Information security officer jobs near me - 502 jobs

A leading data collaboration platform in San Francisco seeks a Senior Security Engineer to enhance threat detection and automation strategies. The role involves implementing detection logic, automating workflows, and developing scalable cloud solutions. Candidates should have a Bachelor's degree in a relevant field and strong skills in security automation and detection engineering. This position offers competitive compensation with a base range of $131,500 to $203,000. #J-18808-Ljbffr

A leading security training provider is seeking a Senior Security Engineer for their content engineering team. This role supports security professionals, builds hands-on content, and integrates security into DevOps. Ideal candidates have over 5 years of experience in application security and are passionate about improving security practices. The position is remote-first with competitive compensation and benefits. #J-18808-Ljbffr

Why Montrose Montrose is on a mission to protect the planet and public health using science, data, and technology at scale. Our commitment to environmental intelligence, regulatory insight, and advanced digital platforms drives our approach to security and risk management. The CISO role is pivotal in safeguarding our business, our clients, and our mission, moving beyond compliance optics to build a resilient, risk-based security culture that enables growth and innovation. This is not a checkbox compliance role. This is enterprise security leadership with real-world impact: embedding security into every layer of our technology stack, business processes, and product delivery. If you're energized by building robust security programs, closing material risk gaps, and enabling modern engineering workflows, this role is built for you. The Role The Chief Information Security Officer (CISO) owns the strategy, architecture, and execution of Montrose's enterprise security program. The CISO leads a cross-functional security team (Governance, Risk & Compliance, Security Operations, Identity & Access Management) and partners with Legal, Infrastructure, Applications, and Product Engineering to deliver a comprehensive, scalable, and audit-ready security posture. You will define how security is designed, governed, and operationalized, driving clarity where there is complexity and accountability where there is fragmentation. You'll be bold about policy lifecycle management, asset visibility, and risk prioritization, while preparing the organization for the next generation of compliance, monitoring, and secure product delivery. What We Can Offer You Our mission is supported by our principles: We Value Our People, We Value Our Community, We Value Our Clients, We Value Our Shareholders. We differentiate ourselves with diverse talent. We care for the well-being and development of our people. So, we offer: Regular interaction and partnership with the executive team and senior leaders across Montrose Competitive compensation package: annual salary ranging from $275,000 - $300,000 USD; eligible for annual bonus of 30-40% Competitive medical, dental, and vision insurance coverage 401k with a competitive 4% employer match Progressive vacation policies and company holidays to ensure work/life balance A financial assistance program to help support peers in need known as the Montrose Foundation Access to attractive student loan rates to optimize your student loan payoff plans Key Responsibilities Enterprise Security Strategy & Architecture: Own the end-to-end vision and roadmap for Montrose's enterprise security program; define reference architectures and governance principles aligned to NIST 800-171, ISO 27001, NIST CSF, CIS Controls. Risk Management & Compliance: Build and maintain a CMMC L2 compliant enclave; align governance and controls to regulatory frameworks; lead incident readiness and response. Security Operations & Architecture: Establish a complete asset inventory and validate tool coverage; segment and secure lab networks; partner with CTO and engineering teams to enable secure, modern software development. Policies, Training & Culture: Publish clear policies and governance procedures; ensure annual reviews and training; govern guest/external data sharing in M365. Team & Leadership: Lead and grow a high-performing security organization spanning GRC, SecOps, and IAM; serve as a trusted partner to executives. What Success Looks Like (9-12 Months) A clearly defined, well-governed enterprise security architecture is in place. Asset inventory and tool coverage are complete and validated; continuous monitoring is operational. CMMC readiness achieved; SOC 2/ISO 27001 certification plan is underway. Security policies are published, enforced, and aligned to best practices. Security is embedded in engineering workflows and product delivery. Qualifications 10+ years of experience leading enterprise security programs and teams (GRC, SecOps, IAM) with direct CIO reporting. Demonstrated success aligning programs to NIST 800-171, ISO 27001, NIST CSF, CIS Controls, and achieving compliance. Proven ability to operationalize policy lifecycle management, incident response, and audit readiness. Track record partnering with Legal, Infrastructure, Applications, and engineering teams to reconcile control rigor with delivery needs. Ability to communicate effectively with executives, technical teams, and business leaders. You respectfully challenge your peers, and welcome the opportunity when others challenge you. You are flexible, resilient, and curious. Preferred Industry certifications (e.g., CISSP, CISM). Experience preparing for or implementing SOC 2/ISO 27001 audits and CMMC enclaves. Background in regulated, data-intensive, or multi-line-of-business environments. Why This Role Is Compelling As CISO at Montrose, you will own and shape the entire security program - transforming it from a reactive, compliance-driven function into a proactive, business-enabling force. You'll have the mandate and executive support to build a modern, risk-based security culture that not only protects the organization but also empowers innovation and growth. Your leadership will directly impact Montrose's ability to win and retain business, meet evolving regulatory demands, and deliver on our mission to protect the planet and public health. By partnering across IT, Legal, Product, and Operations, you'll ensure that security is a strategic enabler, removing friction, building trust with clients, and supporting the rapid adoption of new technologies. If you want to drive meaningful change, influence business outcomes, and lead a security program that is respected as a business partner - not just a gatekeeper - this is the role. Make The Right Move To Accelerate Your Career Montrose is a leading environmental solutions company focused on supporting commercial and government organizations as they deal with the challenges of today and prepare for what's coming tomorrow. With ~3,400 employees across 100+ locations worldwide, Montrose combines deep local knowledge with an integrated approach to design, engineering, and operations, enabling Montrose to respond effectively and efficiently to the unique requirements of each project. From comprehensive air measurement and laboratory services to regulatory compliance, emergency response, permitting, engineering, and remediation, Montrose delivers innovative and practical solutions that keep its clients on top of their immediate needs - and well ahead of the strategic curve. For more information, visit ********************* We are going to be blunt - the way we work may not suit everyone. Montrose is a fast-paced, dynamic and high-growth company. You are your own boss, but you will get ample guidance and support from talented, engaged, super-smart colleagues from Montrose and its service providers. Therefore, if freedom, autonomy, and head-scratching professional challenges attract you, we could be the perfect match. Want to know more about Montrose? Visit montrose-env.com and have fun! Montrose is an Equal Opportunity Employer. Montrose is committed to providing access and reasonable accommodation in its employment for individuals with disabilities.

