We believe that mobile voice calls should be secure, engaging, and protected from fraud and robocalls. We believe the phone app is the most outdated app on your smartphone, and that the mobile network - as the largest communications network of any kind - urgently needs a trust and identity layer. You should know who's calling you and why! You should get the calls that are relevant to you (at that time) and none of the ones that aren't. Hiya is building the modern layer for the voice experience. We already serve over 120M users worldwide directly through our apps and in partnership with smartphone makers like Samsung and mobile carriers like AT&T. Are you ready to join our small but mighty legal team on the road to help us serve 1B users? 

With that growth comes a responsibility to keep our customers sensitive data private and safe. We are looking for a talented and collaborative Information Security Manager to join our nimble team. Information Security is a new discipline at Hiya, and success in this role will require a high degree of initiative and pragmatism to ensure the program meets the needs of our rapidly growing business.

In this role, you will:

• Serve as the authority on security and privacy standards and help internal teams achieve and maintain compliance with them
• Conduct internal audits of Hiya's information security management system against these standards to identify and plan resolution of nonconformities
• Support Hiya through external audits by collecting and coordinating evidence
• Lead our risk management program, working across teams to analyze, treat, and report on information security risks
• Review incoming RFPs, acting as a resource for internal best practices while providing technical input on privacy strategies
• Execute operational aspects of our information security program such as vendor management, access reviews, performance metrics tracking, and management reviews

It's awesome if you:

• Have experience in assessing and executing to information security standards such as ISO 27001 or GDPR
• Have experience in SOC2/type 2 and/or ISO certification
• Are practical and creative in your approach to risk management and security
• Excel at project management and paying attention to myriad details
• Have stellar interpersonal and communication skills and are excited to be collaborating with different teams daily
• Have working knowledge of IT and software system architectures so that you can map how software, hardware, and protocols are meeting compliance standards
• Actively look to apply new technology and tools to tackle operational challenges and meet ever-evolving security threats
• Have a track record of trying and learning new things

Hiya is an equal opportunity employer. We value and embrace diversity. We do not discriminate on the basis of race, color, national origin, religion, gender, gender identity or expression, sexual orientation, marital status, age or disability status.

This position is based in Seattle.