View Our Website View All Jobs

Manager, InfoSec & GRC

We’re looking for a Manager,  InfoSec & GRC  who will be responsible for monitoring and improving Unbounce’s Information Security and Governance, as well as ensuring Unbounce meets its legal and compliance obligations while managing related risks. You will help with our policies, procedures, standards, and related controls that govern the protection of company information system assets and ensure adherence to our regulatory responsibilities. Areas of focus will include: PCI Compliance, Data privacy, and Cybersecurity. In addition to the application and interpretation of security policies as they relate to risk management, you will also be responsible for the creation and lifecycle management of security policies and associated policy instruments. In addition, you will be the escalation point for contract reviews, and data processing questions and concerns while providing guidance to the Legal & Compliance Analyst. In this role you will oversee our Legal & Compliance Analyst as well as our InfoSec Support Specialist and report directly to the Director, Business Technology & Compliance. 

What You’ll be Doing: 

  • Perform gap analysis, vulnerability  and security risk assessments to determine alignment of new & existing business systems with regulatory requirements, industry best practices, and internal information security standards
  • Review and define policies, standards, methodologies, tools, and patterns
  • Supervise risk analysis program for various Information services systems and processes
  • Liaise with cross-functional teams and collaborate to ensure implementation of security requirements & automation
  • Interact with external auditors on matters related to audits of the organization’s internal controls relating to privacy and other compliance obligations
  • Communicate with team members, peers, and senior management to ensure alignment between Operations and other teams such as Sales and Customer Success
  • Serve as the point of escalation for all security, legal, data privacy, and compliance efforts
  • Oversee the enforcement of and changes to Unbounce’s TOS, DPA, Privacy Policy & AUP
  • Support compliance management activities (e.g. GDPR, PCI-DSS and other attestation processes)
  • Maintain up-to-date detailed knowledge of the information security industry, the GRC domain and data privacy regulations and best practices
  • Oversee the performance and development of your direct reports
  • Perform other duties as assigned by the Director, Business Technology & Compliance related to scalability needs of a growing SaaS company


A little bit about you:  

  • 3-5 years of related experience with Technology, Security, Compliance or Legal
  • Have a good understanding of support tools, techniques, and how technology is used to provide IT services
  • Possess understanding of regulatory as well as information security frameworks including GDPR, CCPA, PCI, SOC2, NIST, and ISO27001 
  • Familiar with contract process and language specific to the security and GRC programs
  • Have the organizational acumen to keep track of all of the various complex moving pieces involved in a project or ongoing operations of a business
  • Are disciplined, conscientious and wired to complete tasks, instinctively knowing how to balance a situation and get the job done in a timely manner
  • Possess superior critical thinking skills with ability to collect and evaluate data from different perspectives and determine the best path forward
  • Possess at least one professional certification related to data privacy, compliance, and/or information security (e.g. CISSP, CRISC, CISA, CISM, CIPP/E, CIPP/C, CIPP/US, etc.)


Competitive Assets:

  • Legal or Paralegal education and certification a definite asset
  • Knowledge or understanding of the following control and program frameworks, OWASP, CSC, COBIT, ISO 27k, and OSFI
  • Prior experience in SOC2, ISO27001, or Privacy Shield certification projects
  • Prior experience as an information security or data privacy and compliance auditor


What’s in it for you:

  • A remote friendly office with flexible hours - for this role we will consider all applications from those based in Canada with the option to work from our Vancouver office  
  • 4 weeks vacation plus Christmas Holiday Closure - you're entitled to the week of Christmas off with pay through to and including Jan 1st 
  • Vacation bonus - $1,000.00
  • 12 Personal Wellness Days (This includes: Personal day, Moving day, Sick day, etc)
  • Health and Wellness budget  - $500.00
  • Networking budget - $500.00
  • A paid day off for your birthday
  • One paid Volunteer day per year
  • All Unbouncers are encouraged to dedicate 10% of their time to Pro-D time


Unbounce Welcomes Everyone to Apply

At Unbounce, we want every employee to be excited to bring their full, authentic self to work. When you do this – when you bring your unique experiences, background, knowledge, perspective, and self-expression while embracing the same from others – we learn from each other, we innovate, and we co-create an environment where Unbouncers can do the best work of their careers. We’re bolder and more brilliant together.


We’re dedicated to ensuring each Unbouncers feels a sense of belonging, feels safe, cared for, respected and valued for who they are, and trusts that their unique voice is heard, embraced, and meaningfully contributes to decision-making. We’re committed to equitable employee experience, opportunity, pay and support for every employee regardless of gender identity or expression, race, ethnicity, family or marital status, religion, socio-economic status, veteran status, national origin, age, sexual orientation, education, disability, or any other characteristic that makes you unique. We have no tolerance for sexism, racism, xenophobia, homophobia, transphobia, ableism, ageism, or any other forms of hateful/harmful discrimination.

Please let us know if you require any accommodations or support during the recruitment process.

Read More

Apply for this position

Apply with Indeed
We've received your resume. Click here to update it.
Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or Paste resume

Paste your resume here or Attach resume file