DISCLOSURES The specific statements shown in each section of this are not intended to be all-inclusive. They represent typical elements and criteria considered necessary to perform the job successfully. The job's responsibilities/tasks may be modified and/or expanded over time. Company will inform the personnel member when changes in the respective job description are made. ABOUT ENTERPRISE MANAGEMENT SOLUTIONS, LLC Enterprise Management Solutions, LLC (Enterprise) is a full-spectrum administrative and operational management firm headquartered in Baltimore, Maryland. We provide contracted infrastructure support to independently governed organizations in sectors such as behavioral health, primary care, supportive housing, food service, commercial real estate, and nonprofit development. Enterprise does not own or govern the organizations we serve. Instead, we operate as a trusted administrative services provider under formal contractual agreements, offering high-level back-office services that allow our clients to focus on mission execution and program delivery. Our scope of service includes: Comprehensive fiscal systems and multi-entity accounting Human resource infrastructure and staff onboarding Legal compliance and audit readiness Technology integration and IT systems governance Organizational growth planning and fiscal sustainability analysis Federal and state grant compliance, budget monitoring, and reporting Financial and operational performance dashboards CEO- and executive-level strategy support Our goal is to relieve mission-driven companies of administrative burden by overseeing financial and operational systems that allow leadership teams to focus on quality care and innovation. COMPANY WEBSITE: ********************************* COMPANY PHONE NUMBER: ************** HUMAN RESOURCES PHONE NUMBER: ************** ext. 10 POSITION TITLE: Chief Information Security Officer (CISO) ALTERNATE TITLE(S): Chief Cybersecurity Officer (CCSO), Chief Security Officer (CSO - Cybersecurity), Senior Cybersecurity Executive COMPANY: Enterprise Management Solutions, LLC (in support of all customer companies under contract) DIVISION: Technology & Information Security DEPARTMENT: n/a UNIT: n/a BENEFITS PACKAGE: This position is eligible for standard W-2 employee benefits, including but not limited to those outlined in the Company's official benefits package. Eligibility and participation are subject to the terms and conditions of the applicable plans. Full details are provided in the current benefits package documentation. WORK SCHEDULE: Two days per week: Tuesday and Thursday, 8:00 AM - 5:00 PM (daily lunch break from 12:00 PM - 1:00 PM) ACCOUNTABLE TO: Chief Executive Officer (COO, in absence of CEO) ACCOUNTABLE FOR: Oversight of cybersecurity strategy, data protection, regulatory compliance, and the supervision of all information security systems, personnel, and vendors across all affiliated companies. This role is responsible for ensuring uninterrupted cybersecurity operations, incident response readiness, and cross-training protocols to protect critical client and company assets. CLASSIFICATION: W-2 employee; part-time hourly COMPENSATION RANGE: Ranges between $55.00 per hour to $90.00 per hour, and is commensurate with experience, expertise, verified credentials, and available company budget. ANTICIPATED TRAVEL: Up to 10% of the time (interoffice and site-based meetings) WORKPLACE POLICY: This is a 100% in-office role at Baltimore HQ, two days per week. Remote work or telework is prohibited unless explicitly pre-approved in writing by the CEO. SUMMARY OF POSITION RESPONSIBILITIES The Chief Information Security Officer (CISO) serves as the organization's highest-ranking cybersecurity executive, responsible for designing, implementing, and maintaining a resilient information security program that safeguards company and client systems against internal and external threats. The CISO oversees all areas of cybersecurity including policy development, risk management, threat detection, incident response, and compliance with federal and state regulations (HIPAA, HITECH, GDPR, SOC2, PCI-DSS, NIST, and others as applicable). This role also ensures that Enterprise delivers all contracted Information Security, IT Governance, and Cybersecurity Risk Management services to affiliated entities, protecting sensitive healthcare, housing, financial, and client records. The CISO plays a critical role in aligning technology security with enterprise goals, while proactively mitigating risks across all operational areas. SCHEDULED DUTIES AND RESPONSIBILITIES Cybersecurity Strategy & Leadership Develop and execute a company-wide cybersecurity program aligned with business and client requirements. Translate the CEO's strategic vision into measurable, risk-based security initiatives. Conduct long-term security planning, including disaster recovery and business continuity. Risk Management & Regulatory Compliance Ensure strict compliance with HIPAA, HITECH, GDPR, SOC2, PCI-DSS, NIST, and state regulations. Perform enterprise-wide risk assessments and vulnerability scans. Maintain and update incident response, breach notification, and audit readiness protocols. Threat Monitoring & Incident Response Direct the Security Operations Center (SOC) or equivalent vendor-managed services. Oversee intrusion detection, SIEM monitoring, log review, and malware defense. Lead incident response, forensic investigation, and breach communication with executive leadership. Identity, Access, and Data Security Manage identity and access management systems, including MFA and privileged access controls. Oversee endpoint, mobile device, and server security configurations. Ensure encryption, secure backups, and data loss prevention across all platforms. Vendor & Third-Party Oversight Review vendor contracts, security certifications, and compliance attestations. Establish standards for secure integration with external technology providers. Lead vendor risk management and third-party security audits. Internal Policies & Training Develop internal cybersecurity policies, acceptable use guidelines, and SOPs. Deliver quarterly staff training on phishing, ransomware, and cybersecurity awareness. Conduct simulated incident drills and security tabletop exercises. Collaboration & Executive Support Advise the CEO and COO on cybersecurity risks and budget needs. Partner with CFO, HR, and Operations Managers to ensure cross-department compliance. Provide security briefings to the Board of Directors and client executives. UNSCHEDULED DUTIES AND RESPONSIBILITIES Respond to emergent cybersecurity threats or system alerts. Support investigations of insider threats, fraud, or data misuse. Participate in interdepartmental workgroups to integrate new systems securely. Maintain active knowledge of evolving threats, ransomware tactics, and industry best practices. Lead recovery efforts in the event of a cyber-attack or natural disaster affecting IT infrastructure. PHYSICAL DEMANDS Prolonged periods sitting at a desk and working on a computer. Occasional lifting up to 25 pounds. WORKING CONDITIONS Cross-functional collaboration with executives and technical staff. 100% in-office role at Baltimore HQ (two days per week, no remote or hybrid unless CEO approved). Travel up to 10% may be required for audits, client meetings, or incident response. Must be available during scheduled hours with flexibility for emergent needs. COMPETENCIES AND SKILLS Visionary leadership with deep technical and cybersecurity acumen. Expertise in risk management, incident response, and compliance frameworks. Skilled in cloud security (AWS, Azure, Google Cloud), SaaS protection, and on-premises systems. Strong command of cybersecurity frameworks: NIST CSF, ISO 27001, COBIT. Familiarity with healthcare IT and HIPAA/HITECH security requirements. Effective communicator able to brief executives and train staff. Demonstrated ability to lead multidisciplinary teams and manage security vendors. LEVEL OF EDUCATION / TRAINING / QUALIFICATIONS Master's degree in Cybersecurity, Computer Science, or Information Technology (required). Certified Information Systems Security Professional (CISSP) in good standing (required). Additional certifications (CISM, CISA, CCSP, CRISC) strongly preferred. Minimum 8-10 years of progressive cybersecurity leadership experience, with at least 5 years in a senior or CISO role. Experience overseeing security in healthcare, housing, financial, or government environments strongly preferred. Demonstrated track record of regulatory compliance, successful incident response, and enterprise-level security program development.

Join us as we scale our business by building on our tremendous success around the world. The massive database market is going to double over the next few years and TiDB is a global player positioned as a major disruptor with TiDB Database and Database as a Service offering. TiDB is an open-source, cloud-native, distributed SQL database for elastic scale and real-time analytics. Large and high-growth organizations in markets as varied as financial services, logistics, gaming, e-commerce and software as a service have successfully deployed and expanded their TiDB footprint on mission-critical applications. Our strong open-source community roots (39,500+ stars on GitHub), innovative products and inclusive culture draw passionate and dedicated people to our company. Learn more about TiDB careers and join our team to be at the forefront of innovation and growth. Role Overview: We are seeking a part-time Chief Information Security Officer (CISO) to lead TiDB's global security strategy. This role will be responsible for defining and executing a comprehensive information security, risk management, and compliance program that protects TiDB's products, infrastructure, customers, and employees. As CISO, you will partner closely with product, sales, legal, and executive leadership to ensure security is embedded into everything we do - from the core of TiDB to our SaaS/cloud offerings and enterprise engagements. Responsibilities: Proven experience as a CISO or senior security leader in a high-growth B2B SaaS environment. Strong understanding of cloud security, DevSecOps, zero trust architectures, and modern compliance frameworks. Exceptional communicator with executive presence-comfortable interfacing with CISOs, CIOs, and security decision-makers. Experience supporting GTM motions, including joining sales calls, handling due diligence, and presenting to security-conscious enterprise buyers. Define, implement, and continuously evolve TiDB's global information security strategy and roadmap. Drive adoption of best practices in application security, data security, and infrastructure hardening. Establish and maintain a comprehensive risk management framework aligned with ISO 27001, SOC 2, GDPR, CCPA, and other relevant standards. Work with legal and compliance teams to monitor evolving regulations in key markets. Engage directly with enterprise customers to build trust in TiDB's security practices. Effectively represent the company through thought leadership, including written contributions and participation in public speaking engagements. Qualifications: Proven experience leading security at a global SaaS, cloud infrastructure, or database company. Deep understanding of distributed systems, cloud-native architectures, and DevSecOps practices. Strong knowledge of security frameworks and regulations (ISO 27001, SOC 2, NIST, GDPR, etc.). Demonstrated ability to lead incident response and crisis management. Excellent communication and executive presence; comfortable engaging with boards, regulators, and enterprise customers. Fluent public speaker or participates actively in a public facing security community. Salary: The annual anticipated base salary range for U.S. candidates for this role is USD $100,000 to $140,000K. Four zones are applied with different levels of the pay range. More details of the Geo Differential Pay Policy will be discussed during the HR conversation. The actual individual base pay will depend on various factors such as the complexity and responsibility of the role, work locations, job levels, and relevant experience and skills. This role is also eligible to participate in TiDB's Bonus and Equity Plan, as well as our Sales Compensation Plan if it is a sales role. In order to comply with local legislation and provide greater transparency to candidates, we share base salary ranges on all US job postings regardless of desired hiring location. Please note that actual salaries may vary and fall outside of this range depending on factors such as a candidate's qualifications, geographic location, skills, experience, and competencies. Other benefits include health insurance, flexible vacation time, paid holidays, and parental leave. Salaries for candidates outside the U.S. will vary based on local compensation structures. We encourage people from underrepresented groups to apply. Come advance with us! In keeping with our values, no employee or applicant will face discrimination/harassment based on: race, color, ancestry, national origin, religion, age, gender, marital domestic partner status, sexual orientation, gender identity, disability status, or veteran status. TiDB also strives to prevent other, subtler forms of inappropriate behavior (e.g., stereotyping) from ever gaining a foothold in our organization. Whether blatant or hidden, barriers to success have no place at TiDB.

