Information Security & Compliance Project Manager

• Security Leadership: Lead the strategic implementation of advanced security practices and technologies, influencing organization-wide security policies and initiatives.
• Governance and Compliance Management: Oversee the alignment of security systems with Roofstock's overall business objectives, ensuring that all security and compliance activities are integrated seamlessly into our operations.
• Risk Management: Coordinate the assessment and mitigation of potential security risks, leveraging industry best practices to maintain and enhance protective measures.
• Policy Development and Strategic Communication: Develop and enforce robust security policies and compliance procedures. Regularly report on security and compliance statuses to senior management, advocating for necessary enhancements.
• Incident and Compliance Oversight: Monitor the effectiveness of security measures and compliance protocols, directing proactive responses to incidents and ensuring adherence to regulatory standards.
• Training and Awareness Programs: Lead the creation and dissemination of security and compliance training materials to educate and empower employees across the company.

• Compliance Frameworks: In-depth knowledge of compliance frameworks such as SOC, NIST, ISO 270xx, CIS, HITRUST is essential.
• Data Privacy: General knowledge of applicable data privacy practices and laws, including GDPR.
• Information Security: Proven, in-depth technical knowledge of Information Security principles and processes.

• Education: BA/BS degree in Computer Science, Information Systems Management, or a related field.
• Minimum 5-7 years in Information Security or Compliance roles, with a strong background in managing or directing security and compliance functions.
• Proven experience in maintaining a control environment within an engineering and IT organization.
• Experience and knowledge of cloud infrastructures such as AWS, GCP, and Azure.
• Experience writing precise and auditable policies, control objectives, and procedural documentation.
• Certifications: CISSP, CISA, or similar certifications are highly desirable.
• Communication Skills: Exceptional communication skills, capable of effectively presenting complex topics to diverse audiences.
• Strategic Thinking: Strong strategic planning abilities with a proven track record in developing security strategies and leading compliance initiatives.

Preferred Qualifications

• Leadership Experience: Demonstrated experience in leading security initiatives and fostering a culture of security awareness within an organization.
• Regulatory Knowledge: Extensive experience with regulatory compliance management.

Our compensation reflects several US geographic markets. The base pay for this position represents the expected salary for this position.  Ultimately, in determining your pay it will be based on several factors including location, job-related knowledge, skills, experience and other job related factors.  Roofstock is a total compensation company; the base salary is only part of our total compensation package.

Competitive & Unique Benefits Package:

• Generous PTO Policy
• 13 Paid Holidays
• Volunteer Time Off
• Paid Parental Leave
• 401k Program
• Wellness and home office/cell phone subsidies
• Robust health, dental, vision insurance, and more

Must be authorized to work in the U.S. is a precondition of employment and we are unable to sponsor H1-B Visas at this time.

Any offer of employment is conditioned upon the successful completion of a background investigation.

Commitment to Equal Employment Opportunity 

Roofstock is an equal opportunity employer. In keeping with the values of Roofstock, we make all employment decisions including hiring, evaluation, termination, promotional and training opportunities, without regard to race, religion, color, sex, age, national origin, ancestry, sexual orientation, physical handicap, mental disability, medical condition, disability, gender or identity or expression, pregnancy or pregnancy-related condition, marital status, height and/or weight.