Director, Information Security
ABOUT VTS
VTS is the fastest growing PropTech company in the history of commercial real estate (CRE). We have transformed a $15 trillion dollar industry with our award-winning platform which is used by more than 700 of the world’s leading landlords and brokers to manage their revenue. We’re continuing to expand our product offerings with our plan to build the industry’s first and only end-to-end, transactional leasing marketplace, truva.com. Truva will enable tenants to search for and lease space with VTS landlords and broker clients online - a process that has traditionally been offline and difficult.
It’s an exciting time to join the VTS team - we recently reached unicorn status after raising $90 million in series D funding led by our clients (believed to be the largest venture financing in the history of commercial real estate software), we recently made the Forbes Cloud 100 list of the hottest private cloud companies, and are featured in Crain's best places to work!
Our headquarters are in NYC, but we have hubs in other major US cities, Toronto, CA and London, UK.
Learn more at vts.com or @WeAreVTS
ABOUT THE ROLE
Our mission is to be Commercial Real Estate’s modern operating system, the place where deals happen, customer relationships are nourished, and real-time market data comes to life.
We support thousands of customers across international markets, each of whom relies on VTS to safeguard confidential business information. As Director of Information Security you will own the vision, strategy and execution of a robust security program that protects VTS and our customers.
WHAT YOU’LL DO
- Formulate strategy and drive initiatives that provide strong protection for information assets across VTS
- Maintain a robust policy and process framework to define and guide adoption of security best practices
- Proactively identify and manage information security risks in a growing and fast-paced environment
- Partner with Engineering to identify and prioritize application security backlog and ensure security concerns are incorporated throughout the SDLC
- Partner with IT and People to integrate security concerns in key operational processes and systems
- Deploy tooling and automation to protect and monitor information assets at scale
- Respond to escalations and coordinate incident response as required
- Manage vendor relationships including project scoping, vendor selection and project management
- Manage compliance with relevant standards and frameworks including SOC 2 and GDPR
- Assist our sales solutions team with customer-facing technical security diligence
- Evangelize for security concerns across the business and drive a structured program of security awareness and education
ABOUT YOU
- At least three years experience in an information security leadership role
- Expert managing security in cloud-based infrastructure (G Suite, Okta, Meraki, AWS, Heroku, etc)
- Expert in tooling related to network security, endpoint security, encryption technology, vulnerability scans, access control, etc.
- Experience integrating security concerns into the software development lifecycle
- Experience managing compliance activities (e.g., SOC 2, GDPR) and relevant standards ånd frameworks (e.g., NIST, ISO 27001, CSA, CIS)
- Excellent interpersonal, verbal, and written communication skills with the ability to communicate security-related concepts to a broad range of technical and non-technical audiences including company leadership and our customers
- Certifications such as CISSP or CISM are a plus
WE TAKE CARE OF YOU
- Competitive compensation packages, including equity
- Great medical, vision, dental, and commuter benefits
- Fantastic location with an easy walk to most major subway lines (Times SQ)
- Generous family policies
- Training and career development programs for everyone
- A company that embraces and celebrates diversity
- 401K plan
- Unlimited vacation policy
- Team lunches, company happy hours, ample snacks and drinks
#LI-MD1
VTS embraces diversity and equal opportunity in a serious way. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better our work will be.
All your information will be kept confidential according to EEO guidelines.