All JerseySTEM roles are pro-bono (unpaid) positions. JerseySTEM is a mission-driven professional network of pro-bono contributors dedicated to improving access to STEM education and career pathways for underserved middle school girls in New Jersey. Members contribute their professional skills and leverage their networks in service of the organization's gender-equity agenda. Membership is a minimum six-month commitment of approximately six flexible hours per week and includes a $100 refundable deposit, returned after six months of active membership. K-12 educators, retirees, veterans, interns, and students are exempt from the deposit. Overview This is a pro-bono position. JerseySTEM is looking for experienced professionals to commit time and expertise as a long-term engagement in support of our mission to provide STEM education to underrepresented middle school girls. The Chief Information Security Officer (CISO) provides strategic leadership for information security, cybersecurity risk, and data protection across the organization, working collaboratively with Technology, Data, and leadership. This is not a technical or operational role, but a governance and advisory role focused on policy, risk management, and organizational security awareness. Responsibilities Define and lead the JerseySTEM's information security strategy to support and advance the organization's goals . Develop, implement, and maintain policies and procedures aligned with federal regulations appropriate for a nonprofit organization. Identify and assess cybersecurity risks from data, systems, and infrastructure. Work with stakeholders to communicate, manage, and mitigate risks. Partner with the JerseySTEM's TECH team and leadership to ensure security is embedded in systems, tools, and workflows. Establish and oversee JerseySTEM's security awareness and best practices. Develop the tailored training and communication for volunteers and team members. Continuously evaluate and improve defenses against evolving threats, including those driven by generative AI and adversarial ML techniques. Provide tailored guidance to JerseySTEM's data custodians handling sensitive and/or regulated datasets. Ensure compliance with relevant security, privacy, and data protection principles appropriate for a nonprofit organization. Support and champion the JerseySTEM's data classification. Participate in virtual meetings to align on organizational priorities and initiatives. Oversee cybersecurity incident response planning activities; investigate and manage response to security breaches as needed. Qualifications A minimum of ten (10) years of progressive experience in information security, cybersecurity, or risk management leadership roles. Familiarity with the cybersecurity implications of artificial intelligence and machine learning. Strong understanding of security frameworks, controls, and best practices (e.g., risk assessment, access management, data protection). Ability to translate technical security concepts into clear guidance for non-technical stakeholders. Experience working with cross-functional teams in a collaborative environment. Strategic mindset with a hands-on, pragmatic approach. Excellent communication, judgment, and decision-making skills. Comfortable working in a fully remote, volunteer-driven organization. Commitment for 5-6 hours per week Preferred Qualifications An advanced degree is preferred. A retired professional is a plus. Relevant certifications preferred (e.g., CISSP, CISM, CCSP, GIAC). This is a pro-bono volunteer position.

Company Credit Genie is a mobile-first financial wellness platform designed to help individuals take control of their financial future. We leverage artificial intelligence to provide personalized insights and are building a financial ecosystem by offering tools and services that provide instant access to cash, and building credit. Our goal is to empower every customer to achieve long-term financial stability. Founded in 2019 by Ed Harycki, former Swift Capital Founder (acquired by PayPal in 2017). Backed by Khosla Ventures and led by industry pioneers from companies such as; PayPal, Square, and Cash App, we are well positioned to build the future of inclusive finance through cutting-edge technology and customer-centric solutions. Overview As Chief Information Security Officer (CISO), you will be the primary leader responsible for developing and implementing our information security strategy. You'll protect our systems, data, and customer trust by overseeing cybersecurity operations, ensuring compliance with regulatory standards, and mitigating risks in a dynamic fintech environment. This role demands a visionary leader with deep expertise in cybersecurity, preferably in fintech, and a passion for securing innovative financial products. What you'll do Develop and execute a comprehensive cybersecurity strategy to protect our platform, customer data, and intellectual property. Ensure compliance with fintech and data privacy regulations, including GDPR, CCPA, PCI-DSS, and other relevant standards. Oversee the design, implementation, and monitoring of security controls for payment processing, lending platforms, and other financial products. Lead incident response, including managing and mitigating cybersecurity breaches, vulnerabilities, and regulatory inquiries. Collaborate with product, engineering, and compliance teams to embed security-by-design principles into new features and services. Build and maintain a robust security framework for credit and lending operations, ensuring protection against fraud and data breaches. Conduct risk assessments and implement mitigation strategies for emerging threats in the fintech landscape. Manage relationships with external security vendors, auditors, and regulatory bodies. Develop and lead a high-performing security team, fostering a culture of proactive risk management. Support international expansion by aligning security practices with global data protection and financial regulations. Stay ahead of cybersecurity trends, advising the executive team on evolving threats and technologies. Who you are Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or a related field. 10+ years of progressive experience in cybersecurity, with at least 5 years in a senior leadership role at a fintech or high-growth tech company. Deep expertise in securing credit and lending platforms, preferably in the fintech industry, with knowledge of fraud prevention, secure payment processing, and regulatory compliance (e.g., Truth in Lending Act, Fair Credit Reporting Act). Proven track record in designing and implementing security architectures for cloud-based systems, APIs, and financial applications. Strong understanding of data privacy, encryption, and consumer protection laws in a fintech context. Experience leading incident response, penetration testing, and vulnerability management programs. Exceptional communication skills, with the ability to explain complex security concepts to non-technical stakeholders, from engineers to board members. Strategic mindset with the ability to balance security rigor with business innovation in a fast-paced startup environment. Nice to have Experience at a fintech company with exposure to payment processing, lending, or brokerage platforms. Familiarity with SOC 2, ISO 27001, or other cybersecurity certifications and frameworks. Knowledge of international cybersecurity regulations to support global operations. Experience building and scaling security teams in high-growth environments. Benefits and Perks Our goal is to provide a comprehensive offering of benefits and perks that promote better financial, mental, and physical wellness. We believe working alongside each other in person is the best way to build a great product and foster a strong company culture. Our expectation is that employees are in the office five days a week, allowing for optimal collaboration, inclusivity, and productivity. At the same time, we understand that life happens and recognize the importance of flexibility. We are committed to supporting our employees when circumstances arise that require remote work or adjusted schedules. Our goal is to ensure everyone can effectively balance personal and professional responsibilities while maintaining our collaborative and productive environment. Here are some highlights of our benefits and perks offerings, feel free to ask your recruiting partner for more details on our comprehensive offering for employees. 100% company-paid medical, dental, and vision coverage for you and your dependents on your first day of employment. Monthly fitness reimbursement up to $100 or a full membership to LifeTime Fitness 401(k) with a 3.5% match and immediate vesting Meal program for breakfast, lunch, and dinner Life and accidental insurance Flexible PTO Your actual level and base salary will be determined on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills, education, and experience. Base salary is just one part of your total compensation and rewards package at Credit Genie. You may also be eligible to participate in the bonus and equity programs. You will also have access to comprehensive medical, vision, and dental coverage, a 401(k) retirement plan with company match, short & long term disability insurance, life insurance, and flexible PTO along with many other benefits and perks. Credit Genie is a proud Equal Opportunity Employer where we welcome and celebrate differences. We are committed to providing a workspace that is safe and inclusive, where everyone feels supported, connected, and inspired to do their best work. If you require any accommodations to participate in our recruitment process, please inform us of your needs when we contact you to schedule an interview.

