatory challenges. We are looking for a Vice President, Chief Information Security Officer to join our team who is passionate about our mission and brings initiative, authenticity, and collaborative spirit to everything they do. If you're fueled by innovation and committed to delivering exceptional results, KLDiscovery is the perfect place to grow your career. Work Status: Remote, work from home opportunity. Is This Role For You? The Vice President, Chief Information Security Officer provides strategic and operational direction to the organization to ensure the attainment of business objectives. Ensure that all revenue and profit goals are met. Revise objectives and policies in response to changes in internal and external conditions. Coordinate operations between divisions and departments. Establish responsibilities and procedures for attaining objectives. Establish strategies and objectives, coordinating with all organizational goals and standards. Responsible for financial performance and attainment of profit goals. A Day in The Life Development of policies and standards aimed at minimizing costs related to acquisition, implementation, and operation of IT systems across business units. This includes the management of vendor relationships and ensuring this is leveraged across business units. Manage and develop key performance indicators to assure customer satisfaction and operational performance; manage problem escalation and communication with senior management and customers where appropriate. Ensure software and hardware license compliance through documented, established process. Coordinate gap analysis to identify training needs for department. Define requirements and ensure compliance for next level of advancement. Direct, coach, and mentor management staff in performance management skills. Build a department that optimizes senior talent, while promoting the growth of junior talent. Performance Management including collecting data on regular basis, organize and create annual reviews, provide regular coaching of individuals. Manage the timeliness of reviews for the department. Provide daily operational direction and oversight in meeting committed service level agreements (SLAs). Maintain and improve operational policies and procedures. Provide quarterly updates to the BoD and Senior Level Management. Travel as necessary for internal needs as well as client requested audits. What You Will Bring To The Role Bachelor's degree in technology-related field or equivalent work experience. 15+ years' experience; Ten to Thirteen years management. This experience should include: Management of production data centers and external customer SLA support Demonstrated success in providing best practice process and support implementation Proven track record and managing teams of 20 or more people Demonstrated knowledge of global telecommunications Demonstrated quality control implementation experience Demonstrated success in change management Extensive experience with the build out, growth, management, and support of high-volume Data Centers Fiscal responsibility, including creating and managing to a budget Demonstrated ability to create a vision for IT Operations focused on IT Service Management and ITIL Demonstrated success in defining, tracking, and communicating internal and business focused metrics Demonstrated success in defining and implementing a global IT shared services model Coaching, developing, and mentoring direct reports and ensure processes are in place to develop the future leaders of the IT organization Skills: Must be able to synthesize large amounts of data/concepts effectively into understandable terms both written and oral Must be capable of communicating with Sr. Level Management both verbally and in written communications Must be adaptive with varied skill sets that can fit into a variety of project situations Must be quick learning and possess a high comfort-level with non-repetitive projects and new challenges Must be quick thinking: ability to listen, grasp concepts and engage during interactive discussions Should be able to work with limited supervision Should have strong organizational and time management skills Should be well rounded with an exceptional work ethic Should be results-oriented with an exceptional ability to be independent, motivated, and proactive Should be customer-focused and possess resilient interpersonal talents and poise to manage change Excellent communication (oral, listening, and writing) skills Strong problem solving, time management and organizational skills Understanding of data center commercial market space General knowledge of applications management processes and methodologies Expert knowledge of system management and process methodologies and practices Strong understanding with practical application of WAN/LAN and internet connectivity and concepts. Driving Career Growth, Benefit Excellence: The KLD Advantage At KLD we invest in employees and their families by placing their wellbeing first. We offer competitive total compensation that includes base pay, bonus potential, inclusive benefits, wellness programs, and perks. We use market and industry data to inform pay decisions while considering geography and labor markets, individual experience, and business needs. Individual compensation will vary, although a reasonable estimate of the current annualized base pay range for this position is $200,000 to $250,000. We offer a high-performance laptop computer, options for wireless headset or external speaker, up to two 24” 2K monitors, and a mobile phone for business use. Generous paid time off, offering various time off options to help employees maintain a work-life balance, such