Do you have a passion for SaaS and cloud security? Are you a self-starting and organized project manager that enjoys working with engineers to solve often complex problems? We at Outreach need a senior security project manager to join our team and help us protect our company and our customers.

In this role, you will work across technical teams to help organize, solution, and implement improvements to process and technical controls that protect our infrastructure, products, services, and data. This role will give you a chance to make the most of your strong technical security and project management skills. You will be responsible for improving our information security operations program including working with other business units and engineering teams to improve our security controls and help drive new and improved solutions that reduce risk and integrate into existing flows and processes. You must be comfortable working with cloud technologies and in a high performing and startup environment where everyone has a hand in directly helping us succeed.

In this role, you will be working with management, technical leaders and engineers, external auditors, and at times, directly with our customers.

Your Daily Actives will Include:

• Owning 3-4 security projects at a time, from inception to implementation, in areas such as enhancing engineering access control, improving and automating controls, and operationalizing vulnerability and configuration management.
• Translate security risks into risk treatment plans and tasks that significantly reduce the impact and probability of identified threats.
• Break down complex problems into meaningful, sequential steps easily understood by project teams.
• Regularly communicate status and progress of solving complex problems to executive and leadership teams.
• Developing and evolving information security policy, standards, and baselines and helping educate properties and teams of their obligations. 
• A strong understanding of security standards and regulatory requirements and how they can be met through effective, pragmatic controls.
• Working with control owners to help improve their areas of control. 
• Reviewing the operating effectiveness of current controls and developing a program of continual optimization based on feedback from both the ISMS and operational teams.
• Using enterprise project management tools to manage and track project status, communicate with project team members, stakeholders, and executives. 
• Ensuring cross company collaboration in all aspects of compliance by establishing partnerships with other Outreach security teams with the overarching goal of improving trust of Outreach and its products.

Qualifications

• Successful candidates must have the following skills, experience, and qualifications:
• A minimum of 4 years of experience in an information security role.
• At least two years as a project manager directly managing projects that reduce technical risks and improve overall security for a technical company.
• Extensive information security program experience including creating and improving security controls that measurably reduce risk. 
• Direct experience interpreting industry and regulatory requirements and measuring and improving the effectiveness of controls that meet these requirements.
• Direct experience with ISO 27001/27002, SSAE 18 (SOC 2) and/or NIST 800-53
• Experience in the technical interpretation and practical application of an information security program which supports compliance obligations.
• Have a history of successful cross-organizational efforts.
• Ability to analyze problems and make appropriate decisions quickly.
• Ability to drive large, complex programs and solutions using both direct and virtual teams.
• Experience managing external vendors across broad and complex work engagements.
• Experience assessing and articulating risk to a variety of audiences and reviewing appropriateness of technical or administrative mitigations or outright exceptions.
• Excellent interpersonal and management skills.
• Strong written and verbal communication skills.
• Ability to work flexibly and independently to achieve results within the dynamic Outreach culture.
• Ability to maintain extreme confidentiality.

Why You’ll Love It Here

• 100% medical, dental, and vision coverage for full-time employees

• Flexible time off

• 401k to help you save for the future

• Company-organized and personal paid volunteer days to support the community that supports us

• Fun company and team outings because we play just as hard as we work

• Diversity and inclusion programs that promote employee resource groups like OWN (Outreach Women's Network)

• A parental leave program that includes not just extended time off but options for a paid night nurse, food delivery, gradual return to work, and the Gottman Institute's Bringing Home Baby course for new parents

• Employee referral bonuses to encourage the addition of great new people to the team

• Plus, unlimited snacks and beverages in our kitchen