Introduction KLDiscovery offers a fantastic opportunity for you to use your talents to make a meaningful impact in a fast-paced, growing technology and services organization! KLDiscovery is a global leader in eDiscovery, compliance, and data management solutions, empowering law firms, corporations, and government agencies to tackle their most complex legal and regulatory challenges. We are seeking an accomplished and strategic VP, Chief Information Security Officer (CISO) to lead our global Information Security teams and shape the cyber security strategy, compliance, and risk posture across all business operations. This role ensures the confidentiality, integrity, and availability of company systems, data, and services while enabling business agility and compliance with regulatory requirements. The CISO will develop and execute an enterprise security roadmap that protects our clients, employees, systems, and sensitive data while enabling business efficiency. Work Status: Remote, work from home opportunity. Is This Role For You? You will provide strategic direction, manage teams and budgets, drive multi-year maturity plans, and regularly communicate risk, priorities, and progress to senior leadership. At the same time, this role requires hands-on engagement with architecture reviews, incident response, vendor risk management, audits, certifications, and customer trust initiatives. You will partner closely with leaders across Engineering, IT, Legal, Compliance, Finance, and Operations, fostering a culture of shared responsibility for security. This includes establishing clear policies and standards, defining and monitoring key risk and performance metrics, and guiding teams through secure-by-design principles and real-world threat considerations. A Day in The Life Strategic Leadership Define and drive KLD's information security roadmap, strategy, and execution in alignment with business goals. Develop and maintain a security program aligned with industry frameworks (e.g., NIST CSF, SOC 2) and privacy/security obligations (GDPR, CCPA/CPRA, HIPAA, GLBA, DOJ, and client-specific requirements). Integrate cyber resilience and business continuity planning into enterprise risk management. Partner with Engineering and Product to ensure security requirements are integrated and prioritized within all roadmap initiatives. Governance & Compliance Own global compliance certifications (ISO 27001, SOC 2, CMMC) and client audit readiness programs. Establish and enforce security policies, standards, and secure-by-design principles across all products and services. Risk Management Lead risk assessments, gap analyses, and continuous improvement initiatives. Oversee enterprise risk management efforts, including vendor and supply chain security, annual posture reviews, penetration testing, bug bounty programs, and contractual compliance. Drive vendor risk management processes and third-party security assessments. Emerging Technology & AI Governance Lead the evaluation, selection, and deployment of security technologies that strengthen system, application, and data protection. Drive governance for AI and emerging technologies, ensuring secure and ethical adoption across business units. Operational Excellence Own the incident response program, ensuring proper handling of breaches, escalation, root-cause analysis, and corrective action. Lead and mentor a high-performing security team supporting 24/7 monitoring, threat detection, and incident response tailored to a legal data environment. Lead cross-functional IT and security teams through transformation initiatives. Metrics & Reporting Develop executive dashboards and reporting mechanisms for risk posture, maturity progress, and security KPIs for board-level visibility. Culture & Awareness Champion security awareness training and initiatives that are approachable, practical, and relevant to employees at every level. Foster strong cross-functional relationships, helping teams understand the “why” behind security decisions and controls. Budget & Resource Management Manage the security budget and resource strategy, balancing strong protections with business agility and client expectations. Identify opportunities for cost savings without compromising security or service quality. Establish and maintain strategic vendor relationships. Negotiate contracts and ensure compliance with security and performance standards. What You Bring to the Role Experience 15+ years of progressive cybersecurity experience, including 5+ years in a senior leadership or CISO-level role. Experience building and leading security programs in regulated environments; eDiscovery, legal technology, or digital forensics strongly preferred. Proven ability to design and scale end-to-end security programs covering governance, risk, compliance, architecture, and operations. Direct experience leading SOC 2, ISO 27001, CMMC, or similar audits and certification initiatives. Executive-level oversight of incident response, threat detection, vulnerability management, and third-party/vendor risk. Knowledge of identity security, endpoint management, encryption standards, device security, and secure system design. Leadership & Communication Exceptional communication skills, capable of explaining complex security topics to executives, engineers, clients, and nontechnical audiences. Demonstrated ability to lead, motivate, and scale high-performing teams in fast-paced, high-stakes environments. Consultative mindset with the ability to build rapport, trust, and influence at all organizational levels. Education & Certifications Bachelor's degree in Information Security, Computer Science, Engineering, MIS, or related field (or equivalent experience). Professional certifications such as CISSP, CISM, CISA, or similar are preferred. Driving Career Growth, Benefit Excellence: The KLD Advantage At KLD we invest in employees and their families by placing their wellbeing first. We offer competitive total compensation that includes base pay, bonus potential, inclusive benefits, wellness programs, and perks. We use market and industry data to inform pay decisions while considering geography and labor markets, individual experience, and business needs. Individual compensation will vary, although a reasonable estimate of the current annualized base pay range for this position is $200,000 to $250,000. We offer a high-performance laptop computer, options for wireless headset or external speaker, up to two 24” 2K monitors, and a mobile phone for business use. Generous paid time off, offering various time off options to help employees maintain a work-life balance, such as vacation, paid sick leave, parental leave, paid jury leave, and more! Comprehensive health, dental, vision and supplemental benefits packages that include life insurance, short- and long-term disability, to promote the health of our employees. Remote-friendly, flexible working culture, where you can apply to work from several global locations. A focus on continuous professional development through various training and education reimbursement programs. A diverse and inclusive workplace where we all learn, grow, and achieve the greatest heights…together. A surrounding team of mission-driven individuals who genuinely love what they do. Equity incentives and company bonus programs; that way, we all share in the success of KLDiscovery. Free, fun, interactive and incentivized global wellness program that promotes the wellbeing of our employees plus offers a wide range of perks and discounts! Free Employee Assistance Program (EAP) because we all could use a little help and support every now and then. 401(k) with employer match, to help our employees achieve financial success. KLD supports the communities where our employees live and offers a paid community service day for employees to volunteer with what resonates with them. To keep our furry, 4-legged family members healthy, KLD employees can opt for Pet Insurance. Who We Are KLDiscovery provides technology-enabled services and software to help law firms, corporations, and government agencies solve complex data challenges. With offices in 26 locations across 17 countries, KLDiscovery is a global leader in delivering best-in-class data management, information governance, and eDiscovery solutions to support the litigation, regulatory compliance, and internal investigation needs of clients. Our Nebula Ecosystem provides powerful end-to-end eDiscovery and enterprise-grade information governance. Through its global Ontrack data recovery business, KLDiscovery delivers world-class data recovery, disaster recovery, email extraction and restoration, data destruction, and tape management. We Provide Equal Employment Opportunity At KLDiscovery we believe that inclusion and diversity make us stronger. We are committed to fostering an inclusive environment for all employees that enhances wellbeing and belonging. We welcome and celebrate individuals of all backgrounds, experiences, and perspectives. We do not discriminate on the basis of race, color, religion, gender, pregnancy, gender identity, sexual orientation, national origin, age, disability, genetic information, veteran status, or any other protected status. We are happy to support you with any accommodation request at any stage in our hiring process. Texas PI# A04094801 #LI-TF1 #LI-Remote

