Chief Information Security Officer

 Eventbrite - Company site
 June 8, 2022
 Remote, United States
THE CHALLENGE
Eventbrite is the world’s largest self-service ticketing platform, powering hundreds of millions of live experiences each year. Eventbrite provides creators with the products and resources they need to seamlessly plan, promote, and produce live, in-person and online experiences around the world. In the process, we have touched millions of consumers, helping them get together, explore their interests, and pursue their passions through live experiences.  In 2021, 291M total tickets were processed on the Eventbrite platform across 5.4M events in nearly 180 countries. The company’s enduring founding mission is to bring the world together through live experiences.  
THE TEAM
Eventbrite is seeking a Chief Information Security Officer (CISO) to lead our global cyber and data security programs to secure and enable our ability to deliver the premier self-service event platform. Eventbrite Security is responsible for all aspects of information security across the enterprise, including Web and Mobile application security, Cloud, Infrastructure and device security, Security Awareness Training, Policy, and Compliance. 
THE ROLE
We’re seeking a proven leader with the ability to define and execute the cybersecurity strategy, adding rigor to our operations, while building a highly skilled and diverse team. This position will partner across functions to drive major security initiatives and will be responsible for effectively communicating goals, risks, and tradeoffs to executive leadership and the board of directors.

WE BELIEVE

  • In our mission to connect the world through live experiences. We aim to delight our creators by offering the best self-service solutions for them to create events and by offering the best event discovery and ticketing solutions to our attendees.
  • In trying new things and taking smart risks. We believe quality and speed are not a tradeoff but a choice.
  • That diverse teams create superior impact. We’re excited to see you hire and develop an amazing team who bring their authentic self to work and enhance our culture.
  • That security is a crucial ingredient of our cultural DNA and it is everyone’s job. Everyone is an owner irrespective of their title or role in the company.
  • In thinking about the long term. Short-term wins are easy but not sustainable. 
  • That Eventbrite offers a once in a lifetime opportunity to have impact at a global level in defining how we connect after the pandemic is behind us.
  • YOU WILL

  • Define and own a multi-year cybersecurity roadmap and key performance indicators focused on reducing cyber risk.
  • Build and inspire a highly skilled and diverse Security team. Foster a culture of trusted cross functional partnership, service, and continuous improvement
  • Create quarterly, annual and long-term cyber security and cyber risk management goals, articulate strategies, define metrics, and provide necessary updates to executive leadership and the Board of Directors.
  • Partner with Product & Engineering leadership for the development, planning, and execution of major security initiatives. Support Eventbrite’s secure Software Development Lifecycle.
  • Collaborate with peer members of the Cyber Security Governance Committee (CSG), Audit Committee  to establish appropriate security standards and provide an effective governance structure to ensure cyber compliance and accountability.
  • Lead Security Incident Response,  Third Party Information Security Assessment, Data Protection and Encryption,  Identity & Access Management and Privileged User Access to protect customer and employee data. 
  • Define cyber security governance and control strategies for emerging technologies such as cloud & containerization, block-chain and distributed computing.
  • Keep well informed of developing security threats, and proactively create strategies to understand and mitigate potential security problems that might arise from acquisitions or other big business moves
  • YOU HAVE

  • A Degree in Information Technology or Engineering (Advanced Degree Preferred)
  • Key Industry certifications in Information Security, such as CISSP, CISM and CISA.
  • 15+ years of experience in Information/Cybersecurity in a public or large private technology company with a global customer base.
  • 7+ years people management experience across a global organization, with hands-on experience building diverse teams while promoting an inclusive organization.
  • A demonstrated knowledge of information security standards (e.g., NIST, ISO-27001), rules and regulations related to information security and data confidentiality (e.g., PCI, NIST, NSA) and other various security standards and policies.
  • A strong understanding of Cloud Security Mode and key principles, such as CSPs Shared Responsibility Models, Security and Infrastructure as Code, Preventive/Reactive Guardrails, Containerization, Server-less Computing, Continuous monitoring/drift detection, and the importance of end-to-end automation.
  • Strong interpersonal and communication skills with the ability to influence at all levels of the organization, while being able to simplify complex topics for understanding and critical decision making by Executive Management and the Board.
  • Ability to understand not only emerging industry trends as far as cyber security is concerned but also the landscape of emerging threats, making appropriate adjustments within the cybersecurity program.
  • WHAT WE OFFER
    At Eventbrite, we strive to support our Britelings and their loved ones through different stages of life with robust and attractive benefits, financial and physical wellness options, and great perks. In addition to offering a competitive salary and company stock, we have other great benefits available. In the Briteland, you’ll find great medical plans, fertility and adoption benefits, wellness reimbursement, generous parental leave, and much more. 
    We care about your mental health and wellbeing.
    Our employees enjoy free coaching sessions with Modern Health. We also offer free therapy sessions with a psychologist. You’ll also have access to private medical insurance for you and your family, that includes dental care. And our wellness program to pay for your gym expenses. 
    We work hard to cultivate a diverse, equitable and inclusive culture where Britelings feel like they belong. 
    Employees can participate in resource groups and we offer programming throughout the year to support a diverse and inclusive workplace.  
    We offer ongoing training and career development that meets people where they are in their careers. 
    We offer unlimited access to courses in Udemy, leadership coaching for all managers, Briteling led talks, and weekly company-wide town halls with our CEO. We take culture seriously and design programs with employee feedback in mind to make Eventbrite a great place to work no matter where you work from in the world. 
    Work-life balance & flexibility is extremely important to us.
    Our employees can choose what works best for them: work in one of our offices, be fully remote or the best of both worlds! We believe in a flexible working environment to allow Britelings to perform at their best ensuring a healthy work-life balance. We have recently implemented Britebreak Fridays: all Britelings turn off their computers and take the first Friday of every month off to focus on their wellbeing. 
    ABOUT EVENTBRITE
    Eventbrite is a global self-service ticketing and experience technology platform that serves a community of hundreds of thousands of event creators in nearly 180 countries. Since inception, Eventbrite has been at the center of the experience economy, transforming the way people organize and attend events. The company was founded by Julia Hartz, Kevin Hartz and Renaud Visage, with a vision to build a self-service platform that would make it possible for anyone to create and sell tickets to live experiences. The Eventbrite platform provides an intuitive, secure, and reliable service that enables creators to plan and execute their live and online events, whether it’s an annual culinary festival attracting thousands of foodies, a professional webinar, a weekly yoga workshop or a youth dance class. With over 290 million tickets distributed for over 5 million total events in 2021, Eventbrite is where people all over the world discover new things to do or new ways to do more of what they love. Learn more at www.eventbrite.com.
    IS THIS ROLE NOT AN EXACT FIT?
    Sign up to keep in touch and we’ll let you know when we have new positions on our team.
    Eventbrite is a proud equal opportunity/affirmative action employer supporting workforce diversity.  We do not discriminate based upon race, ethnicity, ancestry, citizenship status, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), marital status, registered domestic partner status, caregiver status, sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, genetic information, military or veteran status, mental or physical disability, political affiliation, status as a victim of domestic violence, assault or stalking, or other applicable legally protected characteristics.
     Applicant Privacy Notice
    Eventbrite believes that vaccines are one of the most powerful tools to fight COVID-19 and save lives. It aligns to our mission to bring the world back together through live experiences. Proof of completed COVID-19 vaccination will be required for all US applicants and employees to enter any Eventbrite office and/or interact in a physical setting with Eventbrite employees. Eventbrite will consider exceptions to this policy for medical or religious reasons on an individualized basis.