as vacation, paid sick leave, parental leave, paid jury leave, and more! Comprehensive health, dental, vision and supplemental benefits packages that include life insurance, short- and long-term disability, to promote the health of our employees. Remote-friendly, flexible working culture, where you can apply to work from several global locations. A focus on continuous professional development through various training and education reimbursement programs. A diverse and inclusive workplace where we all learn, grow, and achieve the greatest heights…together. A surrounding team of mission-driven individuals who genuinely love what they do. Equity incentives and company bonus programs; that way, we all share in the success of KLDiscovery. Free, fun, interactive and incentivized global wellness program that promotes the wellbeing of our employees plus offers a wide range of perks and discounts! Free Employee Assistance Program (EAP) because we all could use a little help and support every now and then. 401(k) with employer match, to help our employees achieve financial success. KLD supports the communities where our employees live and offers a paid community service day for employees to volunteer with what resonates with them. To keep our furry, 4-legged family members healthy, KLD employees can opt for Pet Insurance. Who We Are KLDiscovery provides technology-enabled services and software to help law firms, corporations, and government agencies solve complex data challenges. With offices in 26 locations across 17 countries, KLDiscovery is a global leader in delivering best-in-class data management, information governance, and eDiscovery solutions to support the litigation, regulatory compliance, and internal investigation needs of clients. Our Nebula Ecosystem provides powerful end-to-end eDiscovery and enterprise-grade information governance. Through its global Ontrack data recovery business, KLDiscovery delivers world-class data recovery, disaster recovery, email extraction and restoration, data destruction, and tape management. We Provide Equal Employment Opportunity At KLDiscovery we believe that inclusion and diversity make us stronger. We are committed to fostering an inclusive environment for all employees that enhances wellbeing and belonging. We welcome and celebrate individuals of all backgrounds, experiences, and perspectives. We do not discriminate on the basis of race, color, religion, gender, pregnancy, gender identity, sexual orientation, national origin, age, disability, genetic information, veteran status, or any other protected status. We are happy to support you with any accommodation request at any stage in our hiring process. Texas PI# A04094801 #LI-TF1 #LI-Remote

Securitize, the leader in tokenizing real-world assets with $3.7B+ AUM (as of May 5, 2025), is bringing the world on-chain through tokenized funds in partnership with top-tier asset managers, such as Apollo, BlackRock, Hamilton Lane, KKR, and others. Securitize, through its subsidiaries, is a SEC-registered broker dealer, digital transfer agent, fund administrator, and operator of a SEC-regulated Alternative Trading System (ATS). Securitize is a global, fully remote team consisting of top talent from the blockchain and financial services industries. Having raised $170M overall to date, we are backed by some of the largest names in finance and technology, including BlackRock, Morgan Stanley, Blockchain Capital, MUFG, Sumitomo Mitsui Trust Bank, Sony Finance, Banco Santander, Coinbase, among others. Securitize has also been recognized as a 2025 Forbes Top 50 Fintech company. Before applying, we encourage you to visit us to learn more: Website | X/Twitter | LinkedIn Role Overview We are looking for a Chief Information Security Officer (CISO) to lead the company's information security, IT operations, and technical compliance functions. This role is strategic and hands-on, combining executive-level ownership of security and compliance with operational responsibility for corporate IT. The CISO will ensure the company meets regulatory, audit, and security obligations while enabling the business to scale safely across regulated entities, funds, and tokenized products. The CISO reports directly to the CEO, with a dotted-line relationship to the CTO / CPO organization, reflecting the strong collaboration required with Product & Engineering. Scope of Responsibilities 1. Corporate IT Operations & Support Own and operate the company's internal IT environment and end-user services across all business units and regulated entities, including: Endpoint lifecycle management (laptops, mobile devices, accessories) IT onboarding and offboarding processes Identity and Access Management (IAM) and RBAC for corporate systems Email, productivity, and collaboration tools Helpdesk and Tier 1 / Tier 2 support operations Software asset management and license compliance Endpoint security tooling (EDR, MDM, antivirus, DLP) Employee security awareness and phishing training IT support for regulatory exams, subpoenas, and information requests 2. Information Security Governance & Risk Management Define and own the company-wide security framework, policies, and risk posture, including: Corporate security policies (acceptable use, access control, incident response, vendor risk, etc.) Vendor and third-party risk management programs Security incident response governance for corporate systems Business continuity and disaster recovery planning (for internal systems) Asset inventory, audit logging, and evidence management Participation in all material security incidents and retrospectives as part of fundamental risk governance 3. Technical Compliance, Audits & Certifications Own