The Chief of Information Security and Security Officer (CISO) is responsible for providing leadership and operational excellence for developing and supporting security initiatives and policies along with developing strategies to protect sensitive data, managing security risks, investigating and remediating security incidents and promoting security awareness and compliance across the organization. The CISO acts as the primary contact for security-related matters and serves as the organization's HIPAA Security Officer. Job Responsibilities: Leadership & Strategy: Develop and manage a comprehensive information security and risk management program aligned with business objectives and regulatory requirements. Serve as the organization's HIPAA Security Officer and lead all activities related to ensuring the security of protected health information (PHI). Collaborate with executive leadership, legal, compliance, and IT teams to integrate security into all aspects of operations and technology. Serves in a leadership capacity in the execution of the organizations Cyber Incident Response plan, coordinating action, communication, and mitigation efforts in conjunction with Executive Leadership. Keep current with emerging security trends, conduct research and make recommendations for improvements to current processes. Advise, counsel and educate executive and management teams on technology's relative importance and financial impact. Governance, Risk & Compliance: Establish, implement, maintain, and audit information security policies, procedures, and controls in accordance with PathGroup's Compliance Program, federal laws, and industry-standard best practices. Conduct regular risk assessments and security audits to identify vulnerabilities and recommend mitigations. Oversee security incident response planning and investigation of security breaches, including documentation and reporting. Work closely with the Chief Information Officer and Privacy Officer to develop and administer security awareness training for all employees and contractors. Security Operations: Lead strategic security and incident response planning to achieve business goals by prioritizing defense initiatives through the deployment, monitoring, maintenance, development, and upgrading of current and future security tools, technologies, and systems. Ensure regular risk assessments, penetration testing, and remediation efforts are conducted on a regular and timely basis. Monitor and analyze network and system activity for anomalies and trends to prevent and remediate security incidents in a timely manner. Work with IT to implement secure system configurations and DevSecOps practices. Third-Party, Vendor and Client Management: Evaluate third-party vendors and partners for security and compliance posture. Complete all required security assessments from existing or prospective clients. Participate in contract negotiations to ensure appropriate security requirements and data protection terms are in place. Management: Manage the employee hiring process including developing and updating s, developing performance expectations, identifying essential functions and knowledge, skills and abilities required for applicable positions, and selecting and assigning staff. Supervise and manage employee and team performance by coaching, counseling, motivating, and evaluating employees on a continual basis. Implement disciplinary action as needed and in consultation with Human Resources. Coordinate team projects, schedule work assignments, set priorities, and direct the work of subordinate employees. Ensure effective employee relations by sustaining an ethical, non-discriminatory and safe work environment and establishing effective communication lines and methods. Identify and solve employee problems, manage conflict, and respond to grievances as needed. Perform all job responsibilities in alignment with the industry's best security practices and regulatory guidelines to protect confidentiality, integrity, and availability of protected health information and other sensitive company data. Must be familiar with and abide by the Corporate Compliance Program and all Corporate policies, including the Privacy and Security policies. NON-ESSENTIAL FUNCTIONS: Nothing in the job description restricts management's right to assign or reassign duties and responsibilities to this job at any time. Other duties as assigned

As Director of Information Security at Moov you will be responsible for the comprehensive enterprise-wide information security policy, strategy, architecture, operations, and capability enhancements of Moov and our platform. This position collaborates with the senior leadership team on security strategy, capability enhancements, and the development of enterprise security awareness and accountability. You will: Key Responsibilities: Develop, implement, and maintain information security policies, practices, and operations. Oversee incident evaluation and response, ensuring swift and effective handling. Manage corporate information security risk and regulatory architecture and status reporting efforts. Create and roll out audit and compliance programs. Implement technical compliance solutions and support for security awareness and training programs to ensure compliance. Collaborate with cross-functional teams to maintain a high standard of cybersecurity posture and response. Build and operate a security and compliance program for money movement regulations, aligning with information security policies and standards. Foster a security-conscious culture and ensure the platform's security. Leadership and Strategy: Execute a plan to achieve and maintain industry compliance for SOC 1, SOC 2, PCI, NACHA, FedRAMP, and other compliance programs. Research, educate, and recommend technical solutions to support compliance efforts. Develop, implement, and manage a comprehensive organization-wide information security and risk management program. Deliver education on compliance with security policies. Conduct security risk assessments and manage risk management processes. Ensure compliance with relevant laws, regulations, and policies in Moov's information security practices. Lead the information security team that is protecting Moov. Recruit, motivate, mentor, and lead the best security talent. You have: Bachelor's degree in Computer Science, Engineering, Information Systems, Cyber Security, Business, or a related academic discipline. 7-10+ years of relevant experience or an equivalent combination of education and experience. Strong knowledge of regulatory requirements and information security management frameworks, including SOC 1, SOC 2, ISO/IEC 27001, ITIL, SOX, PCI, FedRamp, and NIST. Ability to work in a fast-paced environment. Knowledge of payment systems, fintech, or online banking. Certification in CISSP, CISM, CRISC, CISA, CFE, or similar is highly recommended. Experience with banking regulations. Knowledge of OSS tools and active participation in OSS community. Experience working with remote-only teams. Experience with mid-size organizations and startups. Our company: Moov is a 100% remote company with people from more than 26 states. We're backed by a16z and other respected investors. We won Visa's global Everywhere Initiative and our community of builders grows larger every day. We're committed to building a team that represents a variety of backgrounds, perspectives, and skills and we embrace diversity, creativity, and equal opportunity. Our people: Our customers come from all walks of life and so do we. We hire great people from a variety of backgrounds, not just because it's the right thing to do, but because it makes our company stronger. We have mountain bikers, skiers/boarders, runners, video gamers, musicians, movie buffs, weight lifters, and about every other type of person in between. We enjoy solving problems and tackling challenges with creativity. If we don't know the answer, we revel in the hunt to find it. We like helping people and choose to give first. We're patient, open, and honest. If you share our values and enthusiasm for making the complex simple and delightful, you'll find a home at Moov. Benefits include: Competitive base salary + employee stock options w/early exercise opportunity 100% remote. We make remote-work work. We match what you contribute to your 401(k) up to 5% of your salary Generous parental leave Medical Ins: Health Savings Account (HSA) option w/employer contribution EAP and other wellness resources Unlimited PTO+ generous paid holiday schedule Professional Development Budget, we have a culture that encourages and promotes professional growth and development Home office stipend Culture of people helping people who give first, celebrate wins together and embrace autonomy, transparency, and trust The opportunity to join an experienced and ambitious team passionate about solving customers' needs and who love what they do Partner with a community of 3000+ developers around the world, helping them focus on possibilities vs payments Employee referral incentive Salary range: $220k - $232k based on experience, geography, and other key factors Advice: If you're nervous about not meeting every qualification above, apply anyway. Moov is all about pushing boundaries-ours, yours, and the industry's-so we look for curious people willing to experiment and grow. While we can't teach curiosity and compassion, we can teach some technical skills. Of course, we can't guarantee anything, but as Michael Scott says,“You miss 100% of the shots you don't take!” (Or was that Wayne Gretzsky?) One more thing: Don't go iron your clothes for your interview (do people still own irons?). We're all pretty casual here, so you can wear whatever you are most comfortable in. Okay-last thing: When you meet with us, have some concrete, tangible examples of when you've added value, improved something, created something, or done some fantastic, customer-centric work. We also want to learn about you as a person. If you want to know what it's like working at Moov, check out stories from our employees. PS: Share our job roles with others! Wouldn't it be nice to make new friends and bring over old friends? We think so. Moov Financial is a participant of E-Verify. All potential employees and employees are bound by the guidelines in the MOU and the rules and responsibilities. For more or up to date information on E-verify, go to ********************** and click on E-verify.

