We're looking for an amazing Information Security Manager to help us to maintain our best in class security position.
At Beacon we're a growing technology startup building the best nonprofit-focused CRM in the world. We passionately believe in the power of technology to make a difference.
Chris and David, both software engineers, founded Beacon in 2017 to build a new kind of charity CRM using the latest technology and design principles.
Now hundreds of innovative charities around the world trust Beacon to run their core technology infrastructure. Animal welfare, human rights, disaster relief, cancer support - all powered by Beacon. You can see a quick demo of our product, here.
We have doing good at the core of our mission, but we're also profitable, privately owned, and our goals are for long term sustainable growth - not making a quick buck for venture capitalists.
At Beacon we take building exceptional software very seriously. In a recent survey by Fundraising magazine we were rated 4.9/5 on functionality and 5/5 on ease of use - but building an amazing product is only part of the picture.
Keeping our customers' data secure is the most important thing we do at Beacon. We're ISO27001 and Cyber Essentials Plus certified and we take our responsibilities around security very seriously.
Responsibilities
- Work with the CTO to manage and maintain the security position of both the Beacon product, and the organisation as a whole
- Help to manage Beacon's security and compliance platform (we use Vanta )
- Take ownership of the fleet of devices used at the company and ensure they're being kept up to date and are running securely
- Take ownership of managing the inventory, and evaluating the security position of, cloud services, applications, utilities, and vendors used across the organisation
- Keep Beacon's Record of Processing Activities up to date, and work with the wider team to maintain our processes that ensure we're compliant with relevant data protection legislation
- Refine the controls and policies required for ISO 27001 certification, and ensure ongoing compliance as we scale
- Work with with engineering team to ensure Beacon's cloud infrastructure and software are built with security in mind.
- Work with the CTO to develop and deliver regular security training to the whole Beacon team
- Assist the Customer Support, Customer Success, and Sales teams in answering our customers' questions about Beacon's security practices
- You'll be comfortable when bad things happen. As reports come in of a possible security breach, you'll be cool as a cucumber.
- Develop a profound understanding of the Beacon product, and contribute to product strategy from a security perspective
Requirements
- At least 2 years of experience managing security at a technology company
- Some previous technical experience in software engineering and/or a technical university education
- Experience of implementing or maintaining the ISO 27001 standard
- Knowledge of GDPR and how it applies to organisations who primarily operate as data processors
- Our customers are all charities - you'll get to build your career whilst having a genuinely positive impact on the world
- We'll give you 6 weeks (24 days) of holiday every year, plus bank holidays
- 6 week fully paid sabbatical every 5 years
- Taking time off is important. And we really mean it: We'll pay you a £60 bonus for every day of holiday you take
- Banded salary system so that everyone is paid the same for doing the same job, and compensation growth within the organisation is clear.
- Guaranteed pay rise to adjust for inflation every 12 months
- Beacon is climate positive (beyond carbon neutral), so your employment won't hurt the planet. Learn more
- A proper pension - we'll match 150% of your pension contributions (up to 10%)
- Private health insurance with routine dental & optical cover
- Modern parental leave policy (12 weeks at full pay, and it's the same for everyone, regardless of gender or circumstances)
- Cycle to work scheme
Working together
As a team we prefer to be together in our office (4-6 New Inn Broadway, London, EC2A 3PR) and we'd want you to join us - so this is not a remote role. We offer flexible working hours and while your usual place of work will be with us in the office, you can work home when you need to.
If you don't live in London but would be happy to relocate, we can pay up to £4,000 (tax free) to help with your relocation costs.
We passionately believe in doing our part to address the tech sector's diversity problem
We believe that in building diversity we build strength.
We encourage everyone with the required skills to apply, we consider building a diverse and representative team to be critical to our success, and we actively pursue building a more diverse team.
We have a banded salary system to ensure that nobody is paid differently for the same role. Salaries across the organisation, including executive pay, are entirely transparent.
Our parental leave policy provides for 12 weeks of full pay, and can be taken by any parent, regardless of their new parenting circumstances.
We're delighted to be certified by Bloody Good Period as a 'Bloody Good Employer', and we're working towards becoming a certified BCorp .