Director of Information Security

About Us:

YipitData is the leading market research and analytics firm for the disruptive economy and recently raised up to $475M from The Carlyle Group at a valuation over $1B.

We analyze billions of alternative data points every day to provide accurate and detailed insights on ridesharing, e-commerce marketplaces, payments and more. Our on-demand insights team uses proprietary technology to identify, license, clean and analyze the data that many of the world’s largest investment funds and corporations depend on.

For three years and counting, we have been recognized as one of Inc’s Best Workplaces. We are a fast-growing technology company backed by The Carlyle Group and Norwest Venture Partners. Our offices are located in NYC, Austin, Miami, Denver, Mountain View, Seattle, Hong Kong, Shanghai, Beijing, Guangzhou, and Singapore. We cultivate a people-centric culture focused on mastery, ownership, and transparency.

About The Role:

We are seeking a Director of Information Security to join our small but growing team of cybersecurity professionals. You will be responsible for implementing our strategic goals as they pertain to application security, corporate security, and data governance, with a focus on risk and compliance. This role will report to our Chief Information Security Officer, Paul Pasquale.

This is a remote-friendly opportunity that can sit in NYC (where our headquarters are located), one of our office hubs (Austin, Miami, Denver, Mountain View, or Seattle), or anywhere else in the US. However, depending upon where the remote work is performed, income could be subject to New York State tax withholding. Please note that we pay NYC-based salaries for US roles regardless of where employees choose to work.

As A Director of Information Security, You Will:

• Develop and implement the company’s security roadmap
• Work closely with the CISO and other leaders across Engineering, Product, IT, and Legal to execute security initiatives
• Develop and maintain security controls, policies, procedures, standards, and guidelines that mitigate risk and comply with applicable laws and regulations
• Monitor and report on the performance of security, risk, and privacy controls
• Work with external partners such as clients and vendors to integrate security throughout our supply chain
• Lead the security training and awareness program; communicate best practices and risks to the workforce
• Manage and build upon our internal risk management framework
• Ensure that our security program aligns with appropriate security frameworks and baselines (ISO 27001, SOC2, NIST, CIS, etc.), and lead our response to security audits
• Support and collaborate with other members of our growing information security team

You Are Likely To Succeed If:

• You have relevant, progressive experience managing information security controls and security requirements of systems with at least 5+ years of security or privacy-related experience
• You have a history of collaborating with stakeholders across an organization, understanding and balancing business goals and objectives with security and compliance requirements
• You have domain knowledge of relevant security management frameworks, including but not limited to ISO 27001, SOC 2, NIST 800-53, ISO 27701
• You have experience and expertise in writing, updating, and implementing security policies and processes and documenting controls, risks, and remediation plans
• You have experience with cloud infrastructure platforms, software engineering, networking concepts, and multiple operating systems
• You have experience as a subject matter expert and you have experience collaborating/presenting to leaders across an organization
• You are a team player and are motivated by the company’s success
• You have a track record of developing and helping others such as peers, direct reports, and clients
• You are creative and are interested in experimenting with novel approaches to improving security in a fast-paced environment
• You have demonstrated experience positively influencing employee behavior (training, marketing, strong empathy and interpersonal skills, and/or leadership experience) 

What We Offer:

Our compensation package includes comprehensive benefits, perks, and a competitive salary: 

• We care about your personal life and we mean it. We offer flexible work hours, flexible vacation, a generous 401K match, parental leave, wellness budget, learning reimbursement, team events, and more!
• Your growth at YipitData is determined by the impact that you are making, not by tenure, unnecessary facetime, or office politics. Everyone at YipitData is empowered to learn, self-improve, and master their skills in an environment focused on ownership, respect, and trust.
• The annual base salary for this position is anticipated to be $200K ~ $209K. The final offer may be determined by a number of factors, including, but not limited to, the applicant's experience, knowledge, skills, and abilities, as well as internal team benchmarks. The final offer may include a bonus.
• The compensation package also includes equity.

This role may be performed fully remotely within the United States. Please note that our US headquarters are located in NYC. We also have office hubs in Austin, Miami, Denver, Mountain View, and Seattle. If the remote work is performed outside of these offices, income may be subject to New York State tax withholding.

We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity employer.

Job Applicant Privacy Notice