Varicent is the industry leader in developing Sales Performance Management (SPM) software, enabling businesses worldwide to Plan, Operate and Pay effectively to drive sales performance and growth.
A named Leader in the Gartner Magic Quadrant for Sales Performance Management seven times in a row, Varicent was founded in 2005 when we pioneered sales performance management software. Evolving quickly to become the fastest growing software company in North America according to Deloitte’s Fast 50™ in 2010, Varicent was acquired by IBM in 2012 and has since been re-founded as an independent global business serving mid-size and enterprise clients with our full suite of solutions to assist in smarter territory and quota planning, efficient lead to revenue operations, and the fastest and most flexible way to pay sellers accurately and on-time. We are looking for talented, driven people that can make an impact across our organization.
Reporting to the Chief Technology Officer, Chief of Information Security will have overall responsibility for the development, enhancement and management of Varicent’s information security program and risk management including the implementation and maintenance of best practices polices, procedures, processes, controls, frameworks and tools to enable Varicent’s growth and innovation while ensuring best in class standards of cloud security to keep customer and corporate data secure and applications safe.
What you will doOwnership and management of security infrastructure that includes SIEM, WAF, DLP, etc.Ownership and management of security incident management process.Assist and implement controls as required by the Compliance team to meet external & internal audit and regulatory requirements.Monitor, detect, protect and manage intrusions and vulnerabilities. Ensure continuous security scans and monitoring for the detection of intrusions employing industry leading vulnerability and incident response tools. Maintain scans, reports and incident logs. Assess impact and patch known vulnerabilities.Contribute to risk assessments to identify technology/controls gaps and develop a strategy and road map balancing risks and costs. Work closely with the Engineering, Compliance and other stakeholders to ensure the implementation of necessary controls.Assist in communication with clients and prospects on Varicent’s security story as needed. This includes contributing to RFP’s, sales materials etcEnsure that the CTO and Senior Management are kept appraised of significant security risks, mitigation strategies and issues.Keep current with emerging IT security innovations, best practices, tools and technologies to continuously improve the organization’s security posture and ensure the security roadmap is kept up to date with next generation solutions.Maintain a security budget and deliver results within the budget Manage a team of IT security professionals.
What you will bringWhile no candidate will embody every quality, the successful candidate will bring many of the following professional qualifications and personal qualities:EducationBSc/BA in computer science, engineering or other relevant field;Relevant certifications in information security including CISM, CISSP, CISA, CRISC and/or CCSP.Functional Competencies- Skills, Knowledge and ExperienceMinimum of 6 to 8 years of progressive IT Security leadership preferably including experience in a cloud based software technology company within a similar B2B business environment.Deep expertise in cloud security and risk management within public cloud environments (AWS, Azure, Google, IBM)Strong knowledge of cloud based architecture, applications and platforms and associated security risks/protocols.Proven ability to drive information security strategy in alignment with business objectives , develop an information security roadmap and priorities while effectively balancing risks and costs.Prior experience in managing and developing enterprise level information security programs, including polices, procedures, frameworks and tools; risk management; compliance; architecture development; and training.Solid knowledge of regulatory and data privacy standards (GDPR), information security frameworks (ISO 27001) and certifications (SOC 2 Type II).Strong business acumen and demonstrated ability to partner with senior business leaders and develop a broad understanding of business needs.Demonstrated ability to work effectively as a team player and team leader, managing, developing, and motivating team members of varying levels and skill sets.Exceptional communication skills and ability to communicate complex technical concepts and security risks to users, senior leaders and customers at all levels of technical expertise.High level of broad IT technical knowledge and technically conversant
Leadership and Management/Behavioural CompetenciesInformation Security Subject Matter Expert (“SME”) with a value-add mentality, who is able to balance information security requirements with business priorities and goals.Exceptional relationship manager, able to work collaboratively across all levels of an organization and earn the trust, credibility and respect of senior leaders, team members, customers, and business partners through their knowledge and actions.Problem solver with strong analytical, conceptual and critical thinking skills required to devise pragmatic and innovative solutions to complex technical issues.Fact based decisionmaker with strong business acumen, good intuition and sound judgement, who is able to readily assess the need to escalate security issues.Enabler who is resourceful, creative, open to new ideas and promotes a culture of continuous improvement and innovation, driving leading edge practices and highest standards in digital security.Highly organized, focused, flexible and adaptable in managing changing priorities. Comfortable working autonomously and with ambiguity.Hands- on team leader and coach with strong people development skills, who leads by example, and inspires others through enthusiasm, collaboration and open dialogue.Personal Attributes
Team player, collaborative, approachable, positive, supporting, responsive and respectful.Proactive, diligent, reliable, committed, accountable, takes ownership.Open, honest, transparent, confident in questioning the status quo and challenging others in a positive and constructive manner.Calm, well balanced, pragmatic, strong work ethic, sense of urgency.Thrives within a fast paced, dynamic, high performance environment.
Varicent is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. If you require accommodation at any time during the recruitment process please email firstname.lastname@example.org
Varicent is also committed to compliance with all fair employment practices regarding citizenship and immigration status. By applying for a position at Varicent and/or by using this portal, you declare and confirm that you have read and agree to our Job Applicant Privacy Notice
and that the information provided by you as part of your application is true and complete and includes no misrepresentation or material omission of fact