security-related compliance and act as the primary executive counterpart for audits and regulators, including: SOC 1 / SOC 2 readiness and ongoing compliance SOX IT controls and coordination with Internal Controls DORA readiness and operational resilience requirements ISO 27001 or similar certifications (as applicable) Regulatory security reporting and remediation management Ownership of audit responses, findings, and corrective action plans 4. Platform Security Oversight (Tokenization & Lifecycle Management Platform) While Product & Engineering owns implementation and operations of platform security, the CISO is responsible for policy, assessment, and external defensibility of the platform's security posture, including: Reviewing and approving security architecture principles for the platform Oversight of secure software development practices (DevSecOps) Coordination and oversight of platform penetration tests Oversight of smart contract audits and third-party security reviews Participation in platform incident response when required Ability to clearly explain, present, and defend platform security controls to: Auditors Regulators Institutional clients and partners 5. Crypto & Tokenization Security Given the company's core business and growing use of crypto assets, the CISO must bring hands-on expertise in digital asset security, including: Private key management models MPC-based custody and signing infrastructures Secure operational processes for crypto asset handling Policy definition for wallets, signing authorities, and access controls Risk assessments related to on-chain activity and smart contracts Oversight of crypto-specific incident response scenarios Experience Must-have Senior leadership experience in Information Security (CISO, VP Security, or equivalent) Proven ownership of audits and certifications (SOC, SOX, ISO, regulatory exams) Strong understanding of cloud security (AWS or equivalent) Direct experience with: Crypto assets Private key management MPC or HSM-based infrastructures Smart contract audits and security reviews Ability to operate credibly with: Regulators Auditors Institutional partners Experience operating in regulated financial environment Nice-to-have Experience in fintech, capital markets, or digital securities Familiarity with SEC-regulated entities and fund structures Experience scaling security orgs in fast-growing companies Why Join Us? Become a part of our rapidly expanding organization and enjoy a supportive and rewarding work environment: Unlimited Paid Time Off (PTO) - Promoting a healthy work-life balance. Equity Grant Opportunities - Share in the success and future growth of the company. Remote Work Flexibility - Work from anywhere while staying connected with a dynamic and collaborative team. Additional Benefits for US employees Comprehensive Insurance Coverage - 100% employer-paid Medical, Dental, and Vision benefits for you and your family. 401(k) Retirement Plan - Secure your financial future with employer-sponsored savings.

Join us as we scale our business by building on our tremendous success around the world. The massive database market is going to double over the next few years and TiDB is a global player positioned as a major disruptor with TiDB Database and Database as a Service offering. TiDB is an open-source, cloud-native, distributed SQL database for elastic scale and real-time analytics. Large and high-growth organizations in markets as varied as financial services, logistics, gaming, e-commerce and software as a service have successfully deployed and expanded their TiDB footprint on mission-critical applications. Our strong open-source community roots (39,500+ stars on GitHub), innovative products and inclusive culture draw passionate and dedicated people to our company. Learn more about TiDB careers and join our team to be at the forefront of innovation and growth. Role Overview: We are seeking a part-time Chief Information Security Officer (CISO) to lead TiDB's global security strategy. This role will be responsible for defining and executing a comprehensive information security, risk management, and compliance program that protects TiDB's products, infrastructure, customers, and employees. As CISO, you will partner closely with product, sales, legal, and executive leadership to ensure security is embedded into everything we do - from the core of TiDB to our SaaS/cloud offerings and enterprise engagements. Responsibilities: Proven experience as a CISO or senior security leader in a high-growth B2B SaaS environment. Strong understanding of cloud security, DevSecOps, zero trust architectures, and modern compliance frameworks. Exceptional communicator with executive presence-comfortable interfacing with CISOs, CIOs, and security decision-makers. Experience supporting GTM motions, including joining sales calls, handling due diligence, and presenting to security-conscious enterprise buyers. Define, implement, and continuously evolve TiDB's global information security strategy and roadmap. Drive adoption of best practices in application security, data security, and infrastructure hardening. Establish and maintain a comprehensive risk management framework aligned with ISO 27001, SOC 2, GDPR, CCPA, and other relevant standards. Work with legal and compliance teams to monitor evolving regulations in key markets. Engage directly with enterprise customers to build trust in TiDB's security practices. Effectively represent the company through thought leadership, including written contributions and participation in public speaking engagements. Qualifications: Proven experience leading security at a global SaaS, cloud infrastructure, or database company. Deep understanding of