Director, Information Security

About G2 - Our People 

G2 was founded to create a place where people will love to work. We strive to create meaning in work and provide more than just a job: a true calling. At the heart of our community and culture are our people. Our global G2 team comes from a wide range of backgrounds and experiences, and that’s what makes our G2 community  strong and vibrant. We want everyone to bring their authentic selves to work, and we do this through our company and team events, our G2 Gives charitable initiatives, and our Employee Resource Groups (ERGs). 

Our employee-led, leadership-supported ERGs celebrate the diversity of our team, foster inclusivity and belonging, and create a space to connect to each other. Through connections and understanding, we build a stronger and more dynamic global team and help every person reach their personal peak.

We support our employees by offering generous benefits, such as flexible work, ample parental leave, and unlimited PTO. Click here to learn more about our benefits. 

About G2 - The Company

When you join G2, you join the global team behind the largest and most trusted software marketplace. Every month, 5.5 million people come to G2 to inform smarter software decisions based on honest peer reviews. Authenticity is our focus, and every day we help thousands of companies, and hundreds of employees, propel their potential. Ready for meaningful work that starts and ends with compassion and heart? You’ve come to the right place.

G2 is going through exciting growth! We’ve recently secured our Series D funding of $157 million, which will further allow us to grow and develop our product and people. Read about it here!

About The Role

The Director of Information Security leads G2’s information security, privacy, and compliance programs while building and maturing the security foundation for our growing organization. This role will directly manage a team of security, privacy, and GRC professionals while partnering closely with Engineering leadership to drive security initiatives. 

In This Role, You Will: 

• Leads a team of  Information Security managers and analysts to support vendor, partner, and internal business needs while developing and executing our security strategy.
• Aligns G2 with the department level strategic planning, implementation, and optimization of security priorities for internal employees within an agreed SLA and in alignment with  global regulatory and framework compliance, all while anticipating and reacting to changes in policy.
• Drives strategic planning to anticipate and prepare for emerging privacy regulations and compliance requirements, provides executive guidance to privacy and compliance teams while enhancing program maturity, and partners with business stakeholders to build scalable compliance frameworks that enable growth.
• Identifies and implements process and technology improvements to yield high efficiency or effective impacting long-term business goals.
• Oversees security architecture decisions and implementation, leads threat modeling and risk assessment processes, guides security engineering practices and cloud security controls, and implements and maintains security monitoring and incident response capabilities.
• Establishes policies and operational guidelines for Information Security across all  vendor relationships.
• Establishes policies and procedures to manage and enforce the Vendor Risk Management Policy by overseeing security reviews of G2 third party vendors.
• Establishes governance frameworks for AI/ML systems, ensures responsible AI development practices, and implements controls for AI data security and privacy.
• Oversees the management, configuration, and proactive monitoring of physical security.
• Establishes market benchmarks and provides leadership and guidance to technical teams regarding architecture and procedures.
• Identifies, evaluates, and improves the implementation and use of new and existing information security tools to meet established measurements.
• Raises the acumen and authority of information security personnel through awareness and maintains compliance training resulting in industry leading engagement.
• Establishes, communicates, and monitors information security programs effectively with other teams within the G2 organization. 
• Accountable for the resolution and proactive management of company IT security issues, avoiding business risk.
• Establishes global informative information security training to ensure a deep understanding of security across G2 in accordance with policies of the organization.
• Perceived as internal and external subject matter expert  for all Information Security activities.
• Responsible for communicating to global customers, partners, and vendors to independently develop a go-public plan in the event of a security incident.
• Creates improvement programs applying industry trends, technologies, and standards into G2 to meet long-term business goals.

Minimum Qualifications:

We realize applying for jobs can feel daunting at times. Even if you don’t check all the boxes in the job description, we encourage you to apply anyway. 

• 8+ years of Information Security  experience.
• 3+ years leadership experience.
• 3+ years of experience with AWS.
• Experience managing SOC 2 certifications, ISO 27001, penetration testing, and GDPR compliance.
• Experience with AI/ML security and governance.
• Proven leader with expertise supported by multiple certifications or coursework.
• Strong communication skills working across a globally diverse team.
• Proven experience negotiating with enterprise vendors to reduce costs.
• Vision to anticipate shifts in priorities and easily adapts to solutions.

What Can Help Your Application Stand Out:

• Relevant certifications (CISSP, CISM, CRISC).
• Experience in B2B SaaS environments.
• Privacy certifications (CIPP/E, CIPM).
• Experience implementing zero trust architectures.
• Background in application security.

Our Commitment to Inclusivity and Diversity

At G2, we are committed to creating an inclusive and diverse environment where people of every background can thrive and feel welcome. We consider applicants without regard to race, color, creed, religion, national origin, genetic information, gender identity or expression, sexual orientation, pregnancy, age, or marital, veteran, or physical or mental disability status. Learn more about our commitments here. 

--

For job applicants in California, the United Kingdom, and the European Union, please review this applicant privacy notice before applying to this job.