Information Technology at Procter & Gamble is where business, innovation and technology integrate to build a competitive advantage for P&G. Our mission is clear -- we deliver IT to help P&G win with the over 5 billion consumers we serve worldwide. Our IT professionals are diverse business leaders who apply IT expertise to deliver innovative, tech-focused business models and capabilities for our 65 iconic, trusted brands. From Day 1, you'll be trusted to dive right in, take the lead, use your initiative, and build billion-dollar brands that help make everyday activities easier and make the world a better place! Our company offers purposeful work that will take your career places you never envisioned, in creative workspaces where innovation thrives and where your technical expertise is recognized and rewarded. The Opportunity P&G is seeking a Governance, Risk, and Compliance Director passionate about safeguarding data, enabling business through smart risk management, and shaping the future of cybersecurity. The IT Governance, Risk, and Compliance (GRC) Organization at Procter & Gamble is responsible for risk identification, assessment, and remediation across the IT landscape, as well as driving automated governance and compliance breakthroughs. As the GRC expert, you'll play a critical role in maturing and maintaining the security risk and compliance posture of our organization. You will lead initiatives that align our security program with business goals, ensure regulatory and policy compliance, and creatively solve problems to manage risk for the company. Responsibilities: Governance: Maintain and evolve the information security policy framework and controls aligned with industry best practices (e.g., NIST, ISO 27001, CIS). Establish and track metrics to measure policy adherence and program maturity. Drive internal alignment on security roles, responsibilities, and expectations. Risk Management: Manage the enterprise risk management process including risk identification, analysis, treatment planning, and reporting. Conduct security risk assessments for internal systems, projects, vendors, and business processes. Facilitate risk-based decision-making at all levels of the organization. Compliance: Ensure ongoing compliance with applicable regulations and frameworks (e.g., GDPR, HIPAA, CCPA, SOX). Maintain a library of evidence and documentation to support audit and regulatory needs. Monitor the effectiveness of IT controls and identify gaps in compliance. Analyze control measurements for negative trends and reoccurrence frequency. Collaborate with internal/external auditors on compliance audits, audit findings, and issue remediation Awareness & Enablement: Contribute to the continuous improvement of the risk and compliance mindset across P&G. Build IT risk awareness by providing support and training to others. Collaborate cross-functionally with IT, Legal, Privacy, and Business Operations teams. Stay up to date with how current events, security focus areas, and the regulatory environment may impact P&G's compliance processes Estimated Percent of Time Spent on Work 25% - Risk identification, analysis, and assessment 40% - Plan and drive enterprise-wide initiatives to reduce risk and improve compliance across the organization 25% - Assess and improve the effectiveness of IT controls and compliance across the enterprise 10% - Collaboration with internal/external auditors, driving a risk-aware compliance mindset Job Qualifications Required: Bachelor's degree in Computer Science, Computer Systems Engineering, Cybersecurity, Industrial Engineering, Business Management Information Systems, Software Development, or related field Prior hands on experience working in a security-focused role, such as Information Security Analyst, SOC Analyst, Security Engineer, etc. 8+ years of experience in Governance, Risk, and Compliance with a focus on Information Security In-depth knowledge of major security frameworks (e.g., NIST CSF, ISO 27001, SOC 2). Experience conducting risk assessments, audits, and control testing. Strong understanding of regulatory compliance requirements (e.g., GDPR, HIPAA, SOX, PCI DSS). Proven ability to write policies, manage documentation, and communicate clearly to both technical and non-technical stakeholders. Ability to influence and build relationships with business unit stakeholders, external service providers, and architecture teams. The ability to work independently, collaborate, and learn quickly. English fluency (speak, write, and read) Preferred Skills: Certified in CISSP, ISACA CRISC, CGEIT, CISA, or similar Pay Range: $160,000 - $220,000 Compensation for roles at P&G varies depending on a wide array of equal opportunity factors including but not limited to the specific office location, role, degree/credentials, relevant skills, and level of experience. At P&G compensation decisions are dependent on the facts and circumstances of each case. Total rewards at P&G include salary + bonus (if applicable) + benefits. Your recruiter may be able to share more about our total rewards offerings and the specific salary range for the relevant location(s) during the hiring process. Our company is committed to providing equal opportunities in employment. We value diversity and do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Immigration Sponsorship is not available for this role. For more information regarding who is eligible for hire at P&G along with other work authorization FAQ's, please click HERE. P&G participates in e-verify as required by law. Qualified individuals will not be disadvantaged based on being unemployed. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. Job Schedule Full time Job Number R000136880 Job Segmentation Experienced Professionals Starting Pay / Salary Range $160,000.00 - $220,000.00 / year

We're seeking an experienced Director of Information Security to join our dynamic team and help drive our growth. In this role, your job will be to coordinate people and processes to instill a “security first” mindset for information management, systems development, acceptable use of these systems, staff awareness, and oversight of our vendors and partners. This security professional will lead the management of risk and compliance of intellectual property, including day-to-day network and cyber tool monitoring, oversight, and ongoing security testing. The individual performing this role will enforce policies and procedures that ensure compliance with state, federal, and industry standards and requirements, ensuring our customers' and company's data are protected. As the Director of Information Security, you will implement a security-readiness plan and provide guidance on how to quickly and effectively respond to any and all security incidents. In addition, this role will be instrumental in implementing controls and monitoring capabilities that provide visibility into the organization's security posture. At RxVantage we transform how medical practices engage with life sciences resources and expertise to improve patient care. Our platform intelligently connects healthcare providers with the precise life sciences experts that they need, when they need them. As a result, medical practices stay on the cutting edge of patient care without disrupting workflows. Trusted by more than tens of thousands of healthcare practitioners and all major life sciences companies, RxVantage has powered millions of educational exchanges between healthcare teams and life sciences companies. What you'll be doing: Creating and implementing a security roadmap based on current and ongoing assessments Ensuring policies are developed and maintained from both a business & technical perspective for the application, data, and security needs of the organization Working with Legal to ensure agreements are congruent with policies Overseeing the GRC (Governance Risk and Compliance) process Ensuring compliance with industry laws and regulations for data security and privacy to include CCPR, 21 CFR Part 11, SOC2, NIST SP800-53 Monitoring the Identity and Access Management Framework Benefits: Competitive Salary 100% Company-Paid Premiums for Employee's Medical Health (HDHP 4500), Vision, and Dental Plans + $4,400 company sponsored contribution into an HSA Short-term and Long-term Disability Life Insurance 401k Matching Work from Anywhere within the US Flexible PTO 100% Paid Parental Leave Post-Parental Leave Program - $5k stipend to assist with expenses, 4 week 100% paid “Ease-Back” return to work transition period Charitable donation matching Location: Our “Work from Anywhere” philosophy is aimed at making sure that we recruit a diverse range of thought leadership to ensure that our technology is better able to serve local health care providers. Our goal is to hire the country's top talent and allow them to create an environment within the U.S. where they can do their best work. About Our Organization: At RxVantage, we're a small company with a big mission: to connect healthcare providers with the right life science experts and resources they need, exactly when they need them, to improve patient care. We've built a software platform that's changing the way providers learn about the latest medical advancements and technologies. Every year, our platform powers over 1 million educational exchanges between medical practices and life science companies, making it easier for them to stay informed and provide better care. We have a proven product, a strong mission, and a passionate team. Now, we're looking for talented people to help us grow even more. If you're driven, eager to make an impact, and ready to be part of something meaningful, we want to hear from you! --- RxVantage is an equal opportunity employer and dedicated to ensuring that we represent the local communities where our health and wellbeing providers serve as pillars of support to our family, friends, and neighbors. Our representation within these communities allows us to embody a diverse set of backgrounds, experiences, abilities and perspectives; and provide an inclusive environment for our team to feel empowered to be their authentic selves, without fear of harassment or discrimination.

Compliance & Information Security Manager Department: Compliance Reports To: VP of Compliance Installation Made Easy (“IME”) provides software and process management that enable retailers and contractors to offer installed home improvements to homeowners in a convenient, consistent, and affordable manner. IME senior management has over 100 years of retail management and home improvement industry experience. We are seeking a Compliance & Information Security Manager to build and manage our corporate compliance and information security governance program. The role will lead regulatory compliance initiatives, manage audit and certification efforts, and partner closely with Compliance, IT, and Security teams to support a strong risk and compliance posture. The candidate must be able to work independently in a remote environment. Essential Functions: Manage compliance programs related to PCI DSS, SOC 1 / SOC 2, and related frameworks. Serve as project manager for external audits and certifications, coordinating internal teams and external auditors. Maintain compliance with U.S. consumer privacy and data protection laws, including state privacy and breach notification requirements. Develop and maintain compliance, privacy, and information security policies and documentation. Review and redline agreements with customers, partners, and vendors, focusing on data protection, security, and compliance terms. Oversee the maintenance of the company's certifications and licenses, such as money services licensure and/or business registrations Support information security governance, risk assessments, vendor risk reviews, and remediation tracking. Provide compliance support during security incidents and investigations. Partner cross-functionally and provide compliance guidance and training across the organization. Perform other duties as required. Minimum Qualifications: 5+ years of experience in compliance, information security, risk management, or GRC roles. Hands-on experience managing PCI and SOC audits. Working knowledge of U.S. consumer privacy and data protection laws. Experience reviewing and redlining commercial agreements. Strong project management and communication skills. Bachelor's degree in a related field or equivalent experience. Preferred Qualifications: Certifications such as CISSP, CISM, CRISC, CISA, or CIPP/US. Experience in a SaaS or software environment. Familiarity with NIST or ISO 27001 frameworks. Physical Requirements: Prolonged periods of sitting at a desk and working on a computer. Benefits to working with IME: 100% remote work environment Employer provided equipment. Medical, dental, and vision insurance Health savings plan includes employer contribution to health savings account. Medical and dental flexible spending accounts Company paid basic life, short-term disability, and long-term disability insurance. 401K plan with employer match Company matches 100% of the first 4% of salary deferrals. All contributions, including employer contributions, are 100% vested immediately. Employee discount program for Electronics, Groceries, Travel, Entertainment, and more Employee assistance program Pay on demand. Critical illness, hospital indemnity, group accident, and legal insurance Paid time off. And more! We are an Equal Opportunity and Drug-Free Workplace. The is not an exhaustive statement of all duties, responsibilities, or qualifications of the job, nor is it intended to limit opportunities for necessary modifications. The Job Description does not constitute an employment contract of any kind.

