Director of Security

Coviance is seeking a Director of Security to serve as the process owner of all assurance activities related to the availability, integrity, and confidentiality of customer, business partner, employee, and business information in compliance with the information security policies. The Director of Security collaborates with the CTO to identify acceptable levels of risks and works with leadership to manage security risks. This position partners across functions to drive major security initiatives and will be responsible for effectively communicating goals, risks, and tradeoffs to executive leadership.
Essential Functions:

• Develop, implement, and monitor a strategic, comprehensive enterprise information security program
• Define and own multi-year cybersecurity and Information Security, objectives, and associated key results.
• Collaborate with the CTO/CIO on team compensation, design, hiring, and retention plan for your group in alignment with company-wide policies
• Partner with Product & Engineering leadership for the development, planning, and execution of major security initiatives.
• Lead Security Incident Response, Third Party Information Security Assessment, Data Protection and Encryption, Identity & Access Management, and Privileged User Access to protect customer and employee data
• Collaborate with Coviance leadership and proactively create strategies to understand and mitigate potential security problems that might arise from acquisitions or other big business moves
• Plan and lead the SOC2 Type II audit including the gathering of evidence, quality assurance of evidence, management of audit relationship, project management, and response to audit findings.
• Determine and communicate any gaps that Coviance has in maintaining its SOC 2 Type 2 designation.
• Identify and manage vendors necessary for the effective functioning of the security program.
• Ensure effective management of network and endpoint management including patching and monitoring of systems as it relates to security.
• Monitor threat intelligence and analyze impacts and create timely reporting of each to the CTO/CIO.

Qualifications:

• Bachelor's degree or equivalent work experience
• 5+ years of experience in security, IT or related discipline
• Understanding of technology risk management concepts including threats, risks, patterns, and trends
• Knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST.Analytical and problem-solving skills
• Able to work in teams and welcome candid guidance conversations at all levels.
• Excellent communication skills, both written and verbal
• Ability to multi-task and meet deadlines with minimal supervision

About Us
Founded in 2015, Coviance (formerly LenderClose) is a fintech company on a mission to perfect the lending experience for community lenders and borrowers through automation and intelligence. A cloud-based platform, Home Equity Express™ (HEx), automates the home equity lending process through configurable workflows with data-driven decisioning intelligence elevating the lending experience for borrowers and lenders. For Credit Unions and Community Banks, Coviance is an out-of-the-box solution that is easy to implement and deploy and allows them to focus on what matters most - "the borrower's experience".