Information Security Manager - AI Startup

Tractable AI ,
London, Greater London
Job Type: Full-time
Contract Type: Permanent

Overview

Who are we? Welcome to Tractable. Our tech looks pictures of car damage from a road accident and predict repair costs so that insurance claims can be settled faster and people's livelihoods restored. It's a time of huge turmoil when people damage their vehicle and we make their life easier during this time by partnering with insurers to provide our tech to their customers. We've been going for 4 years and we've just closed Series C funding at $25M (total raised over $50M). Our customer base is growing exponentially. We're already in Japan, the US and across Europe.  Engineering Tractable  There are around 18 of us in the engineering team at Tractable and we play a key part in bringing our AI to life. We partner with researchers and business development to ensure the work Tractable are doing is bringing real value to our customers. We’re proud to see our product have massive impact on people’s lives daily… and we know this is just the beginning.  We’re now looking for an Information Security Manager and this is an exciting opportunity to join a young, growing team and play a pivotal role in shaping the future of our InfoSec.  The role: Answering internal information security and compliance related queries: Working with engineering teams to help them design and document information security aspects of new and existing products/systems Commissioning and managing penetration testing from third party suppliers: Answering pre-engagement questions and defining the scope of the testing Interpreting the results and explaining these to senior management Working with programmers and DevOps to understand the work involved in mitigating or fixing any issues highlighted Championing information security awareness: Overseeing existing training platform and ensuring staff are engaging with this Internal training on; Tractable’s ISMS, General infosec topics & Regulatory/Compliance issues Information security event handling: Recording and reviewing information security events & communicating these Liaising with authorities (e.g. ICO)  What we’re looking for: An enthusiastic and ambitious nature to come in and own/drive infosec in an exciting blank canvas role within a young startup Good understanding of ISO27001 and other security standards Some experience in writing information security related policies and processes Experience reviewing and updating various other Registers (information assets, physical assets, suppliers) Tract record of conducting internal compliance audits Ability to follow up on any non-compliances and related corrective actions Well versed in completing information security questionnaires from prospective clients Intermediating between compliance/infosec teams of new/prospective clients and internal engineering team  Technical skills would be 'nice to have' for this role, such as: AWS  Log collection and auditing tools e.g. DataDog, Threatstack Python / Bash or any other coding/scripting experience Any Linux experience Our Tech Stack: AWS, DC/OS, Terraform, Ansible, Jenkins, Packer, Kafka, Cassandra Company benefits  Equity Flexible Working Hours LD budget Games nights Monthly Brunch (ask us about it…) Competitive maternity paternity leave We provide visa sponsorship if required Where we are: We're based in a modern, spacious and open plan office in Old Street with plenty of natural light. Here at Tractable we’re passionate about creating an inclusive culture that encourages, supports, and celebrates the diverse voices of our employees.  Everyone is welcome, we don’t discriminate on the basis of any protected characteristic including race, religion or belief, gender or gender reassignment, age, sexual orientation, marital status, or disability. We want to facilitate everyone in bringing their best selves to our interviews, so if there are any adjustments we can make for our process to be more inclusive, please let us know. We're actively interviewing, apply ASAP