Information Security and Compliance Lead

Jotform

Apply now
View and Apply

Job description

Jotform is a San Francisco-based SaaS company with more than 30 million users worldwide. We are thriving and growing, and we’ve never needed outside funding. That’s because we like keeping things agile, independent, and fun. Jotform believes everyone should be able to create their own online forms. Our 10,000+ ready-made form templates, 100+ integrations, and more than 380 widgets have made us one of the most popular online form builders for organizations of all sizes — from small businesses to enterprises.

Role Summary

We are seeking an experienced and operationally-focused Information Security and Compliance Lead. You will be in charge of protecting Jotform data, products, and apps while making sure that important compliance frameworks like SOC2 and HIPAA are followed. Crucially, this individual will serve as the primary contact for Jotform clients and prospects with security-related inquiries.

Here’s what you will do:

  • Ensure compliance alignment with evolving business needs, client requirements, and regulatory changes, including adopting additional certifications
  • Conduct regular audits, risk assessments, and compliance reviews to identify and address vulnerabilities
  • Develop and maintain protocols for leveraging security systems during emergencies, incidents, and investigations
  • Establish and maintain a comprehensive security package for use in sales and client communications
  • Develop and manage processes for rapid response to security inquiries from prospects and clients during RFPs and the sales process, ensuring a tight SLA on requests
  • Manage governance, risk, and compliance (GRC) initiatives, ensuring internal and external adherence to best practices and frameworks
  • Attend meetings with the customers’ and potential leads’ security teams and actively listen to their specific concerns and requirements
  • Ensure continuous improvement in security operations and practices and areas of focus/hot topics for external audits
  • Supporting process owners through training, reviewing, and providing guidance for their processes including, but not limited to, IT General Controls, IT Operations and SOC Reporting
  • Facilitating requests between the control owners and the external audit team
  • Own security onboarding and awareness training for both internal staff (ensuring they understand the company's security policies, procedures, and best practices) and customers, focusing on data protection, phishing prevention, social engineering, and other key topics

Education /Work Experience /Technical Requirements:

  • Bachelor's degree in a business-related or IT-related field of concentration or equivalent combination of training and experience; professional certification or advanced degree is preferred
  • 10+ years of experience in application security, product security, and compliance management, with a strong operational focus
  • Significant experience in a similar information security leadership position, within a growth B2B SaaS environment
  • Proven experience with industry standards and compliance frameworks such as SOC2, HIPAA
  • Extensive track record overseeing a secure environment for storing confidential customer data
  • Strong understanding of cloud security, particularly in Google Cloud and/or AWS
  • Excellent communication and collaboration skills, with the ability to respond quickly to high pressure security inquiries

Personal Specification/Skills:

  • Ability to interpret and understand business needs and convey such issues to information security teams
  • Proficient in technical writing and demonstrating various creative mechanisms to communicate to diverse audiences
  • Strong diagnostic skills and holistic view for solution
  • Strategic thinker who can translate vision to tangible execution and results
  • Able to work at incredible speed and with great focus is a must for this role; you must be able to prioritize responsibilities to manage a large workload with very tight timelines
  • Strong leadership, collaboration, and mentoring capabilities

Compensation, Perks & Benefits:

  • Base pay range: $175K - $325K. This position may be eligible for a performance-based bonus. Exact compensation may vary based on skills, experience, and location
  • 100% employer-paid medical, dental, and vision insurance premiums for employees and families
  • 100% fully remote work with supportive colleagues!
  • 401(k) with 4% company match
  • 10 days annual vacation, plus 12 company holidays, and office closure between Christmas and New Year
  • FSA and EAP
  • $2,500 annual professional development stipend after one year of employment
  • Internet reimbursement (up to $50 per month)

Most recent jobs

ERGO Group AG
Published on
April 2, 2025

AI Governance Specialist

Job type
Full-time
Experience level
Associate
Job location
Germany
More details
ARHS Group
Published on
April 2, 2025

AI Governance & Compliance Officer

Job type
Full-time
Experience level
Mid-Senior level
Job location
Belgium
More details
ALTEN Polska
Published on
March 30, 2025

AI Governance Analyst

Job type
Full-time
Experience level
Associate
Job location
Poland
More details
Jotform
Sort order
Information Security and Compliance Lead
Published on
February 7, 2025
Seniority level
Director
Job type
Full-time
Job location
United States
Apply now
View and Apply
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
We use cookies to provide you with the best user experience. Through cookies, we ensure the proper functioning of our site, tailor content to your preferences, and provide features for traffic analysis. Learn more in our Privacy notice.

You can change your cookie settings at any time by clicking on Cookie preferences
RejectAccept Cookies
cookie-policy
Cookie preferences