All Careers

Chief Information Security Officer

Seattle
Last Updated: September 21, 2021

About CommerceHub

We pride ourselves on fostering a work environment that is diverse and inclusive. We are a team of collaborators, communicators, technologists and innovators. Creative, fun and hardworking, our team is committed to providing our customers with a great experience. Work/life balance is built into our culture. We give ample time to recharge and enjoy life outside the office. We recognize our accomplishments; we learn from our failures and we support each other and our customers no matter what. We're looking for people who are passionate about what they do and value hard work and integrity. We invite you to join the Hub!

The Role

Responsibilities: 

  • Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program 
  • Work directly with the business units to facilitate risk assessment and risk management processes 
  • Develop and enhance an information security management framework 
  • Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems and services 
  • Provide leadership to the enterprise's information security organization 
  • Partner with business stakeholders across the company to raise awareness of risk management concerns 
  • Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems 
  • Develop and implement a training program for information security playbook used by engineers when creating software 
  • Develop and implement an automated system for determining the information security maturity and compliance of software as it is developed 
  • Ensure regulatory requirements and certifications are met and achieved including ISO/IEC 27001, SOC2 and others 

Requirements: 

  • Degree in business administration or a technology-related field required.  
  • Professional security management certification 
  • Minimum of eight to 12 years of experience in a combination of risk management, information security and IT jobs 
  • Knowledge of common information security management frameworks, such as ISO/IEC 27001, SOC2 and NIST. 
  • Excellent written and verbal communication skills and high level of personal integrity 
  • Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams. 
  • Experience with contract and vendor negotiations and management including managed services. 
  • Specific experience in Agile (scaled) software development or other best in class development practices. 
  • Experience with both on premise and Cloud computing across virtualized environments, AWS experience preferred. 
  • Experience having implemented application security functions in the past. 

Benefits

The Basics
  • A robust health and wellness program
  • Medical, dental and vision benefits
  • Culture and team-building activities
  • A 6% 401(k) match
  • Employee Assistance Program
  • Tuition assistance
  • Career development opportunities
  • Charitable contribution match per team member
The Extras
  • Competitive time off package with front-loaded PTO and paid sick leave
  • Four weeks paid parental (bonding) leave
  • Floating holidays
  • A paid volunteer day
  • Eight company holidays

We are an equal opportunity employer and all candidates from every background will be considered based on skills, experience and other business factors.

EOE, including Disability/Veterans
Authorization to work in the United States is a requirement for this role. CommerceHub does not provide visa sponsorship.

Apply for this Job

Share this Job Posting