Information Security Manager

ABOUT US 

Boostlingo is a mission-driven, fast-growing language technology company focused on defining and developing the next generation of interpretation technology solutions. Being at the forefront of this ground-breaking technology enables us to connect people across the globe and break down communication barriers.   

Boostlingo’s technology innovation empowers our customers and the people they serve to communicate without barriers and increases language access for all. We offer products and tools for interpreter management, video remote Interpretation (VRI) and over the phone interpretation (OPI) delivery, interpreter scheduling, simultaneous interpretation, multilingual events, and monthly subscriptions for on-demand interpretation.   

Headquartered in Austin, TX, our global, hybrid teams are distributed across offices in San Francisco, Austin, Copenhagen, Manila, and Ireland. 

WHAT IT MEANS T BE A BOOSTIE 

Our core values drive everything we do. From how we approach identifying talent we invite to join the team, to the energy and contributions we bring to our amazing culture, to the decisions we make at both the tactical and strategic level. To be a Boostie means to embody these values:  
 

• No Hide, Go Seek: Be accessible to colleagues, seek out what you need, ask others for help.  
• Positive Vibes: Bring positive energy and have a “solutions” mindset  
• Be Bold but Stay Humble: Appreciate that every voice matters (and we want to hear yours) while remaining humble in the understanding that no one person is more important than the broader team.  
• Be Inclusive: Create and contribute to an environment where anyone can feel welcomed, supported, respected, and valued.  

In both 2022 & 2023 Boostlingo was recognized as one of Inc. Magazine's Best Workplaces. This esteemed recognition reflects the dedication that our incredible team has towards embodying our Core Values every day and we couldn’t be prouder!  

ABOUT THE ROLE  

Boostlingo, a leading software/technology company in the language industry, is seeking an experienced Information Security Manager to oversee our technology infrastructure, manage vendor relationships, and lead security and compliance initiatives. The ideal candidate will have a strong technical background and experience in managing IT operations within a fast-paced, innovative environment.  

In this role, you will be responsible for developing, implementing, and maintaining comprehensive information security policies and practices across the organization. You will monitor and mitigate risks, ensure regulatory compliance (such as SOC 2, HIPAA, or ISO 27001), and respond to security incidents and audits. You’ll work closely with engineering and product teams to ensure secure software development practices and promote a security-first mindset throughout the company.  

Beyond overseeing IT systems and ensuring robust enterprise security, you’ll play a key role in driving cross-functional technology initiatives and identifying opportunities for automation and continuous enhancement. As a champion of user-focused solutions, you’ll help shape systems that are not only secure and dependable but also designed to improve the employee experience.  

The ideal candidate will excel at collaboration, demonstrate a proactive and solutions-oriented mindset, and possess the ability to build strong relationships with both internal stakeholders and external partners while advancing Boostlingo’s security posture in alignment with business goals.  

Excited to grow with a forward-thinking organization that values diverse perspectives and encourages innovation? If so, we’d love to connect with you.  

WHAT WILL BE EXPECTED OF THIS ROLE: 

• Develop and maintain information security policies, procedures and training and advise the various departments and practice groups in adhering to them.   
• Lead the ongoing ISO 27001 lifecycle and manage the relationship with our consulting team to ensure security operations compliance within the organization.   
• Manage relationships with security managed service providers and continuously develop their capabilities. 
• Analyze new systems (hardware and software) and provide recommendations concerning their security.   
• Develop and maintain an ongoing risk assessment program targeting information security and privacy matters.  
• Oversee and manage relationships with vendors to ensure high-quality service delivery, compliance with SLAs, and cost-effectiveness.   
• Develop, implement, and maintain security protocols and compliance frameworks to protect company data and adhere to industry standards.   
• Collaborate closely with Sales and Account Managers to provide technical insights and support during the pre-sales process.   
• Assist in drafting, reviewing, and refining technical sections of RFPs, RFIs, and client proposals to ensure accuracy, feasibility, and alignment with company capabilities.   
• Evaluate client requirements outlined in RFPs and work with cross-functional teams to propose appropriate IT solutions, ensuring competitive and compliant submissions.   
• Translate complex technical solutions into client-facing documents that are clear, concise, and compelling.   
• Serve as a liaison between technical teams and business units to gather inputs and ensure consistent messaging in proposals.   
• Analyze potential projects’ technical viability, resource requirements, and delivery timelines based on RFP scope.   
• Ensure all proposal content adheres to internal standards, compliance requirements, and risk management policies   
• Lead all IT related initiatives towards the goal of resolving technical issues and providing support for software solutions tailored to a global language services technology company.   
• Collaborate with product development and operations teams to align IT initiatives with business objectives and enhance product offerings.   
• Conduct regular security audits and compliance assessments, ensuring the organization meets all regulatory requirements.   
• Stay updated on emerging cybersecurity threats and industry trends to implement proactive measures.   
• Other duties as assigned. 

