You will partner with the leads of a wide variety of groups within our organization including Development,Production Operations, Internal IT, Sales and Support Engineering, Marketing, Legal, and HR. You willrefine and grow ourstrategy and implement and monitor information security standards and policies for both our internal systems and our products. You will guide the executive leadership team by recommending information security investments which mitigate risks, strengthen defense, and reduce vulnerabilities of our internal and external systems and products. Interacting with customers in all stages of the customer lifecycle is critical from presenting the security stance of LogMeIn to prospects, explaining and resolving contractual requirements and managing customer concerns over industry security events.

You will also serve as an evangelist in the security community who can contribute to the external discussion and debate around security, especially as it relates to the future threat landscape. Regular blogging, contributions to external communities, published articles,etc, will all be things under your purview.

Responsibilities:

• Evaluate, choose, adapt and drive the implementation of security, governance standards and risk management programs to ensure the integrity, confidentiality and availability of customer and company data in all jurisdictions that LogMeIn operates in.

• Leverage information security experts and technology to support a secure infrastructure, secure applications, and overall data security; lead strategic security planning with Product Development, Service Delivery Team,Internal IT and other users across the organization

• Provide strategic leadership for secure product development and the security feature set of our products.

• Manage the security organization, including direct and indirect reports. Manage hiring, training, staff development, and performance management

• Develop, communicate and ensure compliance with organizational security policies and standards; proactively work with business units to implement practices that meet defined policies and standards for information security

• Organize security assessments for our own services and internal and external information systems that we use. Advise on mitigating vulnerabilities.

• Manage security incidents and events to protect customer and corporate data. Lead the internal and external communication of the event coordinate responses.

• Work with external agencies, such as law enforcement and other advisory bodies as necessary, to ensure that the organization maintains a strong security posture.

QUALIFICATIONS

• Bachelors degree in Information Security, Computer Science, Information Management Systems, or related fieldpreferred. Mastershighly desirable.

• Experience of operating in a globally disparate organization using hybridproduction environments including both public and private cloud deployments.

• 8yearsof experience in a combination of risk management and information security jobs. At least four must be in a senior leadership role.

• CISSP or CISM is strongly desired.

• Knowledge and demonstrated experience of relevant legal and regulatory requirements, such as SOX, PCI DSS, the European GDPR and maintaining our SOC2+3 and ISO27001attestations.LogMeIn is a global company and experience of certifications around the world is desired.

• Knowledge of common information security management frameworks, such asBSIMM,ISO/IEC 27001-2, NIST Cybersecurity Framework, NIT 800- series of standards.

• Knowledge of secure development methodologies, such ascSDL.

• Knowledge of network security encryption methods, IPSEC, Kerberos,andAuthentication concepts.