Information Security Manager
Expires: September 27, 2025
As an Information Security Manager at Stravito, you will manage security and privacy compliance initiatives, acting as the key liaison for security frameworks, customer security assessments, and privacy matters. You will collaborate closely with legal and customer-facing teams to align technical security, compliance requirements, and business goals.
Main requirements:
  • Bachelor's degree in Information Security, Computer Science, or related field
  • 3+ years of hands-on cybersecurity experience implementing and managing security controls and compliance frameworks
  • Hands-on experience with cloud security controls in AWS, Azure, or GCP
  • Experience designing security architecture for SaaS platforms and AI/ML systems
  • Understanding of ISO 27001, SOC 2, and similar security frameworks
  • Strong knowledge of privacy regulations and their technical implementation
  • Excellent communication skills to explain complex security concepts to varied audiences
  • Relevant security certifications such as CISSP or CISM
  • Familiarity with secure coding practices and ability to guide development teams
Responsibilities:
  • Design and implement security architecture for Stravito's SaaS platform and AI systems
  • Develop and maintain security policies, procedures, and controls aligned with multiple compliance frameworks
  • Respond to security questionnaires and facilitate customer security due diligence
  • Design and implement comprehensive security awareness training programs
  • Collaborate with legal team on privacy-related initiatives and compliance requirements
Required hard skills:
  • Information security management
  • Security architecture design for SaaS and AI/ML systems
  • Compliance frameworks knowledge: ISO 27001, SOC 2
  • Cloud security on AWS, Azure, GCP
  • Privacy regulations technical implementation
  • Security certifications (e.g., CISSP, CISM)
  • Secure coding practices guidance
Recommended hard skills:
  • Experience with ISO 42001 or AI security frameworks
  • Customer-facing security roles experience
  • Cloud security architecture and controls knowledge
  • DevSecOps implementation experience
Soft skills:
  • Strong communication skills
  • Ability to explain complex security concepts to diverse audiences
  • Collaboration with technical teams and senior management
  • Curiosity and continuous learning mindset
Frameworks:
  • ISO 27001
  • SOC 2
  • ISO 42001 (recommended)
Natural languages:
  • English (Proficient)
Cultural skills:
  • Working in a diverse, international, and remote-first environment
  • Embracing different perspectives
  • Operating with ownership and accountability
  • Collaborative teamwork
Apply for this job
Source
Apply

You might also like: