Job Information
Botkeeper Inc Senior Manager of Information Security and IT in Tampa / St Petersburg, Florida
Company Overview:
Ready for the future of accounting? Botkeeper provides automated bookkeeping support to Accounting firms by using a powerful combination of machine learning, artificial intelligence, and skilled accountants. Our clients receive 24/7 accounting and support as well as incredible insight into their clients' financials with interactive dashboards and unlimited reporting.
Botkeeper was designed to scale with a firm, providing automated accounting support for every vertical, no matter how specified.
How does it work? Our automated bookkeeping software combines various data sources while applying rules, processes, and calculations to give you the most insightful custom reporting and dashboards, while also eliminating costly and error-prone manual accounting. Our skilled Senior Accounting team oversees the automation and focuses on complex accounting, data integrity, and interpretation. We’ll be hard at work extracting data from receipts, processing payroll, paying bills, sending invoices, reconciling accounts, and generating beautiful reports—so you have more time for what matters most to your firm and your clients.
Even better? Botkeeper can work hand-in-hand with your current team, or our technology can step in to take on the tedious tasks so your bookkeeper and accountants can up-skill and focus on driving more value for your firm!
For CFOs, CPAs or other Accounting Professionals, Botkeeper can help you offload the day-to-day blocking and tackling of bookkeeping (data entry, reconciliations, classifications), allowing accountants to focus on higher-level client advisory services. We're working around the clock, offering best-in-class support.
About the Role
As the Senior Manager of Information Security and IT, you will be responsible for leading our company's efforts to establish and maintain a robust information security program while overseeing our IT infrastructure. The ideal candidate will have extensive experience in information security, a deep understanding of IT systems, and specific expertise in managing compliance with SOC 2 standards.
Key Responsibilities:
Develop and Implement Information Security Strategies: Lead the development and implementation of comprehensive information security strategies, policies, and procedures to protect company data and systems from internal and external threats.
Manage SOC 2 Type 2 Compliance: Oversee all aspects of SOC 2 compliance, including conducting risk assessments, implementing controls, and coordinating audits. Ensure that our organization meets SOC 2 requirements and maintains certification.
IT Infrastructure Oversight: Manage and maintain the company's IT infrastructure, including networks, servers, systems, and software applications. Ensure that IT systems are secure, reliable, and efficient to support business operations.
Risk Management: Identify, assess, and prioritize information security risks and vulnerabilities. Develop and execute risk mitigation plans to safeguard against potential threats and breaches.
Incident Response and Management: Establish incident response protocols and lead the response to security incidents, breaches, or other IT-related emergencies. Implement measures to minimize the impact of incidents and prevent recurrence.
Security Awareness and Training: Develop and deliver security awareness programs to educate employees about security best practices and promote a culture of security awareness throughout the organization.
Vendor Management: Evaluate and manage third-party vendors and service providers to ensure compliance with security requirements and standards. Conduct regular assessments of vendor security practices and performance.
Security Monitoring and Compliance Reporting: Implement tools and processes for continuous security monitoring and reporting. Generate regular reports on security metrics, compliance status, and incident response activities for senior management and stakeholders.
Qualifications:
Bachelor's degree in Computer Science, Information Technology, or related field (Master's degree preferred)
CISSP, CISM, Security+ or similar certification highly desired
7+ years of Information Security and IT experience including support, engineering and internal/external audits
3+ years in people management experience
Extensive experience in information security management, including SOC 2 compliance
Extensive experience in Data Privacy, including GDPR
Experience in HIPAA, PCI, ISO 27001 and/or SOX is a plus
Proven track record of designing and implementing information security programs and controls
Strong knowledge of IT infrastructure, networking, cloud technologies and endpoint security
Experience with security tools and technologies, such as SIEM, IDS/IPS, DLP, and encryption
Excellent leadership, communication, and problem-solving skills
Experience with vendor relationship management and value-added resellers
Ability to work effectively in a fast-paced environment and manage multiple priorities
Compensation Range: $150,000 - 180,000
Powered by JazzHR