United Spinal Association Jobs

Spinal cord injury - multiple sclerosis - polio - amyotrophic lateral sclerosis - spina bifida
National Spinal Cord Injury Association Mobile Logo
Home View All Jobs (2,139,854)

Job Information

ARCOS LLC Team Lead, Information Security in United States

POSITION SUMMARY

The Team Lead, Information Security will be a hands-on technical leader responsible for creating and maintaining information security policies and procedures, implementing new security technologies, and developing training programs. This role involves direct participation in security operations, incident response, customer support, and managing the security implementation in AWS, while also supporting the recruitment and mentorship of potential team staff. The role will implement, and operate the Security, Risk, and Privacy Programs in accordance with applicable laws, rules, and regulatory requirements, ensuring the security of the company and its partners.

ESSENTIAL JOB FUNCTIONS

  • Hands-On Security Operations: Engage in daily security operations, including SOC2 compliance, threat detection, incident response, vendor management, and vulnerability management.

  • Manage Security Tooling: Implement, configure, and manage information security tooling including Crowdstrike Falcon, Qualys, Vanta, auto patching (Automox/SSM), M365 InTune/ATP, and AWS security services: GuardDuty, Inspector, WAF, Advanced Shield.

  • Incident Response: Lead real-time security and operational issue resolution, ensuring swift response to incidents to minimize impact.

  • Customer Support: Address and resolve customer-impacting security issues effectively.

  • Policy Development and Compliance: Enhance and implement enterprise-level security, risk, and privacy policies and controls to mitigate risk and ensure compliance.

  • Monitoring and Assessment: Continuously monitor and assess security, risk, and privacy controls, collaborating with operational departments to ensure policy compliance

  • Privacy Program Management: Lead and manage privacy programs, ensuring compliance with data privacy requirements and providing recommendations to stakeholders.

  • Client Security Audits / RFPs: Manage and participate in security audits, requests for proposal, and vendor risk assessments ensuring thorough evaluations and adherence to security standards.

  • Communication and Coordination: Serve as a focal point for the information security team, communicating security goals and updates to other department managers, ensuring effective planning and execution, and governance within the same time zone.

  • Technology Assessment: Evaluate and improve the current technology architecture for vulnerabilities and potential upgrades.

  • All other duties and responsibilities as assigned

QUALIFICATIONS REQUIREMENTS AND SKILLS

  • Bachelor’s degree in computer science, Cybersecurity, Information Systems or other related field with equivalent knowledge and professional experience.

  • Minimum 5 years’ experience in Information Security and/or Cybersecurity position, and responsibility for achieving/maintaining/improving a SOC2 Type II.

  • Minimum 5 years’ experience hands-on experience with AWS Security Services as well as security and vulnerability management tools like Crowdstrike, Qualys, M365 Advanced Threat Protection, etc.

  • Experience in a data architecture environment, understanding of data privacy regulations and GRC solutions and common control framework for data regulations.

  • Three or more years of direct supervisory experience, leading a project and serving in a lead capacity is required.

  • Ability to provide oversight and direction to a team of IT professionals and ensure that business goals and objectives are achieved for a designated functional area of the technology department.

  • Excellent written/verbal communication, presentation, and listening skills, with the ability to present complex technical information in a clear and concise manner to a variety of audiences. Ability to influence people at all levels of the organization.

  • Detail and results oriented with a decisive approach to work required to ensure the deliverables are met on time with multiple assignments.

  • Knowledge of standards NIST, CSF, and any past experience in GRC/privacy-based role for a SaaS company is a plus.

  • Knowledge of Business Continuity Planning and Disaster Recovery is also a plus.

Company Culture

At ARCOS, we believe in fostering a culture of ownership, accountability, and teamwork. We value the collective strength of our team and understand that our success results from our collaborative efforts. We're not just looking for employees; we're seeking partners in our mission. If you take pride in your work, are always eager to learn and grow, and believe in the power of teamwork, we want you on our team.

Benefits

You will be eligible to participate in ARCOS health benefits to include (100% employer-paid dental and vision premiums for single coverage), 401(k) with company match, generous PTO plan, Summer hours and a technology stipend just to name a few. Please visit our Careers page (www.arcos-inc.com/careers) to learn more about all of these great benefits.

Compensation

The targeted base salary range for this position is $100k - $125k based on relevant skills, experience and other job related knowledge, with an annual bonus eligibility of 10-15% of the base salary, dependent on company and individual performance.

DirectEmployers