Director of Security, Governance, Risk and Compliance

s
Company: Eventbrite
Location: Nashville, TN

Apply

THE CHALLENGE

Eventbrite is a people-first organization. Our goal of building the global platform for live experience relies on the foundation of top talent and strong company culture. Our team is the face of Eventbrite, and we’re charged with finding, attracting, and bringing on the best of the best to drive Eventbrite’s growing business and award-winning culture forward. Hiring the best talent globally is no easy feat. However, we have a talented team who has an inspiring story and mission. Our perfect candidate is someone who can connect that vision and story with top-notch talent.


THE TEAM

All of the teams across the company are working very hard to achieve their goals and make Eventbrite the best ticketing platform on the planet. The goal of the Security Team is to ensure that these teams are working within the context of a sound security framework. From engineering practices, IT security, and Governance, the role of the Security Team is to ensure that we have proper oversight of business operations and to set the right path for current and future endeavors.


THE ROLE

You will be directly responsible for oversight of the Eventbrite’s Security Governance, Risk, and Compliance programs.

YOUR RESPONSIBILITIES INCLUDE

  • Ensuring day-to-day operating procedures are met with oversight from operations team members
  • Managing compliance projects (PCI-DSS, SOC, SOX) for the business
  • Working with internal stakeholders such as Legal and Internal Audit on cross-functional team projects
  • Evaluating new and existing vendors for risks to the business
  • Defining and revising Security Policy and Procedures to adjust with our evolving business
  • Executing on a comprehensive Employee Security Awareness Education program
  • Develop, manage and maintain Security Risk and Compliance Metrics and Dashboards
  • Periodic review of operating procedure and data
  • Assist and advise the CISO on long-term security strategies and governance models

THE SKILL SET

  • Bachelor’s Degree in a relevant field
  • Professional Security Certification preferred (CISM / CISSP)
  • Expert knowledge in compliance programs (PCI-DSS / SOC2)
  • Extensive knowledge of GRC Best Practices
  • Proven Project Management skills to multi-task varying programs and projects
  • Ability to lead a small team

BONUS POINTS

  • Understanding of the NIST CSF framework and other associated cyber security frameworks
  • Previous experience guiding PCI-DSS and/or SOC2 audits


ABOUT EVENTBRITE

Eventbrite is a global ticketing and event technology platform, powering millions of live experiences each year. We empower creators of events of all shapes and sizes – from music festivals, experiential yoga, political rallies to gaming competitions –– by providing them the tools and resources they need to seamlessly plan, promote, and produce live experiences around the world. Last year, the team served 795,000 creators hosting nearly 4 million experiences across 170 countries. Meet some of the Britelings that make it happen.


IS THIS ROLE NOT AN EXACT FIT?

Sign up to keep in touch and we’ll let you know when we have new positions on our team.

Eventbrite is a proud equal opportunity/affirmative action employer supporting workforce diversity. We do not discriminate based upon race, ethnicity, ancestry, citizenship status, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), marital status, registered domestic partner status, caregiver status, sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, genetic information, military or veteran status, mental or physical disability, political affiliation, status as a victim of domestic violence, assault or stalking, or other applicable legally protected characteristics.