Full-Time Head of Information Security & IT

Who we are

Investing in private equity or venture capital should be as easy as buying a stock on Robinhood but it isn’t. Instead of purchasing investments in a few clicks, investors fill out 200+ page forms.Passthrough simplifies investor onboarding, fund closing, and compliance with workflows that guide investors through only what applies to them and once they’ve invested, we save their information to create a reusable investor profile—so the next investment is even faster.

Since launching in 2020, we’ve processed tens of billions of dollars and helped 50K+ investors complete documents in as short as 2 minutes. We’re making an outdated, manual process into something modern, simple, and built for scale.

The problems you’ll solve

Passthrough’s customers and partners include large institutional fund managers, banks, and law firms who have sophisticated requirements. In order to work with them, we need to embody security, IT, and compliance excellence.

You will own all security, compliance, and IT at Passthrough, managing certifications like ISO 27001 and SOC II. You will also be doing the management and implementation of all IT work at Passthrough outside of the application itself. This includes device management, internal tech support, license management, and secure configuration of all of our third party vendors like Salesforce, Docusign, etc. You’ll collaborate with the engineering team when it comes to the Passthrough application.

We’ve already helped our customers raise billions of dollars and with your help we will increase that to trillions. Our customers are counting on us to safeguard their most sensitive information and help them raise money in a usually time sensitive process. As such, it’s crucial that we be secure and reliable.

The impact you’ll have

• Get us an ISO27001
• Manage and implement any needed policy changes
• Manage and implement any IT changes
• Work with engineering on infrastructure changes to the Passthrough application
• Run SOC II
• Manage our policies
• Manage our internal compliance processes
• Run our weekly compliance meetings
• Manage the annual audits
• Run IT
• Manage our devices through JAMF, Apple business manager, and Google Workspace
• Manage the secure configuration of third party vendors like Salesforce
• Provide tech support for Passthrough employees
• Represent Passthrough’s security and compliance externally
• Help prospects get comfortable with us in sales conversations
• Fill out DDQs / security questionnaires

Qualifications

• Experience with SOC 2, ISO 27001, or related frameworks
• Experience with GDPR and similar privacy frameworks
• Experience managing and implementing IT policies
• Experience managing and implementing InfoSec policies
• Experience deploying and managing devices with JAMF or similar tools
• Certifications such as CISSP, CISA, CISM, or equivalent.
• Ability to write Bash and Python scripts
• Ability to learn and adapt quickly
• Clear, concise communication skills

Desired

• Expertise in Google Cloud Platform
• Experience with DevOps

What is the last date for applying to the job?

Which countries are accepted for this remote job?