Chief Information Security Officer

Meet Benevity

Benevity is the way the world does good, providing companies (and their employees) with technology to take social action on the issues they care about. Through giving, volunteering, grantmaking, employee resource groups and micro-actions, we help most of the Fortune 100 brands build better cultures and use their power for good. We’re also one of the first B Corporations in Canada, meaning we’re as committed to purpose as we are to profits. We have people working all over the world, including Canada, Spain, Switzerland, the United Kingdom, the United States and more!

Benevity seeks a Chief Information Security Officer to deliver a technology-driven growth strategy in a demanding high-growth SaaS company.

As a senior technology leader, you are a driving force behind our vision of building the technology platform that will help 10M change-makers deliver a billion acts of goodness by 2025. In our first phase geared toward this vision, we are establishing the trusted and scalable infrastructure and development processes that will continue to create ongoing value for Benevity.

We are seeking a highly experienced CISO to establish and maintain the enterprise vision, strategy, and program that ensures information assets and technologies are adequately protected. You will be responsible for identifying, developing, implementing, and maintaining processes across the company to reduce information and information technology (IT) risks, respond to incidents, and limit the impact of security breaches.

You will lead the security operations team and collaborate cross-functionally with engineering, product management, and executive leadership to define our enterprise security standards, manage risk, and ensure the successful delivery of secure and scalable products.

What you’ll do:

• Develop and implement a comprehensive information security strategy addressing business needs that include money movement and the protection of our users’ PII.
• Identify, evaluate, and report on information security risks in a manner that meets compliance and regulatory requirements, and communicate risks to executive leadership and the Board.  
• Work directly with the business units to facilitate IT risk assessment and risk management processes, and work with stakeholders throughout the enterprise on identifying acceptable levels of residual risk.  
• Provide leadership and direction to the information security team.  
• Oversee the investigation of security breaches and assist with disciplinary and legal matters associated with such breaches as necessary.
• Develop, maintain, and publish up-to-date information security policies, standards, and guidelines.
• Stay abreast of the latest security technologies and trends, and evaluate and recommend new security technologies and investments.
• Ensure compliance with all relevant information security laws and regulations.
• Work closely with internal and external auditors.
• Liaise with regulatory bodies and law enforcement agencies as needed.
• Foster a culture of collaboration, knowledge sharing, and continuous learning among the technical teams, promoting cross-functional communication and the exchange of ideas.

What you’ll bring:

• Bachelor's degree in computer science, information systems, or a related field. 
• Master's degree in business administration (MBA) or information security is a plus.
• Professional certifications such as CISSP, CISM, or CRISC are highly desirable.
• Extensive experience (10+ years) in information security, with at least 5 years in a senior leadership role.
• Proven experience in implementing information security strategies.
• Experience managing a team of information security professionals.
• Excellent problem-solving skills and the ability to think strategically while paying attention to details.
• Strong communication and interpersonal skills, with the ability to effectively collaborate with diverse stakeholders, including technical and non-technical team members, executives, and customers.

Discover your purpose at work

We’re not employees, we’re Benevity-ites. From all locations, backgrounds and walks of life, who deserve more …

Innovative work. Growth opportunities. Caring co-workers. And a chance to do work that fills us with a sense of purpose.

If the idea of working on tech that helps people do good in the world lights you up ... If you want a career where you’re valued for who you are and challenged to see who you can become …

It’s time to join Benevity. We’re so excited to meet you.

Where we work

At Benevity, we have developed a Community First approach that we design our people's experience around with goals to build a strong community and culture, achieve stellar execution of our business goals and social mandate, and ensure Benevity-ites thrive. For those who live within a reasonable commuting distance to an office, we can split our time working in the office and from home to optimize the opportunities of both, with the requirement that we spend at least 50% of the time in the office.

Join a company where DEIB isn’t a buzzword

Diversity, equity, inclusion and belonging are part of Benevity’s DNA. You’ll see the impact of our massive investment in DEIB daily — from our well-supported employee resources groups to the exceptional diversity on our leadership and tech teams.

We know that diverse backgrounds, experiences, skills and passions are what move our business and our people forward, so we're committed to creating a culture of belonging with equal opportunities for everyone to shine. 

That starts with a fair and accessible hiring process. If you want to feel seen, heard and celebrated, you belong at Benevity.

Candidates with disabilities who may require accommodations throughout the hiring or assessment process are encouraged to reach out to accommodations@benevity.com.