distributed systems, cloud-native architectures, and DevSecOps practices. Strong knowledge of security frameworks and regulations (ISO 27001, SOC 2, NIST, GDPR, etc.). Demonstrated ability to lead incident response and crisis management. Excellent communication and executive presence; comfortable engaging with boards, regulators, and enterprise customers. Fluent public speaker or participates actively in a public facing security community. Salary: The annual anticipated base salary range for U.S. candidates for this role is USD $100,000 to $140,000K. Four zones are applied with different levels of the pay range. More details of the Geo Differential Pay Policy will be discussed during the HR conversation. The actual individual base pay will depend on various factors such as the complexity and responsibility of the role, work locations, job levels, and relevant experience and skills. This role is also eligible to participate in TiDB's Bonus and Equity Plan, as well as our Sales Compensation Plan if it is a sales role. In order to comply with local legislation and provide greater transparency to candidates, we share base salary ranges on all US job postings regardless of desired hiring location. Please note that actual salaries may vary and fall outside of this range depending on factors such as a candidate's qualifications, geographic location, skills, experience, and competencies. Other benefits include health insurance, flexible vacation time, paid holidays, and parental leave. Salaries for candidates outside the U.S. will vary based on local compensation structures. We encourage people from underrepresented groups to apply. Come advance with us! In keeping with our values, no employee or applicant will face discrimination/harassment based on: race, color, ancestry, national origin, religion, age, gender, marital domestic partner status, sexual orientation, gender identity, disability status, or veteran status. TiDB also strives to prevent other, subtler forms of inappropriate behavior (e.g., stereotyping) from ever gaining a foothold in our organization. Whether blatant or hidden, barriers to success have no place at TiDB.

All JerseySTEM roles are pro-bono (unpaid) positions. JerseySTEM is a mission-driven professional network of pro-bono contributors dedicated to improving access to STEM education and career pathways for underserved middle school girls in New Jersey. Members contribute their professional skills and leverage their networks in service of the organization's gender-equity agenda. Membership is a minimum six-month commitment of approximately six flexible hours per week and includes a $100 refundable deposit, returned after six months of active membership. K-12 educators, retirees, veterans, interns, and students are exempt from the deposit. Overview This is a pro-bono position. JerseySTEM is looking for experienced professionals to commit time and expertise as a long-term engagement in support of our mission to provide STEM education to underrepresented middle school girls. The Chief Information Security Officer (CISO) provides strategic leadership for information security, cybersecurity risk, and data protection across the organization, working collaboratively with Technology, Data, and leadership. This is not a technical or operational role, but a governance and advisory role focused on policy, risk management, and organizational security awareness. Responsibilities Define and lead the JerseySTEM's information security strategy to support and advance the organization's goals . Develop, implement, and maintain policies and procedures aligned with federal regulations appropriate for a nonprofit organization. Identify and assess cybersecurity risks from data, systems, and infrastructure. Work with stakeholders to communicate, manage, and mitigate risks. Partner with the JerseySTEM's TECH team and leadership to ensure security is embedded in systems, tools, and workflows. Establish and oversee JerseySTEM's security awareness and best practices. Develop the tailored training and communication for volunteers and team members. Continuously evaluate and improve defenses against evolving threats, including those driven by generative AI and adversarial ML techniques. Provide tailored guidance to JerseySTEM's data custodians handling sensitive and/or regulated datasets. Ensure compliance with relevant security, privacy, and data protection principles appropriate for a nonprofit organization. Support and champion the JerseySTEM's data classification. Participate in virtual meetings to align on organizational priorities and initiatives. Oversee cybersecurity incident response planning activities; investigate and manage response to security breaches as needed. Qualifications A minimum of ten (10) years of progressive experience in information security, cybersecurity, or risk management leadership roles. Familiarity with the cybersecurity implications of artificial intelligence and machine learning. Strong understanding of security frameworks, controls, and best practices (e.g., risk assessment, access management, data protection). Ability to translate technical security concepts into clear guidance for non-technical stakeholders. Experience working with cross-functional teams in a collaborative environment. Strategic mindset with a hands-on, pragmatic approach. Excellent communication, judgment, and decision-making skills. Comfortable working in a fully remote, volunteer-driven organization. Commitment for 5-6 hours per week Preferred Qualifications An advanced degree is preferred. A retired professional is a plus. Relevant certifications preferred (e.g., CISSP, CISM, CCSP, GIAC). This is a pro-bono volunteer position.

