web analytics

Chief Information Security Officer

Upside

At Upside, we are proud of the communities we grew up in -- filled with shops owned by our neighbors, and where people can gather. The rise of e-commerce showed us how personalization can unlock proven value for both people and businesses, but brick-and-mortar businesses haven't had access to that level of technology. We created Upside to level the playing field. We bring those online tools offline and give brick-and-mortar retailers the opportunity to personalize transactions. Our product helps people get more out of every dollar and helps businesses earn more profit, so communities grow stronger.

Meet Upside:

We created Upside to help communities thrive! Our retail technology uses the sophistication of online retail—profit measurement, attribution, and incrementality—to provide users with more value on their everyday purchases and brick and mortar businesses with new, profitable customers. We’ve helped millions of users earn 2 to 3 times more cash back than any other product, and tens of thousands of brick and mortar businesses earn measurable profit. Billions of dollars in commerce run through the Upside platform every year, and that value goes directly back to our local retailers, the consumers they serve, and towards important sustainability initiatives. Our mission, values, and commitment to inclusivity guide our team of more than 200 people worldwide, and the quality of our culture is reflected in the impact we’ve had on communities nationwide.

About the job:

The Upside Information Security team is a small tight knit group which has successfully implemented complex security standards across the company. We anticipate growth for the company and that means growth for us! We believe partnership and collaboration are the best path to build awareness and scale security concerns across the entire organization. 

As the Chief Information Security Officer of a small team, you’ll find yourself handling day-to-day tasks, but with the intent to train, educate, and hire your way into more strategic planning and execution.

What you’ll do:

  • Develop, implement, and maintain the company-wide information security strategy.
  • Plan and complete compliance audits, penetration testing, vulnerability assessments or third-party audits.
  • Lead all aspects of security documentation, policy compliance and approvals of systems/projects from a security perspective.
  • Serve as an advisor to leadership teams in the development, implementation, and maintenance of a strong information privacy and security program.
  • Identify and mitigate security events and incidents, compliance issues, security team operational inefficiencies, application vulnerabilities, infrastructure, and other vulnerabilities.
  • Present regular reports on information security to the information security council.
  • Partner with team members across the company to raise information security awareness.
  • Partner with leaders across the organization to ensure the consistent application of policies and standards across all technology projects, systems and services.
  • Partner with Legal teams to ensure compliance with any related legislation, such as the CCPA, or relevant government regulations.
  • Collaborate with vendors and third party service providers.
  • Plan budget allocations and associated financial forecasts related to Information security.
  • Lead technical and professional development for team members.

What you need:

  • 10+ years of relevant experience
  • Strong knowledge of industry standards and frameworks such as ISO 27001, PCI-DSS, Trusted Services Criteria, NIST CSF
  • Deep understanding of cloud services such as AWS
  • One or more industry certifications such as CISSP, CISM, CISA

The fine print:

  • Upside employees are currently working from home during the COVID-19 pandemic. Engineering has embraced a hybrid approach to working remotely. We strongly encourage our employees to work how they are most effective. We will support occasional travel as collaboration in person is still unsurpassed by technology solutions.
  • Notice to recruiters and placement agencies: This is an in-house search. Please do not submit resumes to any person or email address at Upside. Upside is not liable for, and will not pay, placement fees for candidates submitted by any party or agency other than its approved recruitment partners.

At Upside, we believe that diversity drives innovation. Our differences are what makes us stronger. We‘re passionate about building a workplace that represents a variety of backgrounds, skills, and perspectives and do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Everyone is welcome here, come join us!

#LI-SJ1

To apply for the job click here

Chief Information Security Officer

To apply for the job click here

Contact us

Upside

At Upside, we are proud of the communities we grew up in -- filled with shops owned by our neighbors, and where people can gather. The rise of e-commerce showed us how personalization can unlock proven value for both people and businesses, but brick-and-mortar businesses haven't had access to that level of technology. We created Upside to level the playing field. We bring those online tools offline and give brick-and-mortar retailers the opportunity to personalize transactions. Our product helps people get more out of every dollar and helps businesses earn more profit, so communities grow stronger.

Related Jobs