Information Security & Compliance Manager

The Kantata Cloud for Professional Services™ gives businesses the clarity, control, and confidence they need to optimize resource planning and elevate operational performance. Our purpose-built software is helping over 2,500 professional services organizations in more than 100 countries focus on and optimize their most important asset: their people. By leveraging Kantata, professionals gain access to the information and tools they need to win more business, ensure the right people are always available at the right time, and delight clients with exceptional project delivery and outcomes.

Kantata is well-capitalized, hiring, and growing our loyal and diversified customer base faster than we ever have. Most importantly, we have a clear vision of where we’re going and how to get there. (Hint: It involves you.) Did we mention that Kantata is also an awesome place to work? You’ll have the opportunity to work in a dynamic environment with a team that loves what they do. A talented team, great perks, and an amazing culture = an employee-rated Best Place to Work! **

About The Opportunity**

Kantata is seeking an Information Security & Compliance Manager to manage the Information Security compliance activities of our organization. You’ll take the lead in overseeing tasks associated with the protection of systems from unwanted users, disaster recovery, and off-premises storage. You will also Investigate security issues and implement corrective actions. **

Primary Responsibilities**

• Oversee security processes including access controls, auditing, and monitoring
• Assist with various GRC tasks including client due diligence, security awareness, internal audit remediation, security controls strategies, and third-party/vendor risk management and security oversight assessments
• Remain current on new and developing InfoSec trends and best practices to then develop effective and reasonable policies and practices to secure protected and sensitive data and ensure compliance with relevant legislation and legal interpretation
• Execute the strategy for dealing with the increasing number of audits, compliance checks and external assessment processes for internal/external auditors, SOC1, SOC2, & ISO27001
• Respond to customer security questionnaires and provide policy, certification or other artifacts as needed or required
• Implement program and operational frameworks that deliver the outputs necessary to support identification and reporting of IT/IS risk across the organization, including key control monitoring metrics, assess controls, conduct disciplined review of all key processes

What You Bring to this Role

• CISSP, CISA, CRISC, CIPP, PMP or similar license/certification
• 5+ years’ experience in GRC and information security
• Proficiency in security risk management to include an understanding of security threats, business impacts, and the associated best practice treatment strategies
• Strong knowledge and understanding of security concepts, protocols, and strategies, and the ability to explain technical problems and offer solutions to those without technical backgrounds or training
• Good knowledge of information security best practices, standards, and frameworks such as NIST, HIPAA, and HITRUST
• The skillset to lead projects, strategize, provide analysis and problem solving, as well as decision-making, while working under minimal direction or supervision
• Strong documentation and presentation skills, analytical and critical thinking skills, and the ability to identify needs and take initiative and prioritize tasks effectively

Compensation

• The base annual salary range for this position is USD $50,000 - USD $75,000.
• This position is eligible to participate in a Company Wide Bonus Plan.
• The above represents the expected salary range for this job requisition. Other compensation considerations include: location, relevant experience and other job-related factors.

Additional Information

• This role will begin as a remote role in Costa Rica, working from home. Will have the option to work hybrid in the future when Kantata opens an office in Costa Rica.
• The ideal candidate will have proficiency in the English language - both written and spoken

Our Philosophy

We know every company can be successful with the right technology and when people are at the core. We believe that we’re better together - that working hand-in-hand brings the best thoughts to the table and creates an environment of learning and growth. Here, you’ll enjoy:

• An intentionally engaging and collaborative culture - ditch the silo!
• Strong work-life balance that’s a true focus of the company
• The chance to learn from some of the best people in the business
• A vibrant, collaborative and devoted team, who still makes time for fun

At Kantata, we strive to create an inclusive workplace that upholds the dignity of all people. We value, respect and celebrate everyone’s unique strengths from all different walks of life. As we continue to cultivate diversity within the company, our product (and people!) innovation continues to flourish.

Kantata is an Equal Opportunity Employer