Benevity is hiring a
Chief Information Security Officer

Summary

Join Benevity, a company that provides technology to help companies and their employees take social action on the issues they care about. We are seeking a Chief Information Security Officer to deliver a technology-driven growth strategy in a demanding high-growth SaaS company.

Requirements

• Bachelor's degree in computer science, information systems, or a related field
• Master's degree in business administration (MBA) or information security is a plus
• Professional certifications such as CISSP, CISM, or CRISC are highly desirable
• Extensive experience (10+ years) in information security, with at least 5 years in a senior leadership role
• Proven experience in implementing information security strategies
• Experience managing a team of information security professionals
• Excellent problem-solving skills and the ability to think strategically while paying attention to details
• Strong communication and interpersonal skills, with the ability to effectively collaborate with diverse stakeholders, including technical and non-technical team members, executives, and customers

Responsibilities

• Develop and implement a comprehensive information security strategy addressing business needs that include money movement and the protection of our users’ PII
• Identify, evaluate, and report on information security risks in a manner that meets compliance and regulatory requirements, and communicate risks to executive leadership and the Board
• Work directly with the business units to facilitate IT risk assessment and risk management processes, and work with stakeholders throughout the enterprise on identifying acceptable levels of residual risk
• Provide leadership and direction to the information security team
• Oversee the investigation of security breaches and assist with disciplinary and legal matters associated with such breaches as necessary
• Develop, maintain, and publish up-to-date information security policies, standards, and guidelines
• Stay abreast of the latest security technologies and trends, and evaluate and recommend new security technologies and investments
• Ensure compliance with all relevant information security laws and regulations
• Work closely with internal and external auditors
• Liaise with regulatory bodies and law enforcement agencies as needed
• Foster a culture of collaboration, knowledge sharing, and continuous learning among the technical teams, promoting cross-functional communication and the exchange of ideas