IT and Infosec Officer / Manager

We're quickly growing and super excited for you to join us!

About Topsort

At Topsort, we believe in the mission of democratizing the secret technologies of the walled gardens and creating a privacy-first cookie-free world of clean advertising with modern tech, friendly products, and AI. We believe in making advertising intuitive, intelligent, and genuinely cool, without any of the creepy ads or cookie-obsession (well, maybe just the chocolate ones). In a rapidly changing industry, we're on a mission to democratize monetization access for all and ensure that advertising doesn't leave any brand or seller feeling confused or overwhelmed

Today, Topsort has 5 major hubs worldwide, and employees in 13+ countries, including Menlo Park, Boston, Santiago Chile, Sao Paulo Brazil, Barcelona Spain, and Sydney Australia. We are a truly global company that was born in the pandemic that’s had rapid growth since out of a genius product, a customer-first mentality, and a hardworking team of talented individuals. Since our founding in 2021, we’ve gained customers in retail, marketplaces, and delivery apps in 40+ countries and quickly approaching the #1 position in the industry.

Do you enjoy a fast-paced environment? Do you like seeing your work create real-time impact, being part of a rocket ship from the very beginning? Let’s do the unimaginable - let’s make ads clean and cool again, with AI and modern technology. 

What it’s like to work at Topsort

Our team is all about straightforward communication, embracing feedback without taking it personally, and fostering a super collaborative environment. It’s a sports team that’s hyper focused on winning, collaborative internally, and competitive externally - never the other way around. We thrive on working in the open, lifting each other up, and getting things done with a sense of urgency. We're the kind of team that loves making bold choices, sharing extraordinary opinions, and maintaining a 100 mph pace. No endless meetings here – if it can be done today, we're all about getting it done today.

About the Role:

We are looking for an experienced IT professional and Information Security Officer to join Topsort and help us build the next generation of privacy friendly advertising. In this role, you play a critical part in owning and building the security practices at Topsort and ensure compliance across audits, under guidlines such as SOC2II, ISO27001, GDPR etc. 

In this role, you'll own Security, Risk and Compliance with clients at all levels of the organization, including

• Compliance
• Information Security
• Risk Management
• Data Privacy
  
  

The ideal candidate’s experience may include but is not limited to the following:

• Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects
  • Compliance framework mapping and implementation,
  • Regulatory mapping and implementation
  • Audit, risk or regulatory remediation management,
  • Readiness for new laws and regulations,
  • Risk, Compliance or Information Security risk reporting and monitoring
  • Creation of roadmaps to mature or advance Risk, Compliance or Information Security Strategies/Programs/Controls
  • Design and enablement of cyber controls functions and processes
  • Change management related to regulatory adoption or compliance changes
  • Audit or certification readiness
  • Sample projects/programs could include but are not limited to:
  • Familiarity or direct experience with GRC/Cybersecurity solutions, tools and technologies
  • Control design or maturation for high-demand technical areas such as ERP, Identity and Access Management, Business Continuity and Resiliency, Cloud
  • Knowledge of and/or application of industry specific regulations, laws, and standards such as the EU-GDPR, CCPA/CPRA, HIPAA, PCI
  • Knowledge of and/or application of compliance and security frameworks and standards such as COSO, NIST, ISO
  • Management of regulatory, internal or external audits, or experience as an auditor
  • Projects or roles requiring coordination across lines of defense working with technical, business, compliance, risk and audit teams to deliver solutions
  • Work or projects with military or federal government agencies in Risk, Compliance or Information Security/Cyber Security sectors
  • Certifications: CIPP, CRCM, CRM, ARM, CISSP, CISM
  • RFP Completion: Act as a subject matter expert in completing security, IT, and compliance sections of RFPs to support the sales process. Ensure all responses are accurate, concise, and aligned with customer requirements.
  • Customer Security Questionnaires: Collaborate with internal teams to efficiently complete technical and compliance-related questionnaires, helping build trust and confidence with prospective and existing customers.
  • Communication with Stakeholders: Work closely with sales, customer success, and leadership teams to address client concerns related to security and compliance.
  • Define, implement, and maintain robust security controls across the organization.
  • Support compliance with SOC 2 and ISO 27001 frameworks, ensuring alignment with industry standards.
  • Conduct security assessments to identify risks and develop mitigation plans.
  • Oversee cloud environments, such as AWS, GCP, and Google Workspace, ensuring security best practices are in place.
  • Utilize Infrastructure as Code (IaC) tools to manage secure cloud environments and Kubernetes deployments.
  • Administer tools like Bitwarden, AWS IAM, and internal platforms (e.g., Retool, Slack) for secure access management.
  • Provide responsive and proactive support for security and IT resources, ensuring end-user satisfaction.
  • Apply cost-effective and efficient decision-making practices to optimize IT and security resource allocation.

Qualifications

Required-

• Alignment to our core values: Excellence, Participation, Integrity, and Collaboration
• Hungry, Humble, Smart
• Demonstrated business and technology acumen
• Strong written and verbal communication skills
• Understanding and experience solving real business problems
• Proven track record of delivering results
• Experience working with and/or leading a team
• Ability to work across industries, roles, functions & technologies
• Authorization for permanent employment in the United States (this position is not eligible for immigration sponsorship)

What (we think) you need to be successful - we’re open to not checking all the boxes and be proven wrong by outlier candidates as well! 

• Bachelor’s or Master’s degree in Computer Science, Engineering, or a related field.

• 2+ years of experience in similar roles.

• Proven expertise in completing RFPs and customer security questionnaires, particularly in support of sales and compliance processes.

• Strong experience in cloud security (AWS, GCP) and infrastructure management with tools like Kubernetes and IaC.

• Familiarity with compliance standards such as SOC 2 and ISO 27001 is a strong plus.

• Exceptional organizational and communication skills to manage internal and customer-facing responsibilities effectively.

• Ability to think strategically and economically when implementing IT and security solutions.

Topsort Culture

• Speed: We work hard, set aggressive goals and execute flawlessly to accomplish them. We give candid feedback, push each other to set higher goals and produce more impact by always thinking “how do we do this faster and better”
• Fast Growth: We believe startup scaleup is just like a team sport. It's been written in our motto since day 1 that we are collaborative internally, competitive externally, and never the other round around. You are ultimately surrounded by just different people that are all here to help you get the job done and shine as a team. 
• Intellectual Rigor and Individuality: We were born in the pandemic by Stanford and Harvard alum cofounders who offer remote-working options with coworking memberships and (at least) once a year in person offsite gathering. You’ll be welcomed by coworkers in 11 countries that all bring a unique perspective to the company from day 1. From personalized birthday gifts to work anniversaries, and management training program or in-person gatherings or career talks and mentorships, part-time DJs and tik-tok vloggers are also commercial leaders and technical staff at Topsort. We don’t take management with a cookie cutter approach - but rather we cherish your quarks and think it makes us stronger. 

Do you sound like the right fit? Let's dive right in!