About Ceros

Ceros is an experiential platform that empowers the creation of bespoke, immersive digital experiences without code. We’re passionate about helping companies transform their static digital content into engaging experiences. From custom microsites to immersive interactive webpages, you can build it with Ceros. Publish and update live content and instantly embed it into your site or social media platforms such as Pinterest or Snapchat. Join us and be part of the movement to enable everyone to create experiences that matter.

Our customers include some of the world’s leading brands, such as Mashable, Bloomberg, Red Bull, United Airlines, and AIG.

We are well-funded and institutionally-backed by prominent investors including Sumeru Equity Partners, Grotech Ventures, Greycroft, and Starvest Partners.

The Role

The Security and Compliance Manager at Ceros will lead security compliance across the organization, including the tech stack that supports Ceros products. You will have the opportunity to directly impact the business by ensuring a safe and secure environment for our customers. This individual will work to ensure compliance monitoring and all audit functions and programs flow seamlessly. The Security and Compliance Manager will also build and manage a risk management program that will provide insights to all key stakeholders across the organization.

Key Responsibilities

• Enhance and maintain sustainable security and compliance programs at Ceros
• Own and execute the risk management program
• Drive regulatory compliance and support all audit programs (e.g., SOC 2, ISO 27001)
• Partner with all audit stakeholders, internal and external to Ceros
• Act as the point person for all customer due diligence requests and security assessments
• Respond to and research root cause issues of uncovered or reported risks
• Regularly report key risk management, security and compliance information to all key stakeholders 
• Promote and communicate best practices related to security and compliance
• Ensure and drive continuous improvement in partnership with security engineering and product teams to stay on top of cybersecurity trends and developments. 
• Work collaboratively with CISO consultants on all things security and compliance

Practical stuff we anticipate you having

• 5 + years of experience in a security compliance position
• Experience handling customer due diligence requests and security assessments 
• Strong project management skills with the ability to to engage with key stakeholders at all levels of the organization
• Experience leading and implementing organizational wide security and compliance programs
• Experience leading and managing IT audit programs 
• Up to date knowledge of current and emerging security trends and standards related to ISO 27001, SOC 2, GDPR, CCPA, PIPEDA and others

What we’re looking for from the heart

• Passion, enthusiasm, energy, humor, team player mentality and the ability to convey this through communication and presentation skills
• Curiosity; you seek out a wide breadth of information, feedback and input to guide decisions and balance intuition with research and a deep understanding of your surroundings
• A team-player mentality; you put your team first and are willing and able to do anything to help your team and your peers succeed
• Comfortability working in a fast paced, hyper growth environment

Key Things to Know

• We want you to start ASAP 
• This is a full-time position
• This is a remote first role with the ability to work on east coast time and occasional travel

Benefits

• Competitive salary
• Stock options
• Premium health insurance
• Paid parental leave
• Unlimited vacation days
• Wellness Fridays 
• Excellent gear (16” Macbook Pro, external monitor, etc.)
• Virtual experiences in which Cerosians can collaborate, educate, and create social connections with one another
  

At Ceros, we are deeply committed to the recruitment, retention, and growth of diverse talent; uniting people from unique backgrounds in our shared passion for unlocking creativity through technology.

As an equal opportunity employer, we prohibit any unlawful discrimination against a job applicant on the basis of their race, color, religion, veteran status, parental status, gender identity or expression, transgender status, sexual orientation, national origin, age, disability or genetic information. We respect the laws enforced by the EEOC and are dedicated to going above and beyond in fostering diversity across our company.