Xello’s Director of IT & Security

This role is a remote role, looking for candidates within Canada only, working in Eastern Time Zone hours. 

__
Who are you?

As Director of IT and Security, you will lead Xello’s IT operations and security initiatives which include data privacy and compliance in the education space. Managing the IT team, you will be responsible for developing, implementing, and monitoring security/confidentiality/business continuity/disaster recovery controls.

Working with directors and executives, you will help determine acceptable levels of risk for the organization. You will design and implement comprehensive security evaluations and provide architectural/design guidance for mitigation strategies using current and emerging cloud technologies. As a manager you will be leading and mentoring our IT team to deliver on security, privacy, and IT objectives. Reporting to the VP of Engineering, you will ensure the efficient operation of the company’s network, servers, and equipment.

Sound exciting to you? Read on!
 

What you’ll do…

• Lead IT department operational planning and projects in an Agile environment.
• Take ownership over our information security roadmap.
• Ensure that Xello is in compliance with regulations, best practices, and customer data sharing agreements, including (but not limited to): PIPEDA, FERPA, COPPA, GDPR, CCPA.
• Participate in building a security-first organization by conducting organization-wide security awareness training, working with engineers to ensure best practices are met in the SDLC, and staying on top of the latest threats and security practices.
• Liaise with Xello’s sales department and customers to support the security-focused aspects of RFPs and review customer data sharing agreements for compliance.
• Oversee reporting and documentation related to network and systems operations.
• Work with stakeholders to define business and system requirements for new technology implementations.
• Develop maintenance schedules for network and systems equipment.
• Analyze existing operations and make recommendations for the improvement and growth of the network infrastructure and IT systems.
• Coordinate all major incidents ensuring the correct resources are involved as quickly as possible, senior management and the business is updated in a timely fashion, post-mortem reviews are conducted, and action items are followed through to completion.
• Provide leadership to team members through coaching, performance evaluations, training plans, and career development plans.
• Serve as the key interface with internal and external auditors for security compliance related activities.
• Protect the confidential and private information that you may come into contact with in the course of your work and uphold the ethics and integrity of Xello’s code of conduct.

What we’re looking for… 

• Passion. You have a passion for quality, well-defined processes, and technology. You are enthusiastic about the opportunity to link the three pieces together. You are motivated by efficiency.
• Ownership. You can be counted on to deliver the best solution. You take ownership of your work, your tasks, and your timelines. You never lose sight of the big picture.
• Communication skills. You know how to listen and relay empathy and understanding for diverse perspectives.
• Creativity and adaptability. You can adapt quickly, innovate solutions, and embrace the new while accepting the ambiguous.
• 10+ years experience in IT and 2 years of experience in a people management capacity
• Proven experience owning and leading SOC 2, ISO 27001, and related security/compliance audit programs across an organization, including control design, cross-functional evidence collection, auditor coordination, gap remediation, and maintaining ongoing audit readiness. 
• Deep knowledge of web application security, and understanding of vulnerabilities and countermeasures.
• Strong knowledge of networking, telecom, and server technologies.
• Strong understanding of project management principles.
• Experience securing production software systems.
• Experience with incident management lifecycles.
• Proven experience in IT infrastructure planning and development.
• Positive attitude and a great team player.
• University or college degree with a technical major, such as Engineering or Computer Science.

Great if you also have… 

• Knowledge of Agile principles and practices
• Information Security Certifications - CISSP, CISM, CIPM
• CCNA, CCNP, or other network certifications

We’re Xello - Join us!

We are Xello (CASCAID in the UK), the leading developer of future readiness programs in North America and the UK and soon the world! Our mission is to help anyone, anywhere in the world to create a successful future through self-knowledge, exploration, and planning.

We believe that by bringing our best selves to our work and collaborating with one another, we can change the world. We are a very diverse group of individuals who work hard, laugh often and share in each other’s lives. We are an inclusive, equal opportunity employer.

Embracing agile practices, an innovative mindset, and keeping our users at the heart of what we do, are just a few of the keys to our success.

In addition to working with leading technologies, we are committed to continuous learning and growth through internal/external training and mentoring, which includes a PD budget for every employee.

For our Canadian based staff, we also offer:

• Flexible work arrangements including hybrid and remote
• 4 weeks of vacation
• Employer-paid health and dental benefits
• 4-month top-up for parental leave
• Group RRSP with 3% matching

For our US based staff, we also offer:

• Remote work environment
• 4 weeks of vacation
• 80% employer-paid health benefits
• 4-month top-up for parental leave
• 401(k) with 3% matching

For our UK based staff, we also offer:

• Remote work environment
• 28 days annual leave (inc. 3 days at Christmas) + bank holidays. With additional annual leave days added to reward long service

Like what you hear? Apply Now!