Job Description

Job Description

Job Description

Career Fulfillment & Culture

People come to work for Deque because of what we do: enable businesses and organizations to make their sites and apps accessible to everyone, including people with disabilities. The personal fulfillment employees feel here is unparalleled. In addition to the altruistic nature of our jobs, the organizational structure is extremely flat and welcoming. Women-owned and operated, Deque CEO Preety Kumar is internationally revered for her down-to-earth personality and work ethic. Deque's core values are central to our culture of customer satisfaction. Do you share them?

• Innovation with results that matter
• Deliver what you promise
• Can-do attitude
• Open, direct & respectful communications
• We care deeply
• We practice humility

At Deque, you’ll work with the best and brightest minds in the industry, sharing best practices, tackling new issues and uncovering new approaches.

Deque experts regularly contribute to W3C Accessibility Working Groups and collectively hold more CPACC, WAS, & CPWA certifications issued by the IAAP than any accessibility testing company in the world.

Position Description

Deque is seeking a visionary Director of Information Security to manage our Security operations to ensure the integrity of our products, services, and customer data. This person will be an intelligent and thoughtful leader who is passionate about keeping Deque and its customers safe and who will be a strong voice across the company for security and compliance practices. Deque Systems provides SaaS-based products, hosted both in the AWS infrastructure as well as in customer’s networks. We strive to provide these products in a highly secure environment and this position is key to delivering on this goal.

This individual in this role will lead the Security and Network IT operations team whose charter includes:

• Ensure our security and privacy posture is held to the highest standards to satisfy customers with high expectations

• Delivery of product-specific security information during the RFI/RFP sales process

• Consultant to product development teams of security guidelines, best practices,

• Gaining certification for ISO-27001 for company and products

• Work with vendors to ensure security tools meet security goals for the company

Primary Responsibilities

• Manage team of Security professionals while able to be hands-on as the need arises

• Develop and implement roadmap to ensure we make progress on our goals across cloud, application, and data security

• Work with Sales to streamline the product purchase process which includes security questionnaires from prospects

• Advise on security and compliance in our products and services

• Update and maintain company information security and privacy policies, standards, and guidelines

• Determine, document, and communicate technical and business security requirements

• Conduct risk analyses and other security assessments of technology, processes, and third parties

• Drive annual audits and testing of incident plans, BCP and other business security events

• Provide internal information security and privacy training and awareness

• Serve as process lead during security and privacy incident response

• Lead us into certifications and help us maintain them using consultants, contractors, etc.

Requirements

• 5 years of Security/IT operations experience, with growing responsibilities over that time

• 2 years of InfoSec team experience

• Information security certification preferred: CISSP, CISM, CISA or others may be applicable

• Experience in an AWS environment and their tools

• Excellent communication skills, with the ability to explain technical security concepts in simple language

• Knowledge of InfoSec and IT risk-assessment practices.

• Knowledge of InfoSec standards and frameworks such as BSIMM, ISO27K, NIST, and FedRAMP

• Knowledge of GDPR requirements

• Experience providing reporting, dashboards, and executive risk management summaries

• Strong analytical skills

• Experience in the use of security monitoring and penetration testing tools particularly in relation to cloud security and SaaS applications.

• Familiarity with web/application security topics and vulnerability management

About Deque

Deque (pronounced dee-cue) is a web accessibility software and services company, and our mission is Digital Equality. We believe everyone, regardless of their ability, should have equal access to the information, services, applications, and everything else on the web.

We work with enterprise-level businesses and organizations to ensure that their sites and mobile apps are accessible. With over 875,000 extensions installed and over 8,000 audit projects completed, Deque is the industry standard. Join our growing family as we work to make the web a better place for everyone.

Job Location

• Remote

How to Apply

• Apply by submitting your resume and a cover letter. Applications without a cover letter will not be considered.

In your cover letter

• Explain your interest in joining Deque and how you align with our Core Values
• Depict key attributes that differentiate you as a candidate

Deque is committed to providing Equal Employment Opportunities. Reference and background checks will be required. The expected salary range is 180K - 200K but is subject to change based on the skills, abilities, and experience of each candidate. The values listed are not intended to guarantee a salary for candidates or current employees.

Thank you for your interest in joining our exciting company!

Job Tags

For contractors, Remote work,

Similar Jobs