Jobs//Hybrid//Chicago, IL//Cybersecurity + IT//

Chief Information Security Officer

Origami Risk
| Chicago, IL, USA | Hybrid
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

The Chief Information Security Officer (CISO) ensures the security and integrity of the organization's information systems and data. Origami Risk's security program responsibility includes measuring, assessing, reporting, and tracking risks to the organization to support informed risk management decisions by executive leadership. The CISO oversees daily security operations supporting the confidentiality, integrity, and availability of protected information, including but not limited to compliance with standard security frameworks and the required budget for the protection of enterprise information assets. Origami Risk's Chief Information Security Officer will also be responsible for on-demand client interactions to both professional and present the overall technical capabilities of the company, but more importantly, the security apparatus in place to support safe and secure platform interactions at scale.
Responsibilities

  • Provides information security leadership and expertise to the organization by recommending and prioritizing information security initiatives, which mitigate risks, strengthen defenses, and reduce vulnerabilities.
  • Provides active and independent leadership for organizational information security, with clear internal and external communication properly presented based on the audience's technical expertise.
  • Develops policies, procedures, and prioritization frameworks to support the company in risk management, including risk mitigation and acceptance decision-making.
  • Maintains risk management documentation, facilitating appropriate periodic review of implied and explicit risk acceptance decisions.
  • Leads sustains and develops colleagues in the Information Security department with accountability for information policy, compliance, standards and controls, policy and risk governance, information and technology risk assessment, client privacy, disaster recovery, cyber-defense, incident response, and identity and access management.
  • Coordinates consistently delivering security audits, vulnerability assessments, and penetration tests.
  • Oversees compliance team to manage ongoing completion of client questionnaires, security assessments, and audits.
  • Facilitates a metrics and reporting framework to measure the efficiency and effectiveness of the security program.
  • Leads programs and processes to monitor the emergence of new threats and vulnerabilities, assessing impacts and facilitating executive leadership risk management decisions.
  • Reviews investigations after incidents, including impact analysis and recommendations for avoiding similar vulnerabilities.
  • Creates and manages a scalable review program for third-party vendors and contracts to ensure appropriate controls are in place and working effectively. This includes both initial review and periodic ongoing re-certifications.
  • Leads and facilitates information security governance topics, status, and advice, including active involvement of and leading committees.
  • Serves as the corporate focal point for security incident response planning, execution, and awareness.
  • Appropriately prioritizes and executes plans within approved budgeted resources and periodically provides briefs to the executive team on data privacy risks to the business, facilitating the potential for continued budgetary investment evaluation with clear action plans, costs, deliverables, and timelines.
  • Liaisons with external agencies, such as regulators, industry groups, law enforcement, and others as necessary.
  • Understands current and proposed legal and regulatory data privacy requirements that apply to the organization or its customers, such as GDPR, CCPA, TCPA, the NYDFS cybersecurity regulation, HIPAA security rules, and state notification laws.
  • Represents Origami Risk, provides thought leadership in industry and cybersecurity forums, and participates in relevant seminars, forums, and committees.
  • Researches and identifies key outside security partners to augment and support overall security programs at Origami to expand the internal security skill sets and capabilities.
  • Aligns with internal Learning and Enablement teams to develop and routinely evaluate internal security awareness and training protocols to create a culture of security awareness and preparedness.


Qualifications

  • Bachelor's degree in Information Security, Cybersecurity, or related field (Master's degree preferred)
  • At least 12 years of experience in information security and information technology, including CISSP, CISM, and CRISC certifications.
  • Sound judgment and ability to effectively balance information risk controls with business productivity and growth.
  • Ability to communicate technical information to non-technical and diverse audiences, including senior management, current and emerging digital security trends and directions.
  • Broad knowledge of current and emerging information technology industry trends and directions, including shared information security management frameworks, regulations, and standards, such as NIST 800-53 & CSF, FIPS, HIPPA, HITRUST, ISO/IEC 27001, ITIL, CSA CAIQ, and COBIT.
  • Experience in project delivery methodologies and processes (e.g., Agile, DevOps, et al.).
  • Excellent communication and interpersonal skills to build relationships with clients and internal teams.


Who We Are
Origami Risk provides integrated SaaS solutions to organizations across the risk and insurance ecosystem - from insured corporate and public entities to brokers and risk consultants, insurers, third party claims administrators (TPAs), and risk pools. We deliver our risk management and insurance core system solutions from a cloud-based platform that is highly configurable, completely scalable, and accessible via web browser and mobile app.
Dais Technology, a subsidiary of Origami Risk, provides a no-code platform that revolutionizes insurance product creation for MGAs, insurers, and reinsurers. Dais' event-based architecture enables AI-driven bundling, automation, and real-time deployment.
Solutions from Origami Risk and Dais Technology are backed by a best-in-class service team of experienced risk and insurance professionals who possess a balance of industry knowledge and technological expertise. A singular focus on helping clients achieve their business objectives underlies our approach to developing, implementing, and supporting our risk management, safety, compliance, and insurance core system technology solutions.
Origami Risk is proud to be an equal opportunity employer. We thrive and benefit from diversity and are committed to creating an inclusive and equitable environment for all employees. We do not discriminate against any individual based upon race, religion, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, color, sex, national origin, age, marital status, military or veteran status, disability, or any other characteristic protected by applicable law.

