Patron Technology is a remote-friendly company. This position is open to any candidate in North America.

WHO WE ARE:

Patron Technology is redefining what it means to be an event creator by empowering organizers to take control of their entire event experience. With our powerful ticketing, engagement, mobile apps, and cashless products fit for any event, creators can transform the attendee experience and become leaders in their industry. That’s why iconic brands like New York Comic Con, Bonnaroo, Candytopia, and the NHL use our ever-evolving solution to drive nonstop engagement, reach expansive audiences, and gain more revenue.

We are a diverse team of event goers and experts that are passionate about helping our clients transform how attendees experience their events. We thrive in a collaborative, fast-paced environment that rewards innovation and creative thinking. Our employees are located around the world in the United States, Canada, Europe, and Australia.

Sounds interesting? Let’s talk.

AS A DATA SECURITY AND PRIVACY COORDINATOR, YOU WILL:

Infosec:

• Administer the security vulnerability program and track high profile CVEs and their remediations.
• Manage the bug bounty program and associated remediation plans through coordination with tech leaders.
• Manage Vendor Management Risk program
• Evaluate and maintain Incident Response Plan; conduct annual tabletop and risk assessment exercises.
• Manage domains owned by Patrontechnology, ensuring renewals as well as maintaining appropriate record and process with respect to purchasing new domains.
• Maintain the repository of the organization's policies - including ensuring those policies are up to date and in-line with the current regulatory/compliance requirements.
• Respond to third-party vendor security assessment requests. 
• Collaborate with the engineering and DevOps teams to ensure that existing and new applications & infrastructure follow security best practices.
• Oversee external penetration tests that are happening regularly.
• Obtain and maintain relevant certification(s) as suggested by Manager, Data Security and Privacy

Privacy

• Maintain records of data processing activities carried out by the company.
• Follow-up on DSAR program including quarterly audit.
• Maintains organization’s Data Compliance Policies & Procedures with assistance from relevant stakeholders.
• Obtain and maintain relevant certification(s) as suggested by Manager, Data Security and Privacy

Training

• Collaborate with training manager on security training curriculum 
• Collaborate with relevant stakeholders to determine the personnel and departments that must receive training due to their exposure to sensitive data and tailor training to those personnel's role. 

EXPERIENCE & SKILLS:

• College/University education (or equivalent experience) in Information Systems or Computer Science or relevant degree.
• Some experience with vulnerability management, event management, security operations, incident management, and security reporting.
• General knowledge of Information Security, Identity and Access Management and Information Security concepts and practices
• Experienced in working on multiple programs or projects with conflicting timelines
• Ability to write reports, business correspondence and procedure manuals.
• Ability to monitor and track the implementation of project tasks and deliverables.
• Familiarity or exposure to project management basics with a sensitivity towards organization, structure and documentation
• Must be self-directed, have excellent initiative and organizational skills
• Demonstrate excellent verbal and written communication skills
• Exposure to IT best practices

Bonus Qualifications :

• Experience with PCI compliance requirements
• Experience working with 3rd Party auditors and penetration testers.
• Conducting security simulations against current products / infrastructure
• Experience working in an Agile environment.

BENEFITS:

We offer 

• Medical, Dental, Vision, and Voluntary benefits
• Generous PTO
• Paid parental leave (following 12 months of continuous employment)
• 401K Match
• $200 event reimbursement
• Udemy Business, a world-class learning and development platform

LEARN MORE:

https://patrontechnology.com/

ADDITIONAL INFORMATION

At Patron Technology, we take great pride in providing our team members a safe and healthy work environment. To that end, Patron Technology requires all employees, contractors, and visitors who will be physically present at a company facility or sponsored event, representing the company at a client event, or physically present at any event where the company’s employees, clients, or vendors are present, to be fully vaccinated. Exemptions are permitted, and if approved, will require the wearing of an approved face-covering, submission of a negative COVID test, and completion of a health and safety form that includes temperature.