WHAT MAKES YOU PERFECT FOR THIS ROLE:   

• Proven experience leading all aspects of the incident response lifecycle  
• Comprehensive knowledge of core and advanced IT controls, leading industry frameworks, and cybersecurity best practices  
• Strong understanding of regulatory requirements and compliance frameworks  
• Proven ability to manage multiple projects, priorities, and vendor relationships in a dynamic environment.  
• Excels at designing efficient, scalable processes and using analytical insights to influence operational excellence  
• Ability to influence cross-functional teams and leaders through well-reasoned, data-driven solutions  
• Maintains excellent verbal and written communication, interpersonal, and relationship-building skills to effectively work with a wide spectrum of stakeholders  
• Comfortable working autonomously in ambiguous, fast-moving environments  
• Strong analytical, problem-solving, and leadership skills, with the ability to communicate effectively across all levels of the organization.  

MINIMUM QUALIFICATIONS:   

• Bachelor’s degree in information technology, Computer Science, or a related field; Master’s degree is a plus.  
• 5+ years of experience in IT management, particularly in vendor oversight and security compliance.  
• In-depth knowledge of IT security frameworks and compliance regulations relevant to the technology and language industries (e.g., GDPR, CCPA).  
• Demonstrated knowledge and hands-on experience with industry-standard compliance frameworks including SOC 2, ISO/IEC 27001, HIPAA, and HITRUST.  
• ITIL Foundation certification with hands-on experience implementing ITIL-based processes  
• Experience working across a broad range of IT environments, including network infrastructure, OS platforms, client/server frameworks, and end-user computing  

PREFFERED QUALIFICATIONS:   

• One or more of the following certifications strongly preferred: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH), CRISC (Certified in Risk and Information Systems Control), Certified Information Systems Auditor (CISA), or similar. 
• Experience with IT service management methodologies.  
• Familiarity with software solutions and technologies used in the language industry.  
• Deep understanding of Cloud infrastructure (AWS, GCP, or Azure Cloud) concepts, services, and related controls.   
• Advanced knowledge of information security concepts and technologies such as SCA, SAST, DAST, IAM, vulnerability management, firewalls, IPS/IDS, network analyzers, proxies, SEIM, SOAR, encryption, cloud-based security control services, WAF, bot mitigation. 

WHAT MAKES BOOSTLINGO A GREAT COMPANY? 

• Values and mission-based ethos that drives our product development strategy 
• Fun, energetic environment with an incredible culture (just ask about our eNPS scores!)  
• Hybrid/Remote working arrangements 
• Competitive compensation and robust benefits offerings, including 401(k) plan with match! 
• Flexible PTO 

We are an equal opportunity employer and value diversity here at Boostlingo. Boostlingo does not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. 

This role is remote, however, we can only hire in the following states at this time:  

Arizona, California, Colorado, Florida, Georgia, Illinois, Maine, New York, Oregon, Pennsylvania, Tennessee and Texas. 

No Agencies Please, C2C candidates will not be utilized at this time.  

No Relocation or Sponsorship offered for this position.