Skip to main content
Back to Careers

Senior Information Security Manager

Reporting to the VP of Technology, the Senior Information Security Manager requires an in-depth understanding of information security, technology architecture, and business security. The successful candidate will be expected to demonstrate relevant experience working in a dynamic environment dealing with complex challenges and communicating to all levels of the business.

Facilisgroup is a leading technology provider in the Promotional Products (promo) industry. We build software-as-a-service solutions that help promo distributors become more efficient and grow their sales. Over $1 billion of sales are processed through Facilisgroup’s technologies every year.

Reporting to the VP of Technology, the Senior Information Security Manager requires an in-depth understanding of information security, technology architecture, and business security. The successful candidate will be expected to demonstrate relevant experience working in a dynamic environment dealing with complex challenges and communicating to all levels of the business.

As the first security expert, the successful candidate, an autonomous self-starter, will oversee and control all aspects of computer and information security at Facilisgroup with little direction or guidance.

Facilisgroup is a fast-moving, fast growing, innovative SaaS company located in Brentwood, Missouri.

Responsibilites:

  • Hire, train, and supervise a small, efficient, and effective information security team.
  • Work closely with senior technology stakeholders to ensure appropriate security guidance to support product and service delivery.
  • Develop, implement, and monitor a strategic and comprehensive information security and IT risk management program to ensure the integrity, confidentiality, and availability of information owned, controlled, or processed by Facilisgroup.
  • Develop, maintain, and publish information security policies, standards, and guidelines. Oversee the approval, training, and dissemination of security policies and practices.
  • Create, communicate, and implement a risk-based process for vendor risk management, including assessing and treating risks that may result from partners, consultants, and other service providers.
  • Develop and manage an information security budget.
  • Create and manage information security, cyber security, and risk management awareness training for all employees and contractors.
  • Work directly with various business units to facilitate IT risk assessment and risk management processes and work with stakeholders throughout the enterprise on identifying acceptable levels of risk.
  • Provide regular reporting on the current status of the information security program to senior business leaders and the board of directors (as required).
  • Create and manage a framework for roles and responsibilities with regard to information ownership, classification, accountability, and protection.
  • Provide strategic risk guidance for SaaS product development, including the evaluation and recommendation of technical controls.
  • Ensure that all security programs comply with relevant laws, regulations, and policies to minimize or eliminate risk and audit findings.
  • Monitor the external threat environment for emerging threats, and advise relevant stakeholders on appropriate courses of action.

Required Skills:

  • The ability to influence at senior levels on matters relating to security and information risk.
  • Good verbal and written communication skills and able to communicate effectively at all levels.
  • Ability to manage time and priorities appropriately.
  • Positive attitude towards learning and development demonstrated by a record of continuing professional development.
  • Experience working with SaaS or Software Development organizations.
  • CEH Certification.
  • Good working knowledge of ISO 27001.
  • Good working knowledge of SOC 2 and its audit process.
  • A bachelors degree in a computer or technology-related field.

Education & Experience:

  • CISSP Certification.
  • A minimum of 7 years of IT experience.
  • At least five years in an information security role.
  • At least two years in a supervisory/management role.

To apply for this position, please go to the link below, complete the Culture Index survey and upload your resume.

This survey is a tool that helps us better understand your overall fit for the position and how you prefer to be managed and communicated with. Candidates under consideration will be contacted for an interview.

Facilisgroup is an equal opportunity employer. We are committed to treating everyone with dignity and respect. All applicants will be considered for employment without attention to race, ethnicity, religion, sex, sexual orientation, gender identity, national origin, veteran, disability status, or criminal history.