Benefits: 401(k) 401(k) matching Competitive salary Dental insurance Health insurance Opportunity for advancement Paid time off Vision insurance Benefits/Perks Competitive Compensation Career Advancement Opportunities Great Work Environment Job SummaryWe are seeking an experienced Information Security Manager to join our team! As our Information Security Manager, you will be responsible for managing all Information Security projects, ensuring the safety and security of the data in our care, and identifying and eliminating threats before they start. You will also work closely with other departments to ensure compliance with security best practices and create reports to present to upper management and other department heads on security protocols. The ideal candidate has previous experience working in Information Security, has demonstrable experience leading a team, and has a deep understanding of best security practices. Responsibilities Manage IT projects and oversee goals, ensure metrics are being met, and projects are being completed in a timely manner Work closely with staff to manage any support issues that arise, handle all user access credentials, and hardware inventory Maintain and adjust any documentation for users in regard to common technology processes, hardware handling, and more Maintain and adjust any communications procedures to ensure staff issues are being heard and handled appropriately Investigate any security incidents and handle documentation and remediation Monitor security systems to protect data and spot any questionable activity before it becomes a threat Present reports to upper management to discuss security concerns and ongoing efforts, as needed Qualifications Previous experience in IT Security and Management preferred Strong interpersonal and communication skills Demonstratable experience and knowledge in IT, security, and best practices Strong leadership ability Self-driven and motivated The ability to meet deadlines and work under high-pressure situations Flexible work from home options available. Compensation: $140,000.00 - $150,000.00 per year PROVIDING QUALITY STAFFING AND CONSULTING SINCE 2011 Based out of San Antonio, Tex as, our minority women-owned company specializes in all staffing and consulting needs. Whether you're trying to hire a pharmacist, a respiratory therapist, or skilled and non-skilled laborer, we will staff your company with the best candidate. We bring extensive experience and professionalism and we will personalize our assistance to your needs and concerns. Most of our contracts are with the Army and Air Force as Sub-Contractors. Our staff has a quick turn around and have been able to fill positions within 48 hours with short notice, we have filled hard to fill locations and jobs, and managed over 16 contracts with over 70 employees at a time. Managed call-ins at 24/7 hospitals and ensured shifts were filled, and managed PRNs with notice of less than 24 hours. Also, provided temp laborers for next day jobs. Our consulting division provides contracting assistance, program managing, application assistance, certification assistance and proposal writing. We are very knowledgeable in a variety of areas and are eager to assist your company's prosperity.

At Crypto.com, our dedication to user security is led by our highly experienced Security Team. Comprising an international roster of seasoned cybersecurity experts, our team leads the company's Security, Privacy, and Security Compliance endeavors. The team includes holders of international patents for technologies integrated in our security architecture. Under the stewardship of a distinguished CISO recognized by the Forbes Technology Council and among the Global Top 100 CISOs, our team has consistently championed industry standards, acquiring certifications like ISO27001, ISO27701, ISO22301, PCI:DSS 3.2.1 (Level 1), NIST Tier 4, and SOC 2 Type II, in addition to the MPI License from Singapore MAS. Our Chief Information Security Officer reports directly to the CEO, underscoring the prioritization of security in our organization's hierarchy. Our Security Team not only places great emphasis on credentials and expertise but also deeply values hands-on experience, rapid cognition, and dynamic learning. The challenges in the world of crypto are ever-evolving, and as such, our team prides itself on quick adaptability and robust teamwork, ensuring that we stay ahead of potential threats and always safeguard our user base. About the Role As our Security Compliance Senior Analyst, you will be tasked with security compliance activities along with our journey. You are expected to take the initiative to assist us with several security compliance programs and certifications. You are required to address and review compliance gaps and give recommendations and support on remediation activities. You will also be trusted to provide technical advice to ensure that security compliance requirements are met throughout all business units. This role requires technical knowledge of network security, especially on-prem and cloud native architectures. A familiarity with US derivatives regulatory frameworks would be advantageous. Job Responsibilities: Assist in our security compliance programs, including ISO27001, ISO27701, PCI-DSS, SOC2 Type 2, and local regulations Participate in internal security and privacy assessments, internal and external audits, compliance certifications, and risk management Provide complete and accurate responses to internal and third-party enquiries on security compliance Perform security compliance assessment activities, including periodic technical, organizational, and third-party risk and control assessments, and managing remediation activities to completion Design and manage necessary control and framework required to comply with international standards and US local regulations Identify and drive process improvements for streamlining global security compliance operations Qualifications: 3-5 years of experience in information security, privacy, IT audit or IT risk management related roles. Prefer experience with one or more of the following: In-house security and privacy operations, conducting security control assessments, risk assessments or audits. Prefer experience with any of the following: ISO27001, ISO27701, SOC1, SOC2, PCI, SOX, COSO, cloud technologies, and data protection regulations and requirements. Ability to analyze and review US and Global privacy and information security compliance and provide guidance. Holders of security-related certifications/qualifications will be an advantage: CISSP, CRISC, CISM, CISA, ISO27001 LA, CIPT, CIPP/E, or other relevant certifications Experience leading compliance initiatives and working with auditors and/or external regulators It's a plus if you: Have experience in information security and privacy management in virtual assets, fintech, online services, platform services, or global services. Have experience in establishing information security and privacy framework to meet US regulations, (CFTC, FINRA, SEC, and other US based regulators.) Are a strong commitment to personal learning and development Are detail minded with an analytical mindset Have good communication skills with an ability to explain complex technical issues to non-technical business users Have prior experience with project management Have an interest and understanding of Blockchain and AI technologies ***************** Empowered to think big. Try new opportunities while working with a talented, ambitious and supportive team.Transformational and proactive working environment. Empower employees to find thoughtful and innovative solutions.Growth from within. We help to develop new skill-sets that would impact the shaping of your personal and professional growth.Work Culture. Our colleagues are some of the best in the industry; we are all here to help and support one another.One cohesive team. Engage stakeholders to achieve our ultimate goal - Cryptocurrency in every wallet. Work Flexibility Adoption. Flexi-work hour and hybrid or remote set-up Aspire career alternatives through us - our internal mobility program offers employees a new scope. Are you ready to kickstart your future with us? BenefitsCompetitive salary Attractive annual leave entitlement including: birthday, work anniversary 401(k) plan with employer match Eligible for company-sponsored group health, dental, vision, and life/disability insurance Work Flexibility Adoption. Flexi-work hour and hybrid or remote set-up Aspire career alternatives through us. Our internal mobility program can offer employees a diverse scope. Our Crypto.com benefits packages vary depending on region requirements, you can learn more from our talent acquisition team. About Crypto.com:Founded in 2016, Crypto.com serves more than 150 million customers and is the world's fastest growing global cryptocurrency platform. Our vision is simple: Cryptocurrency in Every Wallet™. Built on a foundation of security, privacy, and compliance, Crypto.com is committed to accelerating the adoption of cryptocurrency through innovation and empowering the next generation of builders, creators, and entrepreneurs to develop a fairer and more equitable digital ecosystem. Learn more at ******************* Crypto.com is an equal opportunities employer and we are committed to creating an environment where opportunities are presented to everyone in a fair and transparent way. Crypto.com values diversity and inclusion, seeking candidates with a variety of backgrounds, perspectives, and skills that complement and strengthen our team. Personal data provided by applicants will be used for recruitment purposes only. Please note that only shortlisted candidates will be contacted.