Company Credit Genie is a mobile-first financial wellness platform designed to help individuals take control of their financial future. We leverage artificial intelligence to provide personalized insights and are building a financial ecosystem by offering tools and services that provide instant access to cash, and building credit. Our goal is to empower every customer to achieve long-term financial stability. Founded in 2019 by Ed Harycki, former Swift Capital Founder (acquired by PayPal in 2017). Backed by Khosla Ventures and led by industry pioneers from companies such as; PayPal, Square, and Cash App, we are well positioned to build the future of inclusive finance through cutting-edge technology and customer-centric solutions. Overview As Chief Information Security Officer (CISO), you will be the primary leader responsible for developing and implementing our information security strategy. You'll protect our systems, data, and customer trust by overseeing cybersecurity operations, ensuring compliance with regulatory standards, and mitigating risks in a dynamic fintech environment. This role demands a visionary leader with deep expertise in cybersecurity, preferably in fintech, and a passion for securing innovative financial products. What you'll do Develop and execute a comprehensive cybersecurity strategy to protect our platform, customer data, and intellectual property. Ensure compliance with fintech and data privacy regulations, including GDPR, CCPA, PCI-DSS, and other relevant standards. Oversee the design, implementation, and monitoring of security controls for payment processing, lending platforms, and other financial products. Lead incident response, including managing and mitigating cybersecurity breaches, vulnerabilities, and regulatory inquiries. Collaborate with product, engineering, and compliance teams to embed security-by-design principles into new features and services. Build and maintain a robust security framework for credit and lending operations, ensuring protection against fraud and data breaches. Conduct risk assessments and implement mitigation strategies for emerging threats in the fintech landscape. Manage relationships with external security vendors, auditors, and regulatory bodies. Develop and lead a high-performing security team, fostering a culture of proactive risk management. Support international expansion by aligning security practices with global data protection and financial regulations. Stay ahead of cybersecurity trends, advising the executive team on evolving threats and technologies. Who you are Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or a related field. 10+ years of progressive experience in cybersecurity, with at least 5 years in a senior leadership role at a fintech or high-growth tech company. Deep expertise in securing credit and lending platforms, preferably in the fintech industry, with knowledge of fraud prevention, secure payment processing, and regulatory compliance (e.g., Truth in Lending Act, Fair Credit Reporting Act). Proven track record in designing and implementing security architectures for cloud-based systems, APIs, and financial applications. Strong understanding of data privacy, encryption, and consumer protection laws in a fintech context. Experience leading incident response, penetration testing, and vulnerability management programs. Exceptional communication skills, with the ability to explain complex security concepts to non-technical stakeholders, from engineers to board members. Strategic mindset with the ability to balance security rigor with business innovation in a fast-paced startup environment. Nice to have Experience at a fintech company with exposure to payment processing, lending, or brokerage platforms. Familiarity with SOC 2, ISO 27001, or other cybersecurity certifications and frameworks. Knowledge of international cybersecurity regulations to support global operations. Experience building and scaling security teams in high-growth environments. Benefits and Perks Our goal is to provide a comprehensive offering of benefits and perks that promote better financial, mental, and physical wellness. We believe working alongside each other in person is the best way to build a great product and foster a strong company culture. Our expectation is that employees are in the office five days a week, allowing for optimal collaboration, inclusivity, and productivity. At the same time, we understand that life happens and recognize the importance of flexibility. We are committed to supporting our employees when circumstances arise that require remote work or adjusted schedules. Our goal is to ensure everyone can effectively balance personal and professional responsibilities while maintaining our collaborative and productive environment. Here are some highlights of our benefits and perks offerings, feel free to ask your recruiting partner for more details on our comprehensive offering for employees. 100% company-paid medical, dental, and vision coverage for you and your dependents on your first day of employment. Monthly fitness reimbursement up to $100 or a full membership to LifeTime Fitness 401(k) with a 3.5% match and immediate vesting Meal program for breakfast, lunch, and dinner Life and accidental insurance Flexible PTO Your actual level and base salary will be determined on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills, education, and experience. Base salary is just one part of your total compensation and rewards package at Credit Genie. You may also be eligible to participate in the bonus and equity programs. You will also have access to comprehensive medical, vision, and dental coverage, a 401(k) retirement plan with company match, short & long term disability insurance, life insurance, and flexible PTO along with many other benefits and perks. Credit Genie is a proud Equal Opportunity Employer where we welcome and celebrate differences. We are committed to providing a workspace that is safe and inclusive, where everyone feels supported, connected, and inspired to do their best work. If you require any accommodations to participate in our recruitment process, please inform us of your needs when we contact you to schedule an interview.

