Empowered Margins, Inc.
Website:
empoweredmargins.com
Job details:
Key Responsibilities
1. Security Governance Lead the information security program, maintain policies, drive governance cadence, manage the security roadmap, and report metrics to leadership.
2. Risk Management Maintain risk register, conduct assessments, review changes/vendors for security impact, and drive mitigation and risk prioritization.
3. Compliance & Audits Support ISMS/SOC 2 readiness, manage audit evidence, ensure control effectiveness, and handle customer security questionnaires.
4. Identity & Access Management (IAM) Govern access controls, enforce RBAC, manage onboarding/offboarding, conduct access reviews, and ensure MFA/SSO/security standards.
5. Secure SDLC Embed security in development, ensure code and vulnerability controls, participate in design reviews, and drive remediation.
6. Cloud & Infrastructure Security Oversee and coordinate cloud security posture, vulnerability management, DR/backup, monitoring, and system hardening with the Dev Ops Lead.
7. Incident Response Oversee and manage incident response plans, coordinate triage and communication, ensure logging/alerting, and run drills.
8. Vendor Security Assess and monitor third-party risks, maintain vendor inventory, and support security-related contract reviews.
9. Data Protection Define data classification, ensure secure data handling, enforce encryption and access controls, and promote data minimization.
10. Security Awareness Drive training programs and foster a strong security culture.
- 11. Customer Trust Act as security POC for clients, support sales in security diligence, and represent security posture in client discussions.
Click on Apply to know more.