Information Security and Compliance Manager

**WorkJam**’s mission? To provide the best Digital Workplace for frontline and hourly workers. Through our industry-leading Digital Frontline Workplace platform, we are positively impacting the lives of millions of frontline employees worldwide, enabling them to achieve breakthrough productivity levels at companies of all sizes. We’re proud of our dedicated teams who are driven to make a difference in the world. Join our team today and bring your innovative ideas, passion, and commitment to excellence to make an impact on our products and the new markets we create

*
Information Security and Compliance Manager*
Reporting to the CISO, the Information Security and Compliance Manager will be working to ensure the company operates in compliance with applicable security and privacy-related standards and requirements and will demonstrate such commitment both internally and externally by driving continued security management compliance efforts. This includes maintaining and reporting on security controls required by ISO 27001, ISO 27018, SOC 2, Privacy by Design, PCI-DSS, and other regulatory requirements and security and privacy compliance frameworks.

**What you will be doing**:

- Manage company security and privacy certification and compliance initiatives, including SOC 2, ISO 27001/27018 and other compliance goals as business requires
- Execute the day-to-day security and compliance activities required as part of WorkJam SOC 2 and ISO27001 compliance.
- Map and document applicable security and privacy compliance requirements
- Monitor existing controls and conduct periodic audits and reviews to ensure their efficiency and operating effectiveness, to ensure that compliance requirements are met and to identify and report on potential issues
- Develop metrics to report on security and compliance
- Oversee information security audits, whether by performed by organization or third parties
- Assess current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvement
- Implement and oversee technological upgrades, improvements, and major changes to the information security environment
- Serve as a focal point of contact for the information security team and the customer or organization
- Communicate information security goals and new programs effectively with the organization
- Collaborate with development teams on security and privacy impact analyses and definition of security, privacy and compliance requirements relating to our products and services
- Respond to customer security and privacy compliance-related enquiries
- Manage the development, review and implementation of security and privacy-related policies, standards, guidelines, and processes throughout the organization
- Provide Information Security awareness training to organization
- Manage security team members and all other information security personnel
- Provide training to information security personnel during onboarding

**What we're looking for**:

- Professional experience with SaaS and Mobile delivery platforms.
- Bachelor’s degree in Information Systems, Accounting, Business or related field
- Professional certifications in the security, privacy, risk management and audit areas highly desirable: CISSP, CRISC, CISM, CISA, CIPP, etc.
- Ability to understand and translate business needs and compliance requirements into actionable technical and administrative controls
- Good understanding of security, privacy and compliance domains
- Excellent analytical skills and attention to detail
- Excellent communication & documentation skills
- Demonstrated initiative
- Ability to plan and deliver on commitment
- Good prioritization skills
- Strong problem-solving and decision-making skills

**What we offer**:

- Competitive salary and benefits package
- 4 weeks’ vacation
- Contribution to your retirement/pension plan
- A flexible and remote/hybrid work environment
- Work with the latest technology
- A dynamic and inclusive culture
- A supportive team that will encourage your professional growth and development