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Remote Information Security & Compliance Manager. This role is integral to enhancing the overall security strategy and compliance framework within the organization. You will lead the operations of security engineering and ensure the integrity of data by managing various aspects of vulnerability assessments, compliance programs, and incident response. Your efforts will safeguard critical systems and data while aligning security practices with industry regulations. This position demands a mix of strategic insight and hands-on technical expertise as you develop and implement security policies and initiatives to mitigate risks and ensure compliance.Accountabilities Lead vulnerability management, SIEM tuning, incident response, and threat investigations. Oversee secure baseline configurations and cloud security controls. Develop and manage all security policies, standards, and awareness training. Conduct risk assessments and manage third-party/vendor risk evaluations. Own the Disaster Recovery governance program and ensure effective plan execution. Guide cross-functional teams through security requirements and policy changes. Requirements Bachelor's degree in Cybersecurity, Information Systems, Computer Science, or equivalent experience preferred. 5+ years of hands-on IT security engineering or cybersecurity experience. Strong technical knowledge in AWS security, incident response, and vulnerability management. Experience in leading security or compliance functions effectively. Familiarity with SOC 2, HIPAA, GDPR, and CCPA compliance frameworks. Excellent communication skills for cross-functional collaboration and audits. Benefits Opportunity to work in a fully remote environment. Competitive salary and benefits package. Professional development and growth opportunities. Supportive work culture that values diversity and inclusion. Flexible working hours to promote work-life balance. Why Apply Through Jobgether? We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team. We appreciate your interest and wish you the best!Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.#LI-CL1We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

About this role: Wells Fargo is seeking an Information Security Engineering Manager. The Engineering Manager will lead a team of developers responsible for securing, modernizing, and evolving enterprise applications. This role oversees vulnerability management and application hardening efforts while driving the adoption of DevSecOps, automation, and standardized engineering practices. The manager will guide the team through modernization and transformation initiative, including refactoring legacy components, improving architecture, and preparing the platform for future cloud readiness. In this role, you will: * Provide strategic and forward‑thinking leadership to define engineering direction, technology roadmaps, and long‑term platform evolution * Lead the team in managing vulnerabilities, applying secure coding practices, and implementing application hardening to protect critical systems * Drive modernization efforts by transforming applications through refactoring, re‑architecting, and adoption of modern engineering practices * Guide the team through DevSecOps, automation, and standardized delivery processes to improve reliability, security, and speed of delivery * Collaborate effectively across security, architecture, and product teams to deliver scalable, resilient, and compliant solutions aligned with organizational goals * Manage a team of engineers that design, document, test, maintain and provide issue resolution recommendations for highly complex security solutions related to networking, cryptography, cloud, authentication or directory services, email, internet, applications or endpoint security * Manage security consulting on large projects for internal clients to ensure conformity with corporate information security policy, and standards * Possess subject matter expertise at a mastery level in current and emerging security solutions and best practices * Conduct technical investigation of security-related incidents, and conduct post-incident digital forensics to identify causes and recommend future mitigation strategies * Manage implementation of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity * Work with more experienced technologists and team * Interface with more experienced management * Manage allocation of people and financial resources for Information Security Architecture * Mentor and guide talent development of direct reports and assist in hiring talent Required Qualifications: * 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education * 2+ years of Leadership experience Desired Qualifications: * Experience managing and developing high‑performing Agile teams of software engineers and platform developers * Strong knowledge of DevSecOps practices including secure CI/CD pipelines, automated testing, and integrated security controls * Hands‑on understanding of Kubernetes operations, container orchestration concepts, and cloud‑native deployment patterns * Proficiency with cloud‑based application architectures and modern cloud engineering practices * Ability to drive engineering excellence through automation, observability, and standardized delivery processes * Proven collaboration skills with security, architecture, and product teams to ensure resilient, compliant, and scalable solutions * Demonstrated leadership in platform engineering to build and operate developer platforms, pipelines, and self‑service tooling * Experience leading application modernization of home‑grown/legacy systems, including refactoring, re‑architecting, and reducing technical debt * Track record of transformation leadership and "clean‑sheet" solution design to establish new engineering patterns and operating models * Expertise in CI/CD engineering and automation across on‑prem and cloud environments, including policy‑as‑code and secrets management * Ability to develop a cloud readiness roadmap and guide teams through staged migration or hybrid adoption while maintaining uptime and compliance Job Expectations: * Ability to work on-site in one of the listed locations in a hybrid environment * This position is not available for visa sponsorship Pay Range Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates. $119,000.00 - $187,000.00 Benefits Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs for an overview of the following benefit plans and programs offered to employees. * Health benefits * 401(k) Plan * Paid time off * Disability benefits * Life insurance, critical illness insurance, and accident insurance * Parental leave * Critical caregiving leave * Discounts and savings * Commuter benefits * Tuition reimbursement * Scholarships for dependent children * Adoption reimbursement Posting End Date: 23 Jan 2026 * Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Applicants with Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo. Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment and Hiring Requirements: a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

Why PlayStation? PlayStation isn't just the Best Place to Play - it's also the Best Place to Work. Today, we're recognized as a global leader in entertainment producing The PlayStation family of products and services including PlayStation 5, PlayStation 4, PlayStation VR, PlayStation Plus, acclaimed PlayStation software titles from PlayStation Studios, and more. PlayStation also strives to create an inclusive environment that empowers employees and embraces diversity. We welcome and encourage everyone who has a passion and curiosity for innovation, technology, and play to explore our open positions and join our growing global team. The PlayStation brand falls under Sony Interactive Entertainment, a wholly-owned subsidiary of Sony Group Corporation. Sony Interactive Entertainment LLC seeks a Staff Information Security Analyst in San Mateo, CA to define strategic GRC (Governance, Risk and Compliance) input in global initiatives, including Artificial Intelligence (AI) and Machine Learning (ML) adoption, cloud security, and enterprise wide policies, ensuring resilience while balancing business and regulatory needs. Requires a Master's degree in Cybersecurity, Information Security, or related field or equivalent, and four (4) years of experience conducting risk assessments on critical information systems to maintain and manage risk registers; facilitating the Security Risk Assessment methodology, policy, strategy and process; writing security assessment reports following security breaches and detailing the associated impact; monitoring and reviewing IT Security controls to identify operational effectiveness; mapping security controls to policies, standards, procedures and processes to ensure compliance with security measures; managing security remediation efforts and tracking status of security deficiencies; translating security risk mitigation plans into actionable items to mitigate risk in coordination with technical and business teams; developing and implementing policy frameworks for emerging technologies, including AI/ML and cloud security, with governance and legal stakeholders; applying industry standards including NIST, ISO 27001, and PCI DSS in support of organizational security objectives; supporting the evaluation of third-party vendor security through documentation review and risk assessment; contributing to the enhancement of vendor onboarding and compliance workflows; and, in executing duties, utilizing Archer GRC, ServiceNow, Splunk, JIRA, Confluence, SharePoint, Palo Alto Prisma Cloud and AWS. Telecommuting and/or working from home may be permissible pursuant to company policies. Sony is an EOE. Salary range: $185,639.00 - $261,000.00/year Equal Opportunity Statement: Sony is an Equal Opportunity Employer. All persons will receive consideration for employment without regard to gender (including gender identity, gender expression and gender reassignment), race (including colour, nationality, ethnic or national origin), religion or belief, marital or civil partnership status, disability, age, sexual orientation, pregnancy, maternity or parental status, trade union membership or membership in any other legally protected category. We strive to create an inclusive environment, empower employees and embrace diversity. We encourage everyone to respond. PlayStation is a Fair Chance employer and qualified applicants with arrest and conviction records will be considered for employment.

Title: Information Security SME/Developer with .NET development Duration : 5 Months contract (High possibility of Extension) Interview Type: Both iLinc Web Cam and In Person Interview Skills Required Experience working in Microsoft Identity Integration Server (MIIS) 2003 Required 2 Years Experience with Identity Lifecycle Manager (ILM) 2007 Required 2 Years Experience with Forefront Identity Manager (FIM) 2010 including design and implementation Required 2 Years Experience and strong development skills in the MS Metadirectory Services Namespace in C# Required 2 Years .NET development experience Required 5 Years Thanks Naimesh Solanki Sr. Technical Recruiter Phone: ************ x 6578 Qualifications Experience working in Microsoft Identity Integration Server (MIIS) 2003 Required 2 Years Experience with Identity Lifecycle Manager (ILM) 2007 Required 2 Years Experience with Forefront Identity Manager (FIM) 2010 including design and implementation Required 2 Years Experience and strong development skills in the MS Metadirectory Services Namespace in C# Required 2 Years Additional Information All your information will be kept confidential according to EEO guidelines.