Director Information Security

About UsWith an unwavering commitment to innovation, operational excellence, exceptional customer experience, and strategic collaboration with our partners, the G2 team has been designing and improving reverse logistics networks for over 30 years.

We are pouring all of that experience into a start-up to help companies take their reverse supply chains into the future.

Our proprietary software platform uses machine learning and decision science to revolutionize the reverse supply chain and drive value at every stage of the returns lifecycle.

Our approach is modular and customized to support each business’s unique needs.

We offer a wide range of solutions from software as a service to full operational management.

We are an entirely remote, agile team that values collaboration, inclusion, accountability, and challenging the status quo.

General SummaryThe Director of Information Security will be responsible for creating and executing strategies to ensure the overall security of company systems.

This role will collaborate with multiple departments, such as Information Technology, Marketing, Product, Legal, and Human Resources, to determine proper protocols, policies, audits, and training programs to meet the company’s goals.

Due to the nature of a start-up business, this role will be both strategic and tactical.

The position reports to the Chief Information Officer.

ResponsibilitiesServe as the cybersecurity risk and information security subject matter expert for the companyLead the company’s information security strategy and implementation to create a competitive advantage and be our customer-facing “security expert”Work with Product, Development, and Infrastructure to assist with the overall business technology planning, providing a current knowledge and future vision of technology and systemsEnsure policies, procedures, and protocols are being executed and amend, as necessary, to adhere to the latest legal protocols for information governance, security, and privacy mandatesParticipate in deployment of security technologies and program enhancements and ensure that resources are allocated correctly and efficientlyContinuously monitor the changing landscape of cybersecurity threats and vulnerabilities and appropriately respond to themDevelop strategies to handle security incidents and work with stakeholders to maintain a robust incident response plan, in conjunction with the company’s DR/BCPDevelop metrics for measuring and improving the effectiveness of the overall information security plan and report them to the applicable executive team membersPartner with business stakeholders across the company to raise awareness of risk management concerns and develop mitigation strategiesAssist in preparing financial forecasts and budgets for security operations and manage outsourced IT providersQualificationsBachelor’s degree in MIS, IT, Engineering, Business, or equivalent experience8+ years of experience in leading a risk management program/functionExperience designing and implementing a corporate security function, gaining buy-in, and driving a multi-year strategyExperience in performing security assessmentsKnowledge of common information security management frameworks, such as ISO/IEC 27001, and NISTProficient within the Microsoft Office SuiteProficient in building, growing and developing a team; including department structure design and resourcingPreferred Certifications: Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), or equivalentEEO Statement:Diversity of thought, backgrounds, and a celebration of our differences fuel innovation at G2 and help us make better decisions.

We strive to create a culture that encourages and supports the diverse voices of our team members where everyone is welcomed to show up as their whole authentic self.