Listing Description

About Productiv

Productiv is creating a SaaS Intelligence movement, empowering IT teams to enhance their SaaS portfolios with unmatched insights. Founded in 2018 by leaders from Google, Amazon, and LinkedIn, we're a Series C startup that's defining a market while living our values: stay human, plan to win big, deliver results, take ownership, customers before team before self, and do the right thing, even when it's hard. And we're backed by Tier 1 investors including Accel, Norwest, IVP, Okta, and Atlassian. CIOs at innovative companies like Square, Okra, Equinox, Zoom, Dropbox, Equifax, and Uber trust Productiv to optimize spend, speed operations, and drive engagement. Come explore the huge opportunities our tight-knit, collaborative teams are creating together.

About the Job

Working for the CIO, Productiv is looking for a Head of Information Security to lead InfoSec across our internal and customer facing business.  Initially, this role will be a highly-collaborative role with key internal partners being the Go to Market teams and the Engineering teams.  Over time, we see the Information Security team growing as the company scales and there will be growth opportunities for the right individual.

If this role sounds like you, even if you do not meet 100% of the requirements - please apply!

Role and Responsibilities

• Lead security efforts across the company


• Provide leadership within the company around Information Security


• Implementation of NIST as a framework to track maturity and improvement for Cyber Security


• Drive technology compliance and certifications efforts; integrate / automate evidence collections to meet compliance (e.g., SOC 2, ISO 27001) requirements


• Define company-wide information security governance and risk management program, including security training for all employees


• Manage the development and implementation of global security policy, standards, guidelines and procedures for our internal and customer facing applications


• Collaborate with the R&D functions within the company to ensure that we are applying best practices in our development processes and are “secure by design”


• Identify and prioritize security initiatives and standards


• Investigate security breaches


• Partner with business stakeholders to raise awareness of risk management concerns


• Oversee information security strategy across our products, IT systems and third party SaaS applications


• Support and help the Go to Market teams and collaborate strongly with prospects and customers alike around their security questions and needs, including detailed support around Vendor Security questions and audits

Requirements

• 10+ years of experience in a combination of risk management, information security and IT jobs; strong preference given to experience in cloud and SaaS


• Experience leading the security compliance effort, including but not limited to SOC2, ISO27001


• Demonstrated ability to build successful information security and risk management programs


• Strong collaborative skills to represent our capabilities both externally and internally.


• You pride yourself in being an energetic self-starter who shows personal initiative and has experience working in a rapidly changing environment.


• Excellent problem solving skills with a strong attention to details and provide top-notch service to stakeholders all over the world


• Ability to build and drive the information security roadmap and strategy, while also getting involved and helping with the hands-on, day to day activities


• Ability to wear multiple hats in a fast-paced environment


• Hands-on, "can do" attitude and a bias for action


• Low ego and high intellectual curiosity

Benefits

• Medical, dental and vision insurance, 100% paid for you and your family


• 401K plan


• Free lunches, snacks, and beverages in office


• 12 week parental leave