Manager – Infosec
Confirmed live in the last 24 hours
United States
Experience Level
Desired Skills
Google Cloud Platform
Microsoft Azure
  • 3+ years of experience as a people manager within Information Security in areas of compliance, audit, privacy and risk; preferably at a startup
  • Polished professionalism developed through consulting or engaging directly with customers, auditors, and/or third-parties
  • Past experience in developing roadmap initiatives for certification efforts (e.g. GDPR, SOC2 type II, ISO 27001/17/18, PCI, HiTrust, FEDRAMP, etc.) and driving them through readiness and gap assessments, control implementation, and internal & external third party audits
  • Proficiency in how compliance operates with cloud-native technology stacks
  • Comfortable and experienced in a customer-facing role, ability to effectively communicate technical information at varying levels, understanding of the vendor risk assessment process (inbound), experts in polished collateral development (briefs, papers, standards) for external consumption
  • Ability to prioritize in a fast-changing environment; Ability to partner with and lead others not reporting directly to you
  • Experience and knowledge of cloud infrastructures (AWS, GCP, Azure)
  • General knowledge of applicable data privacy practices and laws (e.g. GDPR, CCPA, PIPEDA)
  • Experience writing modular and auditable policies, procedures, control objectives, and standards
  • Experience managing teams remotely across many time zones and cultures
  • Excellent written and verbal communication skills
  • Build a team of highly skilled security, compliance, risk and privacy practitioners
  • Provide leadership and direction for innovative improvements to the security posture of Lacework
  • Understand the company's vision and develop a strategy and documented plan for the team to reach its short-term and long-term goals
  • Serve as an escalation path for information security, privacy, and GRC issues
  • Develop an in-depth understanding of the Lacework platform and the cloud technologies it's built on
  • Maintain and improve existing certifications and successfully obtain new ones. Develop roadmap initiatives based on global customer demands & Lacework's growth strategy
  • Prepare for and facilitate external audits associated with various security, regulatory requirements
  • Develop and maintain common control framework mappings to efficiently expand the compliance and auditing capabilities
  • Develop robust risk management programs that provide broad risk visibility (risk register) and are data driven
  • Work with cross-functional teams to prioritize and track mitigation and resolution of identified risks; drive process improvements for risk reduction
  • Always look for automation opportunities with continuous compliance as a constant objective. Become an expert at using Lacework and effectively showcase its use for our own compliance needs. Provide a feedback loop for product improvements
  • Effective management and presentation of project reviews with leadership
Desired Qualifications
  • Security certification is a plus - such as CISSP, CRISC, CISM, etc

501-1,000 employees

Security platform for the cloud
Company Overview
Lacework's mission is to become the security platform for the cloud. The company focuses on building modern, robust security infrastructure at scale.
  • Competitive medical, dental, and vision plans
  • Employer contribution to health savings account (HSA)
  • Flexible vacation time
  • Parental leave for birthing and non-birthing parents
  • 401(k) for eligible employees & competitive global retirement plans
  • Life insurance for eligible employees
  • Flexible health and mental wellness stipend
  • Home internet & cell phone stipend
  • Commuter benefits
Company Core Values
  • Put the Customer First
  • Take Pride in Leaving a Legacy
  • Be Open
  • Be Bold, Fail Fast, and Learn
  • Get $hit Done
  • Win As A Team