Manager of Information Security and Compliance
TLDR
Leads security operations and regulatory compliance initiatives, developing policies and coordinating audits across ISO, SOC, and FedRAMP to protect data and systems.
iboss is a cloud security company that enables the modern workforce to connect securely and directly to all applications from wherever they work. Built on a containerized cloud architecture, iboss delivers security capabilities such as SWG, malware defense, RBI, CASB and data loss prevention to all connections via the cloud, instantaneously and at scale. This eliminates the need for traditional network security appliances, such as VPNs, firewalls and web gateway proxies, which are ineffective at protecting a cloud-first and mobile world. Leveraging a purpose-built cloud architecture backed by 230+ issued and pending patents and more than 100 points of presence globally, iboss processes over 150 billion transactions daily, blocking 4 billion threats per day.
- Lead the GRC team, ensuring alignment with organizational security and compliance objectives.
- Support internal information security audit activities and serve as the primary interface with external auditors and third-party assessors.
- Collaborate with departmental stakeholders to align policies and procedures with industry security frameworks, including SOC 2, ISO 27001, ISO 9001, FedRAMP and others.
- Establish and track long-term milestones for compliance activities, planning a year or more in advance.
- Demonstrate strong written communication skills for policy articulation, documentation, and reporting.
- Maintain detailed records of events, tasks, and timelines during incident response and bridge calls involving multiple teams.
- Manage long-term compliance obligations independently, without requiring direct oversight.
- Oversee and execute security or technology projects as needed, ensuring successful delivery within scope and timeline.
- Coordinate with technical teams to conduct annual contingency exercises, including disaster recovery tests and business continuity procedures.
- Apply best practices in risk management to assess, mitigate, and monitor security and compliance risks effectively.
- 4-year college degree or related experience
- 5 - 10 years’ experience in technology with a security focus
- Network, secure application design or systems design experience
- CISSP, CISA, CISM or similar industry certification preferred
- Professional communicator and comfortable speaking to internal shareholders and executives
- Possess a strong work ethic and team player mentality
- Highly developed sense of integrity
- Strong detail orientation and listening skills
- Strong decision making and analytical abilities
- US Citizen
- Health, Vision, Dental - open to domestic partners
- 401K with company match
- Unlimited Paid Time Off (PTO)
- Company-paid holidays
Benefits
Equity Compensation
401K with company match
Health Insurance
Health, Vision, Dental - open to domestic partners
Paid Time Off
Company-paid holidays
iboss is a cloud security company that empowers modern workforces to connect securely to applications from anywhere. Its AI-powered Zero Trust SASE platform leverages a containerized cloud architecture to deliver essential security features like SWG, malware defense, and data loss prevention, eliminating outdated network security appliances. With over 150 billion transactions processed daily and trusted by more than 4,000 enterprises, iboss is redefining how organizations secure their cloud-first environments.