Security Program Manager

Act-On Software

Portland, OR, US / United States of America
  • Job Type: Full-Time
  • Function: Engineering Prod Mgmt/Dev
  • Post Date: 06/03/2021
  • Website: act-on.com
  • Company Address: 121 SW Morrison St 16th Floor, Portland, OR, 97204

About Act-On Software

Act-On Software is the world’s growth marketing leader, offering solutions that empower marketers to move beyond the lead and engage targets at every step of the customer lifecycle.

Job Description

The Information Security Program Manager is responsible for monitoring and improving Act-On’s security practices.  The role is an Individual contributor, responsible for coordination, tracking, reporting, and supporting multiple high visibility security efforts . You will be responsible for delivering the desired outcomes of security programs/projects. 


Responsibilities

  • Leads, coordinates, and oversees internal and external security audits, including compliance and penetration testing
  • Has ownership stake in audit and penetration testing activities, including prioritization of remediation efforts and cross-team planning, implementation, and status reporting (Lacework, Outpost 24)
  • Primary administrator for 3rd party security software, (i.e. Lacework, Tugboat Logic)
  • Identifies technical security gaps and creates recommendations/roadmaps based on observations; works across teams to build and implement remediation plans
  • Works with information systems custodians (i.e. department managers, user community and systems administrators) at different levels in the organization to understand their respective security needs and assists with implementing
  • Leads/Participates in various review processes, including vendor security assessments, project security assessments, and technical solution design reviews
  • Develops security-related policies and procedures and participates in review and enforcement of policies
  • Participates in, and may lead, incident response processes
  • Participates in, and may lead, tabletop exercises
  • Leads business education and training efforts related to Information Security
  • Develops and maintains proficiency through ongoing education, work assignments, research and industry/user group participation; demonstrates practical application of learning and actively shares knowledge across functional area
  • Ability to work outside of core hours in support of security related events/escalations

Skills and Experience

  • Experience with compliance program requirements, such as PCI, SOC2, ISO…
  • A thorough understanding of key information security concepts, best practices, and frameworks (i.e. NIST CSF)
  • Demonstrated experience leading tabletop exercises, penetration testing engagements, and incident response activities
  • Experience with system administration and auditing of cloud systems

CISM, CISSP, CCSP certifications a plus

  • Ability to communicate effectively with all levels of the organization and technical understanding, appropriately tailoring messages based on audience
  • Excellent oral and written communication skills
  • Ability to manage project work across teams and including other internal and external (vendor/partner) staff

Related Jobs

Regional Sales Manager

Act-On Software - Portland, OR, US

Account Manager

Act-On Software - Portland, OR, US

Sr. Software Engineer (Front-end)

Act-On Software - Portland, OR, US

Sr. Software Engineer

Act-On Software - Portland, OR, US

EMEA Marketing Manager

Act-On Software - Reading, GBBerkshire, GB
Disclaimer: Local Candidates Only
This company does NOT accept candidates from outside recruiting firms. Agency contacts are not welcome.