Read Full Job Description
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
By clicking Apply Now you agree to share your profile information with the hiring company.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
  • People Operations
    • C#Languages
    • CSSLanguages
    • JavaLanguages
    • JavascriptLanguages
    • SqlLanguages
    • TypeScriptLanguages
    • D3JSLibraries
    • jQueryLibraries
    • jQuery UILibraries
    • ASP.NETFrameworks
    • React NativeFrameworks
    • Microsoft SQL ServerDatabases
    • RedisDatabases
    • Google AnalyticsAnalytics
    • TableauAnalytics
    • CanvaDesign
    • IllustratorDesign
    • PhotoshopDesign
    • Google DriveManagement
    • Google DocsManagement
    • Google SlidesManagement
    • JIRAManagement
    • SmartsheetManagement
    • BoxManagement
    • DrupalCMS
    • HootsuiteCMS
    • DocuSignCRM
    • LinkedIn SalesNavigatorCRM
    • SageCRM
    • SalesforceCRM
    • Salesforce CPQCRM
    • Campaign MonitorEmail
    • MarketoLead Gen
    • ZoomInfoLead Gen
    • GrooveLead Gen
    • DemandbaseLead Gen
    • SlackCollaboration
    • ZoomCollaboration
    • LatticeCollaboration
    • SmartsheetProject Management

An Insider's view of Origami Risk

What are some social events your company does?

My day-to-day role is already fulfilling, but getting the chance to plan office parties, events, and happy hours for our Chicago office just helps to emphasize our strong culture. Being on the “Fun Committee”, I bring these socials to our London office while traveling for work too. There are plenty of reasons to celebrate while at Origami!

Matt B

Associate Client Service Executive

How do you collaborate with other teams in the company?

Our teams work cross-functionally to validate ideas, implement best practices, or share insights on market trends. We set agendas, outline goals, and follow up with key next steps. Through this practice of collaboration and a culture of accountability and ownership, we can best support our clients and empower them to achieve success on our platform

Anooja C

Senior Market Strategy Lead - Healthcare

How does the company support your career growth?

3 years ago, I started as an Analyst, but through my adaptability, analytical creativity, and effective collaboration, I was able to move up roles. Origami offered to pay for certifications, provided an extensive knowledge base, and great mentorship. The team helps define a clear path toward growth and gives you exactly what you need to achieve it.

Pedro N

Senior Client Service Executive

What unique initiatives do you have that encourage innovation?

We have very high expectations of ourselves. As Origamians, we want to be the best -- as individuals, as a team, and for our clients. These high expectations translate into creating solutions that go above and beyond.

Jaime H

Vice President of Product

How would you describe the company’s work-life balance?

Origami encourages a healthy work-life balance for all employees whether they are in an office or remote. Origami truly respects and cares for employees by providing support in many different ways - gym memberships, company outings, volunteer efforts, flexible work schedules, and more!

Beth S

Service Delivery Manager

What are Origami Risk Perks + Benefits

Origami Risk Benefits Overview

We are committed to providing our colleagues with comprehensive and affordable benefits for themselves and their family. We offer maximum options and flexibility in our packages.

Culture
Volunteer in local community
We recently created a mural in Englewood with Green Star Movement. Our Denver office teamed up with VOC and Grow Local Colorado to help harvest vegetables to donate to local people in need.
Partners with nonprofits
Past partnerships include Cradles to Crayons, Feeding America, Unicef, Toys for Tots, Restaurant Workers' Community Foundation, and World Health Organization.
Open door policy
OKR operational model
Team based strategic planning
Open office floor plan
Employee resource groups
Employee-led culture committees
Hybrid work model
In-person all-hands meetings
Employee awards
Flexible work schedule
Remote work program
Diversity
Dedicated diversity and inclusion staff
Mandated unconscious bias training
Diversity employee resource groups
Hiring practices that promote diversity
Diversity recruitment program
Health Insurance + Wellness
Flexible Spending Account (FSA)
Opportunity for pre-tax contributions through Medical, Limited Purpose, Dependent Care, Transit, and Parking FSA Accounts.
Disability insurance
Short-term and long-term disability benefits are 100% paid by Origami.
Dental insurance
2 competitive dental plans available.
Vision insurance
Vision is 100% paid for by Origami.
Health insurance
2 competitive medical plan options (traditional & HSA eligible).
Life insurance
100% paid by Origami with opportunity to elect additional voluntary life insurance.
Pet insurance
Partnership with Nationwide for discounted pet insurance plans.
Wellness programs
Annual wellness reimbursement.
Team workouts
Mental health benefits
Financial & Retirement
401(K)
401(K) matching
Origami matches up to 4%.
Performance bonus
Annual target bonuses.
Charitable contribution matching
Child Care & Parental Leave
Childcare benefits
Generous parental leave
Origami provides up to 12 weeks of paid parental leave.
Family medical leave
Vacation + Time Off
Unlimited vacation policy
Generous PTO
Paid volunteer time
Paid holidays
Paid sick days
Flexible time off
Bereavement leave benefits
Office Perks
Commuter benefits
Pre-tax benefits for transit & parking.
Company-sponsored outings
Annual all-company retreat, summer & holiday parties, luncheons, sporting events, and more!
Free snacks and drinks
Some meals provided
Company-sponsored happy hours
Recreational clubs
Origami's kickball league is on the road to victory!
Fitness stipend
Home-office stipend for remote employees
Mother's room
Onsite gym
Professional Development
Job training & conferences
Tuition reimbursement
Lunch and learns
Promote from within
Mentorship program
Voluntary annual membership to mentor or be a mentee internally.
Continuing education stipend
Continuing education available during work hours
Online course subscriptions available
Customized development tracks
Paid industry certifications
Certifications are fully funded.
Personal development training

Additional Perks + Benefits

We listen to & take action on colleague feedback to ensure our offering continues to support and enrich their day to day lives. It's just work - enjoy the ride!

View full list of perks + benefits

More Jobs at Origami Risk

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about Origami RiskFind similar jobs like this