Information Security Architect

Summary

Join Airship as an Information Security Architect and design the framework of our security infrastructure, setting the vision for cybersecurity systems. Act as a technical expert, assessing system vulnerabilities and developing security policies and procedures. Educate users on security requirements, recommend system improvements, and prevent unauthorized access. Research security trends and compliance with privacy regulations, planning and executing security measures for Airship's information systems. Manage security assessments, produce security metrics, and assist sales with customer inquiries. Assess third-party vendors and their associated risks. This fully remote position may require up to 10% travel.

Requirements

• 4-6 years experience in the field of Information Security
• One or more industry certifications (CISSP, CCSP, OSCP/E/etc, GCIA, etc.)
• Proficient in at least one of the following scripting languages; Python, Java, Bash/shell, Ruby, PHP, etc
• Experience with a public cloud, preferably Google Cloud Platform (GCP)
• Working knowledge of how to protect and operate MacOS, Linux, and Windows systems
• Experience with helping companies obtain or audit compliance/certification with standards such as SOC2, ISO, HIPAA, etc
• Excellent spoken and written communication skills
• Strong attention to detail
• Ability to diagnose and squash technical debt
• Understanding of how to explain security to people with different technical abilities and backgrounds

Responsibilities

• Design and implement controls to ensure compliance with regulations and privacy laws
• Ensure compliance with all applicable configuration standards
• Assist with management of SOC2 audits as well as other compliance audits
• Participate in the Security on-call rotation
• Respond to emergencies and ensure we are acting in accordance with our documented policies and procedures
• Research security trends, new methods, and techniques used in unauthorized access of data to preemptively eliminate the possibility of system breach
• Recommend security controls and/or corrective actions for mitigating technical and business risk
• Provide guidance and direction on best practices for the protection of information
• Research trends and methods of compliance with current and emerging privacy regulations
• Plan, develop, and execute security measures for Airship’s information systems
• Update and maintain the security baseline
• Manage enterprise security assessments and configuration assessment tools
• Produce security metrics and reporting to demonstrate assessment coverage and remediation effectiveness
• Assist sales and account managers with customer inquiries about Airship’s security
• Assess third-party vendors and their associated risk

Benefits

• The starting base pay range for this position is: $123,000-$155,000 USD per year
• Some roles may also be eligible for commission, bonus, or other performance incentives
• Airship believes that employees should have the opportunity to benefit from value-creation, so equity is also offered with this role
• In addition, Airship offers a robust benefits package as part of our Total Rewards approach to compensation
• This position is fully remote and may require up to 10% travel based on business needs or as requested by your manager