Skip to Main Content

Sr. Information Security Specialist

SchoolMint New Orleans, LA

  • Expired: over a month ago. Applications are no longer accepted.
Job Description

Senior Information Security Specialist

SchoolMint is the leading K-12 solution provider for strategic enrollment management, student behavior improvement, and school safety. We offer powerful products that help schools run smarter enrollment management and student behavior management. 

We are a fast-growing and established EdTech company rooted strongly in our core values: No Jerks, Period; We, Not Me; Be Heroic; Bring Your Whole Self to Work; Embrace and Drive Change. We take these seriously. At SchoolMint we live what we preach and embody values that empower us to delight our customers with award-winning products and top-notch customer service

 

Job Description

The SchoolMint Engineering team is looking for a Senior Information Security Specialist that is passionate about data security, security architecture, and security strategy. In this role the Information Security Specialist is responsible for overseeing SchoolMint's data, application, and IT security and keeping the company in compliance with industry standards and best practices.

This role is the subject matter expert for concepts behind security controls in application development as well as internal systems. This individual is accountable for identifying weaknesses in our security posture within the company, while defining methods to achieve security control requirements. They work with a team of engineers making sure services are delivered and used securely as required. Works with and supports third parties to provide security services. The Senior Security Specialist will advise and enable development and technical teams to make security decisions and provide advice and guidance, ensuring the effective use of common tools and patterns.

Additional insights, experience or background in any of the following are also of great value: SOC 2 Type 2, ISO 27001, NIST, cloud security (AWS, GCP, Azure), data protection, FERPA, COPPA, static code analysis, dynamic code analysis, PEN testing, microservices, GitHub, Docker, Kubernetes, process maturity, and other related focuses.

 

What You Will Do:

You will: 

  • Review current data security and privacy practices & make policy and implementation recommendations as needed to conform to industry standards and best practices
  • Analyze existing systems and make recommendations for changes or improvements
  • Help author and maintain documentation for supported policies, processes and procedures
  • Lead risk assessments, third party assessments, system hardening, and incident responses
  • Ensure compliance of data security and privacy including use of audits and compliance reporting
  • Conduct proactive structured audits on SchoolMint's business systems, applications and infrastructure and helps remediate identified issues
  • Perform ongoing research of Information Security related topics
  • Maintain knowledge of emerging requirements on a state-by-state basis needed to comply with customer requirements 
  • Provide support for customer security questionnaires and sales team in completing technical responses around security and privacy issues
  • Evaluate vendor security protocols and documentation
  • Achieve and/or maintain various certifications including FERPA and SOC 2 audit compliance by the end of 2021
  • Prepare action plans and reports/root cause analysis in the event that a security breach does occur
  • Generate and analyze security reports, and maintain accurate documentation and audit trail of security events/requests
  • Provide information to management regarding impact on the business caused by theft, destruction, alteration or denial of access to information and systems.
  • Support with execution of fixes as guided by the team
  • Mentor and support Information Security team members and other co-workers on security topics
  • Provide after-hours support on an as needed basis
  • Perform additional duties as assigned

 

 About You:

  • 3-5 years senior level experience in corporate level cybersecurity
  • Bachelor's degree in CyberSecurity, Computer Science or Information Technologies or equivalent experience
  • Working experience of creating/managing security policies/processes, compliance management, and risk assessment
  • Information security certification or related certifications highly desirable
  • ISO 27001/SOC 2 Type 2 certification experience
  • Experience with K12 SaaS software solutions (Bonus Points)
  • Experience with K12 specific data privacy regulations (FERPA, COPPA, various state regulations) as well as non K12 specific data guidelines CCPA, Colorado Data Privacy HB 18-1128, and data center operations guidelines like SOC 2 (Bonus Points)
  • Working experience of public clouds (AWS, Azure, Google) 
  • Can build and execute complex project plans, and quickly respond to ad-hoc requests
  • Strong communication skills, both verbal and written to all levels within organization and customers (technical and non-technical)
  • Detail-oriented with an ability to predict, find and solve problems
  • Passionate learner with desire to continue to grow and adapt

 

Some Awesome Perks

  • Medical, Dental, and Vision Insurance
  • Employee Paid Life Insurance, Short Term & Long Term Disability
  • PTO (15 days), Sick Days (5 days), Birthday Floating Holiday, Floating Holiday, Volunteer Day, and Company Observed Holidays
  • 401k (with a 90-day waiting period)
  • Flexible Spending Account (FSA) and Dependent Care Account (DCA)
  • Commuter Benefits 
  • Educational Assistance Program
  • Conferences and Meet-ups
  • Professional Development

 

SchoolMint

Address

New Orleans, LA
USA

Industry

Technology

View all jobs at SchoolMint