Full-Time Chief Information Security Officer

MeridianLink is hiring a remote Full-Time Chief Information Security Officer. The career level for this job opening is Senior Manager and is accepting USA based applicants remotely. Read complete job description before applying.

This job was posted 4 months ago and is likely no longer active. We encourage you to explore more recent opportunities on our site. However, you may still try your luck using 'Apply Now' link below. We recommend focusing on newer listings available here.

MeridianLink

Job Title

Chief Information Security Officer

Posted

Career Level

Full-Time

Career Level

Senior Manager

Locations Accepted

USA

Salary

YEAR $55000 - $87500

Job Details

The Chief Information Security Officer will lead MeridianLink’s information security functions. This position provides leadership and oversight for MeridianLink’s security program. Responsible for both IT security operations, and information security compliance with a focus on MeridianLink’s product security architecture and SaaS security operations. The position will work with peers in Engineering, Enterprise Architects and the Product Owners to provide technical insight and industry perspective in the creation, delivery, and integration of complex and comprehensive security solutions. Key Responsibilities Management and Leadership.

•Technical experience to lead on architectural and technical security by design •Develop strong working relationships with technology and business partners across multiple locations in support of security, compliance, and audits for the organization. •Provide strong positive and collaborative leadership to executive teams, other departments such as engineering, product management, legal, support, and IT. Also, lead and manage Information Security teams composed of internal and external resources •Take initiative to identify gaps and changes required to address security threats and compliance with products. •Present risk information to executives and advise on remediations.

Information Security Awareness

•Implement organization-wide security awareness initiatives and provide timely information to employees and leadership regarding new and emerging threats •Collaborate with all teams to communicate and enforce security controls

Legal and Governance

•Develop and maintain processes, policies, and technical controls in support of certifications programs and continual compliance with ISO/IEC 27001/2, SOC 1, SOC 2, and other applicable international privacy regulations. •Continuously monitor security controls for all IT Security frameworks •Oversee customer Information Security audits

Qualifications Education & Experience Bachelor’s degree in a relevant field or equivalent years of experience is required. Equivalent years of experience are determined as one year of technical experience for every year of college requested.

•Minimum 10 years of experience in Enterprise Information and Product Cyber security •Strong knowledge of Secure Development Lifecycle and CI/CD automation tools (TF, Git, Jenkins) •Knowledge of regulatory and standards-based compliance related to cloud and mobile applications, and data confidentiality (e.g., GDPR, FEDRAMP/FISMA, SOC 2, and ISO 27001, etc.) •Experience with the application of risk identification and evaluation techniques •Advanced knowledge of Cyber Security and full knowledge of multiple (full-stack) related engineering functions •Preferred experience with securing cloud architectures (Azure/AWS) and/or Kubernetes •Preferred experience leading red/blue security teams and working with engineering teams to remediate findings

•Responsible for the review and certification of all back up and disaster recovery plans •Oversee the secure development, design and implementation of new applications and changes to MeridianLink SaaS applications •Direct and manage computing and information security plans, policies, programs and project schedules •Continue to build and enhance secure application design and development policies and practices •Partner with IT to ensure that the technical and security needs of internal systems and services are met •Develop and maintain security policies and procedures including, but not limited to, incident response plans, business continuity plans, etc. •Lead the implementation and operation of security services such as vulnerability assessment, threat monitoring and incident response •Oversee security design and architecture including IaaS and PaaS cloud migrations •Lead vulnerability, change, and configuration management, for applications and infrastructure •Oversee administration of security services, including antivirus, IDS/IPS, data loss prevention, and security monitoring. •Customer facing responsibilities, such as pre-sales, facilitating due diligence requests, RFPs, and customer security concerns •First line incident response and support for remediation •Provide Identity and Access management solutions to ensure appropriate access to sensitive data •Monitor the SDLC and ensure that coding is done with secure best practices (OWASP framework or equivalent) including modern deployment methods such as CI/CD pipelines   Security Assessments and Audit Management •Experience leading red/blue security teams. •Conduct application assessments (design reviews and pen tests) and lead implementation of associated application security technologies •Perform risk assessments on new technologies or discovered vulnerabilities.

 

 

FAQs

What is the last date for applying to the job?

The deadline to apply for Full-Time Chief Information Security Officer at MeridianLink is 9th of September 2024 . We consider jobs older than one month to have expired.

Which countries are accepted for this remote job?

This job accepts [ USA ] applicants. .

Related Jobs You May Like

Digital Identity Specialist (remote)

Lisbon, Portugal
1 day ago
Digital Identity
EIDAS Regulation
Mobile Development
Penguin Formula
Full-Time
Experienced

CSIRT ANALYST (M/F/D)

Munich/Augsburg (Germany) or Remote (from anywhere in Germany)
2 days ago
Cybersecurity
Digital Forensics
Incident Response
ADVENS
Full-Time
Experienced

Threat Intelligence Researcher

Indonesia
2 days ago
Malware Analysis
Python
Security Research
SecurityScorecard
Full-Time
Experienced

Embedded VSOC Analyst (Japanese Speaker)

Australia
3 days ago
Data Visualization
Geopolitical Analysis
Japanese Language
Sibylline Ltd
Full-Time
Experienced

Embedded VSOC Analyst (Korean Speaker)

Singapore, Singapore
3 days ago
Cyber Security
Data Analysis
Geopolitical Risk
Sibylline Ltd
Full-Time
Experienced

Embedded VSOC Analyst

Brazil
3 days ago
Data Analysis
Geopolitical Risk
Intelligence Gathering
Sibylline Ltd
Full-Time
Experienced

Security Architect

Worldwide
3 days ago
Azure DevOps
Jira
Zachary Piper Solutions, LLC
Full-Time
Experienced

Solutions Consultant ( Healthcare / DMV )

Washington , DC
3 days ago
Cloud Architectures
Cybersecurity Solutions
Network Security
Palo Alto Networks
Full-Time
Experienced
YEAR $198000 - $273000

Information Security Engineer - IoT

Chicago, Illinois
3 days ago
Cloud Security
Cybersecurity
IoT Security
Fortune Brands
Full-Time
Experienced
YEAR $115000 - $130000

DevSecOps Engineer

Novi Sad, Serbia
4 days ago
AWS
Azure
Cloud Security
Headhunte.rs
Full-Time
Experienced

Senior Penetration Tester & Reporting Specialist

Beograd, Serbia
4 days ago
Customer Interaction
Cybersecurity
Penetration Testing
Headhunte.rs
Full-Time
Experienced

Security Analyst

USA
4 days ago
Communication
SOC Assessment
Robert Half
Full-Time
Manager
YEAR $90000 - $115000

Looking for a specific job?