Director, Information and Security Compliance

If you're interested in joining a high-growth startup as an Information Security and Compliance leader at the company, this is an amazing opportunity for you.

Bizzabo is looking for its Information Security And Compliance Leader. We're looking for someone who will take our security to the next level, work cross-functionally, establish processes and policies, communicate security requirements and statuses to customers and vendors, and ensure Bizzabo adheres to the highest standards of Enterprise Security compliance.

Bizzabo powers immersive in-person, virtual, and hybrid experiences. The Bizzabo Event Experience OS is a data-rich open platform that allows Event Experience Leaders to manage events, engage audiences, activate communities, and deliver powerful business outcomes — while keeping attendee data private and secure. Bizzabo powers the events of world-leading brands — from Fortune 100 enterprise organizations and financial institutions to creative agencies and scaling tech companies. Bizzabo was founded in 2011 by Boaz Katz, Alon Alroy, and Eran Ben-Shushan. Headquartered in New York and Tel-Aviv, Bizzabo has additional offices in Kyiv, Montreal, and London to support its global customer base.

The Bizzabo Community

At Bizzabo we believe that culture is more than just happy hour and a ping pong table (though we do love a good ping pong tournament), we believe that culture is everything we do and how we do it. Our values are what help to guide us in our interactions with each other, our customers, and anyone who crosses paths with Bizzabo. Bizzabo fosters an environment of communication and trust. We don’t just offer the opportunity to share ideas, we encourage you to own your ideas and bring them to fruition.

Our core values as a community have carried over to the virtual workspace as we’ve transitioned to remote work in light of COVID-19. We are closely monitoring the situation and will be further assessing the situation in January 2021.

Perks

• We offer a comprehensive insurance package at no out of pocket cost to the employee, 401k, Pre-tax commuter benefits, and a generous vacation policy.
• We are a dog friendly in-person and virtual office!
• For new employees joining us during this remote work period, we offer a comprehensive virtual onboarding experience with a stipend to get your remote office set up. 
• We have frequent Bizzabonding activities including bi-weekly sponsored lunches, bi-weekly happy hours, virtual cooking classes, yoga classes, fitness classes, and other virtual bonding activities to keep our Bizzaboers engaged and connected. We welcome all new ideas and encourage each Bizzaboer to participate or lead their own virtual event!
• Our office is located on 27th and Broadway south of Madison Square Garden. This vibrant neighborhood includes great lunch spots, train accessibility, and views of the Empire State Building.

#LI-MP1

Requirements

What you’ll be doing:

• Develop ongoing strategy and implementation plan security and compliance
• Lead, update and own roadmap for information security policies and procedures plus compliance initiatives, including our SOC2, ISO27001 and PCI certifications
• Perform risk assessments and drive improvements
• Work with auditors, and lead compliance activities and audits
• Plan, manage, and complete deliverables related to documentation and system configuration changes across all R&D platforms and employee devices
• Execute system audits using our compliance management tools
• Proactively collaborate cross functionally to clearly articulate and ensure security requirements are met by instilling process in ongoing company operations
• Apply a security change management/communication process and tools to create a plan to ensure adoption of the required changes for a security projects or initiatives
• Manage and monitor device security technologies and web-based systems (device management, software and patch deployment, etc.)
• Respond to client inquiries and complete security questionnaires for our customers

Who you are:

• BS in technology related field or equivalent experience
• MS in technology or security field or certifications in security technologies a plus
• Experience in successfully leading and implementing infosec and compliance programs (SOC2, ISO27001, Cookies Laws, PCI, etc.)
• Experience engaging with key stakeholders across the organization to drive change
• Track record of managing and passing audits
• Experience with AWS or other cloud infrastructure a plus
• Self-motivated, independent, business oriented 
• Outstanding ability to write clear documentation describing policies and procedures
• Meticulous attention to detail
• A can-do mentality and willingness to flex at a startup to handle both the minor tasks and the major initiatives
• Outstanding organizational skills: ability to manage and complete global projects with multiple stakeholders and deliverables