Director of Information Security and IT

Thought Industries is a leading enterprise learning platform designed to help organizations deliver exceptional customer, partner, and professional training at scale. Founded in 2014 and headquartered in Boston, the company is focused on driving customer lifetime value and revenue through learning. With committed PE backing from Luminate Capital Partners, this is an exciting opportunity to partner with industry leaders.

Role Overview

The Director of Information Security is responsible for establishing and implementing information security strategies, policies, standards, and risk management processes for both our internal operations and SaaS product offerings. This is a full-time position based in our Boston office, with a requirement to work onsite at least three (3) days per week as part of our hybrid work model. This role reports to the Chief Financial Officer. 

Key Responsibilities:

• Lead our enterprise information security strategy and implementation to create a competitive advantage 

• Be our customer-facing security expert for both customers and prospects, including completing RFP responses

• Develop, implement, and monitor our strategic, comprehensive enterprise information security and risk management program

• Complete our SOC2 certification process and other security certifications, audits, and assessments

• Lead the identification, reporting, and response to information security incidents, if any.

• Responsible for staying abreast of the changing landscape of cybersecurity threats while updating our information security plan as needed

• Work directly with the business units to facilitate risk assessment and risk management processes

• Partner with business stakeholders across the company to raise awareness of risk management concerns

• Assist with the overall business technology planning, providing current knowledge and future vision of technology and systems

• Develop metrics for measuring and improving the effectiveness of the overall information security plan and reporting to the executive team 

• Manage our internal and outsourced IT support function

• BS or MS in Computer Science, Engineering, or Information Security

• Minimum of 5 years at a rapidly growing SaaS Company

• Minimum of 10 years of experience in a combination of risk management, information security, and IT positions

• Experience implementing compliance programs addressing regulations, including SOC2, ISO27001, GDPR, CCPA, SAD-Q, PCI, etc.

• Industry certification (CCNP-Security, CCNP, CISA, CISSP)

• Excellent written and verbal communication skills and a high level of personal integrity

• Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams

• Experience with customer InfoSec requests and vendor management

• Experience with AWS computing and SaaS infrastructure

• Ability to prioritize and multitask 

• Flexible and adaptable in work approach

All your information will be kept confidential according to EEO guidelines.

The salary range for this position is $175,000 to $200,000, with eligibility for a bonus of up to $20,000

Thought Industries does not discriminate in employment opportunities or practices on the basis of race, color, religion, sex, national origin, age, disability, or any other characteristic protected by law. Employment decisions at Thought Industries are based on merit, qualifications, and abilities.