IT Security Manager

Emploi pas sur LinkedIn

🕒 il y a 8 jours

Postuler Maintenant

Trouver des Emplois à Distance Similaires

Recevoir des emails pour des emplois à distance

📊 Vérifiez votre score de CV pour ce poste

Améliorez vos chances d'obtenir un entretien en vérifiant votre score de CV avant de postuler.

Télécharger le CV

EdVisorly

Site WebLinkedInTous les Emplois

11 - 50 employés

Fondée en 2019

🤖 Intelligence artificielle

📚 Éducation

☁️ SaaS

Artificial Intelligence • Education • SaaS

EdVisorly est une entreprise de technologie éducative qui utilise l'IA pour moderniser et automatiser les processus de transfert universitaire, y compris l'évaluation des relevés de notes, les équivalences de crédits de transfert et le recrutement d'étudiants en transfert. Leur plateforme EddyAI automatise le traitement des relevés de notes et fournit des insights sur les données d'inscription ; EdVisorlyRecruit se concentre sur le recrutement d'étudiants prêts à transférer ; EddyDB crée une base de données centralisée d'équivalences pilotée par l'IA ; et EddyNavigate offre des outils orientés vers les étudiants pour une transparence en temps réel des crédits. L'entreprise cible les universités, collèges communautaires et autres institutions d'enseignement supérieur pour améliorer l'efficacité des admissions, stimuler le recrutement et améliorer la prise de décision des étudiants.

Description

• Own EdVisorly’s day-to-day security program, translating vCISO direction into outcomes across identity, detection, data, and application security • Maintain and evolve the SOC 2 Type II compliance program—evidence collection, control mapping, policy updates, audit preparation • Draft, update, and operationalize security policies and procedures, ensuring documentation reflects real practices and company-wide acknowledgment • Develop and maintain incident response runbooks; serve as incident coordinator during events, escalating to the vCISO as needed • Lead deployment and configuration of identity and access management tools (SSO, Adaptive MFA), establishing and enforcing the company's identity perimeter • Directly own and administer identity, MFA, and email security tooling; partner with managed IT and Engineering to ensure security across all platforms • Coordinate with the MSSP on alert triage and access provisioning/deprovisioning, including governance and break-glass procedures • Serve as the primary security liaison to MilesIT, ensuring managed IT aligns with security policies and SOC 2 requirements • Design and maintain a vendor risk management intake process, including questionnaires and a critical vendor register updated quarterly • Support HR and Legal with role-based hiring security controls, background screenings, and provisioning gates • Manage the security awareness program—review effectiveness, refresh content, and conduct annual tabletop exercises • Hold regular security office hours, fostering a culture of shared ownership and security

🎯 Exigences

• 5+ years of information security experience, with direct ownership of security programs or workstreams • Hands-on experience with SOC 2 Type II (personally led or co-led audit cycles) • Demonstrated ability to draft and implement security policies, standards, and procedures from scratch • Experience configuring/managing security tools in a cloud-first environment (EDR, WAF, DNS security, SIEM/logging, or equivalent) • Familiarity with identity and access management tools (Okta or equivalent SSO/MFA platforms) • Strong written and verbal communication, able to explain security risks to non-technical audiences • Comfort operating with high autonomy and minimal oversight in a fast-paced, ambiguous environment • Experience in SaaS, edtech, or higher education, particularly with FERPA-adjacent or student data privacy (preferred) • Prior mentoring experience or ability to transition into a direct manager as the team grows (preferred) • Familiarity with managed security service providers and escalation workflows (preferred) • Knowledge of cloud security fundamentals (GCP, AWS, IAM, Security Command Center, GuardDuty, S3 policy, etc.) (preferred) • Exposure to application security concepts (SAST, SCA, secure SDLC) (preferred) • Experience with vendor risk management programs (questionnaire design, third-party access tiering) (preferred) • Relevant certifications: CISSP, CISM, GSEC, GCIH, or similar GIAC credentials (preferred)

🏖️ Avantages

• Shape the future of higher education through technology, data, and design • Work with a mission-driven team that values integrity, teamwork, and excellence • Directly advance equitable access and opportunity for students nationwide • Grow your career as our company and security program scale