Senior Manager, Cybersecurity - Thumbtack Toronto, Ontario, Canada Bookmark Share Print 100 0 0

Listing Description

About the Information Security Team


Our Information Security team is an internal cybersecurity consultation and audit team for whose mission is to safeguard the confidentiality, integrity, and availability of information systems, identity, and data assets by providing proactive security expertise, creating and maintaining a resilient and secure infrastructure, and fostering a culture of security awareness and compliance throughout Thumbtack. We oversee the development and execution of all cybersecurity programs.


About the Role


As an Information Security Manager, you are a guardian of data and cybersecurity. You can make quick and effective decisions for every information security situation that may arise within the organization. You can provide valuable recommendations to the team and mitigate security risks, thereby contributing to providing our employees, pros, and customers the utmost information security that they deserve.  


Responsibilities



  • Lead a team of information security specialists, analysts, engineers

  • Monitor regional network, system, and tooling usage to ensure compliance with global security policies

  • Partner with IT Systems & Network, IT Endpoint, and Platform Engineering to monitor, assess vulnerabilities, and develop and implement plans to improve our security posture

  • Perform penetration tests to find any flaws and create mitigation plans

  • Simulate security breaches and create disaster recovery plans

  • Seek to build in security during the development stages of SaaS/software, systems, networks, and cloud platforms and educate colleagues about security software and best practices for information security

  • Document any security breaches, assess their damage, and liaise with the concerned government agency if necessary


Must-Have Qualifications 


If you don't think you meet all of the criteria below but still are interested in the job, please apply. Nobody checks every box, and we're looking for someone excited to join the team.



  • Bachelor’s Degree in Information Technology, Computer Science, Computer Engineering, or related fields

  • At least eight years of relevant work experience in application and information security, especially in the cloud computing environment 

  • At least five years of experience in team management

  • Information security certification in CompTIA Security+ is highly preferred.

  • Working knowledge of different security technologies and concepts such as but not limited to VA/PT, SIM/SIEM, DLP gateway, and endpoints, IPS/IDS, WAF, CASB, Cloud security, IAM, Cyber Incident Response, Digital Forensics

  • Working knowledge of different IT domains – Network, Infrastructure, Systems Administration, Software Development, Database Administration, Change Management, Incident Management

  • Strong knowledge and experience in building control frameworks and can design and evaluate the effectiveness of controls in compliance with the United States IS requirements


Nice-to-Have Qualifications



  • Information Security Certifications such as CISM, CISA, CISSP, etc.

  • Programming knowledge (Golang, Python, PHP, UNIX shell scripting, etc)

  • Understanding of IT and information security principles and best practices (e.g., ITIL, ISO 27001)

  • PCI-DSS compliance experience and certification

  • Experience in the Growth Marketing domain


Thumbtack is a virtual-first company, meaning you can live and work from any one of our approved locations across the United States, Ontario or the Philippines. When it is safe to gather, we will begin to host in-person events on a regular basis. Remote employees will be expected to travel occasionally for these events to a Thumbtack library or offsite team-building location. In cities with 5+ employees, we are establishing local communities, where employees can gather for local events. Additionally, employees in the San Francisco, Salt Lake City, Toronto and Manila areas will have opt-in access to communal workspace at one of our Thumbtack libraries. We always prioritize the health and safety of our employees. Currently, participation in these events and Thumbtack library use are optional. Both require employees to be fully vaccinated.


#LI-Remote


Listing Details

  • Citizenship: Not Provided
  • Incentives: Not Provided

 

  • Education: Not Provided
  • Travel: Not Provided
  • Telework: Not Provided



About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765