Director of Information Security
Thought Industries
About Thought Industries: 
Thought Industries is focused on building cutting edge technology with our customer training Platform for those who are driving the future of online learning. Our goal is to help them build, scale and deliver training and behavior change that leads to higher engagement, product proficiency, and customer retention.
Thought Industries is looking for a Director of Information Security (InfoSec) to join our rapidly-growing SaaS company. We are seeking an experienced, energetic, engaging and visionary leader who wants to become part of a dedicated and high performing team. As Director of Information Security, you will be responsible for setting and implementing information security strategy, policy, standards, and risk management processes for both our internal operations and our SaaS product offerings.
Responsibilities:

• Lead our enterprise information security strategy and implementation to create a competitive advantage and be our customer facing “security expert”
• Develop, implement and monitor a strategic, comprehensive enterprise information security and risk management program
• Complete our SOC2 certification process and other security certification and assessments
• Lead the identification, reporting, and response to information security incidents.
• Responsible for staying abreast of the changing threat landscape of cyber security threats and appropriately responding to them
• Work directly with the business units to facilitate risk assessment and risk management processes
• Develop and enhance an information security management framework
• Partner with business stakeholders across the company to raise awareness of risk management concerns
• Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems
• Develop metrics for measuring and improving the effectiveness of the overall information security plan and report them to the executive team and board
• Manage our outsourced IT support provider

Required Skills/Experience

• BS or MS in Computer Science, Engineering, or Information Security
• Minimum of 5 Years at a rapidly growing SaaS Company
• Minimum of 10 years of experience in a combination of risk management, information security and IT positions
• Experience implementing compliance programs addressing regulations including SOC2, ISO27001, GDPR, CCPA, SAD-Q, PCI, etc.
• Industry certification (CCNP-Security, CCNP,CISA, CISSP) 
• Excellent written and verbal communication skills and high level of personal integrity
• Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams
• Experience with customer InfoSec requests and vendor management
• Experience with AWS computing and SaaS infrastructure
• Ability to prioritize and multitask. Flexibility and adaptability in work approach