Full-Time

Information Security Risk Management Director

Posted on 8/28/2024

Bill.com

Bill.com

1,001-5,000 employees

Financial platform for managing business operations

Fintech
Financial Services

Compensation Overview

$185.1k - $230.9kAnnually

Senior

San Jose, CA, USA + 1 more

More locations: Draper, UT, USA

Position can be in San Jose, CA, or Draper, UT, or working remotely.

Category
Cybersecurity
IT & Security
Requirements
  • Bachelor’s degree in Computer Science, Information Security, or a related field.
  • 10+ years of experience in security risk assessment, with a focus on qualitative analysis, or equivalent and relevant security experience.
  • Strong technical knowledge of security controls, including but not limited to access controls, encryption, network security, and vulnerability management.
  • Demonstrated experience working within a GRC framework, with an understanding of regulatory and compliance requirements (e.g., PCI DSS, SOC).
  • Excellent communication skills at all levels, with the ability to articulate complex technical concepts to diverse audiences, including C-Suite.
  • Proven ability to work collaboratively with engineering teams to assess and mitigate security risks.
  • Experience with security risk remediation programs, including technical implementation and compliance considerations.
  • Strong analytical and problem-solving skills, with attention to detail and accuracy.
Responsibilities
  • Lead the comprehensive cyber risk management program including strategy, framework, process, execution, and continuous maturity
  • Conduct security risk assessments to identify potential risks from threats and vulnerabilities within the organization's infrastructure and applications.
  • Perform control effectiveness assessment by collaborating with cross-functional teams to understand technical implementations and assess control strength
  • Communicate identified security risks and their potential impact to stakeholders, including technical and non-technical audiences.
  • Develop and implement strategies for security risk remediation, ensuring alignment with technical, compliance and business requirements.
  • Provide expert guidance on security controls and best practices to cross-functional teams and guide risk mitigation
  • Maintain up-to-date knowledge of industry standards, regulatory requirements, and emerging threats to inform risk assessment and remediation processes.
  • Lead the enhancement of the security risk management program, including policies, procedures, and frameworks.
  • Track and report on the status of risk remediation efforts, ensuring timely resolution and compliance with organizational policies.
  • Develop and present detailed reports on risk assessments, including identified threats, vulnerabilities, and the effectiveness of implemented mitigation measures. Ensure these reports are understandable to technical and non-technical stakeholders, including senior management
  • Demonstrate a process-oriented, results-driven approach to security risk engineering, employing effective problem-solving and communication skills to serve as a subject matter expert and trusted advisor

Bill.com provides a platform for businesses to manage their financial operations, including bill creation and payment, invoicing, expense management, and budget control. The platform automates various financial tasks, making it easier for users to handle accounts payable and receivable. It also offers access to credit lines, enhancing its financial services. Bill.com differentiates itself from competitors by combining software solutions with credit access, catering specifically to small and medium-sized businesses as well as accounting firms. The goal of Bill.com is to increase efficiency and visibility in financial operations, helping businesses streamline their processes.

Company Stage

IPO

Total Funding

$337.6M

Headquarters

Palo Alto, California

Founded

2006

Growth & Insights
Headcount

6 month growth

2%

1 year growth

3%

2 year growth

6%
Simplify Jobs

Simplify's Take

What believers are saying

  • Bill.com's recent partnership with Regions Bank to power their digital payments solution highlights the company's growing influence and potential for further strategic collaborations.
  • The platform's ability to attract 10,000 new SMBs in the past year demonstrates strong market demand and growth potential.
  • Despite recent stock performance, Bill.com has shown consistent revenue growth, indicating a resilient business model and promising long-term prospects.

What critics are saying

  • The competitive fintech landscape, with players like Stripe and Plaid, poses a constant threat to Bill.com's market share.
  • The company's stock has seen significant declines, which could impact investor confidence and employee morale.

What makes Bill.com unique

  • Bill.com offers a comprehensive financial operations platform that integrates accounts payable, accounts receivable, expense management, and credit access, unlike competitors who may focus on only one or two of these areas.
  • The company's partnership with Cross River Bank to provide credit lines and corporate cards adds a unique value proposition that is not commonly found in other financial technology platforms.
  • Bill.com's automation capabilities for financial tasks provide significant efficiency gains, setting it apart from traditional manual processes and less automated competitors.

Help us improve and share your feedback! Did you find this helpful?

Benefits

100% paid employee health, dental, and vision insurance - choose between HMO, PPO, and HDHP plans

HSA & FSA accounts

Life Insurance, Long & Short-term disability coverage

Pre-tax commuter benefits

Employee Assistance Program (EAP)

11+ Observed holidays and wellness days

Wellness & Fitness initiatives

Flexible time off

100% paid employee health, dental, and vision insurance - choose between HMO, PPO, and HDHP plans

HSA & FSA accounts

Life Insurance, Long & Short-term disability coverage

Pre-tax commuter benefits

Employee Assistance Program (EAP)

11+ Observed holidays and wellness days

Wellness & Fitness initiatives

Flexible time off

INACTIVE