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Remote Information Security & Compliance Manager. This role is integral to enhancing the overall security strategy and compliance framework within the organization. You will lead the operations of security engineering and ensure the integrity of data by managing various aspects of vulnerability assessments, compliance programs, and incident response. Your efforts will safeguard critical systems and data while aligning security practices with industry regulations. This position demands a mix of strategic insight and hands-on technical expertise as you develop and implement security policies and initiatives to mitigate risks and ensure compliance.Accountabilities Lead vulnerability management, SIEM tuning, incident response, and threat investigations. Oversee secure baseline configurations and cloud security controls. Develop and manage all security policies, standards, and awareness training. Conduct risk assessments and manage third-party/vendor risk evaluations. Own the Disaster Recovery governance program and ensure effective plan execution. Guide cross-functional teams through security requirements and policy changes. Requirements Bachelor's degree in Cybersecurity, Information Systems, Computer Science, or equivalent experience preferred. 5+ years of hands-on IT security engineering or cybersecurity experience. Strong technical knowledge in AWS security, incident response, and vulnerability management. Experience in leading security or compliance functions effectively. Familiarity with SOC 2, HIPAA, GDPR, and CCPA compliance frameworks. Excellent communication skills for cross-functional collaboration and audits. Benefits Opportunity to work in a fully remote environment. Competitive salary and benefits package. Professional development and growth opportunities. Supportive work culture that values diversity and inclusion. Flexible working hours to promote work-life balance. Why Apply Through Jobgether? We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team. We appreciate your interest and wish you the best!Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.#LI-CL1

Benefits: 401(k) 401(k) matching Competitive salary Dental insurance Health insurance Opportunity for advancement Paid time off Vision insurance Benefits/Perks Competitive Compensation Career Advancement Opportunities Great Work Environment Job SummaryWe are seeking an experienced Information Security Manager to join our team! As our Information Security Manager, you will be responsible for managing all Information Security projects, ensuring the safety and security of the data in our care, and identifying and eliminating threats before they start. You will also work closely with other departments to ensure compliance with security best practices and create reports to present to upper management and other department heads on security protocols. The ideal candidate has previous experience working in Information Security, has demonstrable experience leading a team, and has a deep understanding of best security practices. Responsibilities Manage IT projects and oversee goals, ensure metrics are being met, and projects are being completed in a timely manner Work closely with staff to manage any support issues that arise, handle all user access credentials, and hardware inventory Maintain and adjust any documentation for users in regard to common technology processes, hardware handling, and more Maintain and adjust any communications procedures to ensure staff issues are being heard and handled appropriately Investigate any security incidents and handle documentation and remediation Monitor security systems to protect data and spot any questionable activity before it becomes a threat Present reports to upper management to discuss security concerns and ongoing efforts, as needed Qualifications Previous experience in IT Security and Management preferred Strong interpersonal and communication skills Demonstratable experience and knowledge in IT, security, and best practices Strong leadership ability Self-driven and motivated The ability to meet deadlines and work under high-pressure situations Flexible work from home options available. Compensation: $140,000.00 - $150,000.00 per year PROVIDING QUALITY STAFFING AND CONSULTING SINCE 2011 Based out of San Antonio, Tex as, our minority women-owned company specializes in all staffing and consulting needs. Whether you're trying to hire a pharmacist, a respiratory therapist, or skilled and non-skilled laborer, we will staff your company with the best candidate. We bring extensive experience and professionalism and we will personalize our assistance to your needs and concerns. Most of our contracts are with the Army and Air Force as Sub-Contractors. Our staff has a quick turn around and have been able to fill positions within 48 hours with short notice, we have filled hard to fill locations and jobs, and managed over 16 contracts with over 70 employees at a time. Managed call-ins at 24/7 hospitals and ensured shifts were filled, and managed PRNs with notice of less than 24 hours. Also, provided temp laborers for next day jobs. Our consulting division provides contracting assistance, program managing, application assistance, certification assistance and proposal writing. We are very knowledgeable in a variety of areas and are eager to assist your company's prosperity.