Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy
Jobs / Job page
Information Security Officer image - Rise Careers
Job details

Information Security Officer

About Republic

About us:Republic is a financial technology firm that allows everyone to invest in private markets. Republic operates several distinct business lines including a retail investment platform, a private capital division, and a blockchain advisory practice. The Republic ecosystem has deployed over $900 million in investments, has supported over 600 companies, and comprises a community of over 1.5M users across 100 countries. Republic is backed by dozens of leading investment firms and financial institutions and its affiliated entities have co-invested with the best names in venture and private equity. Founded in 2016, Republic is headquartered in New York City with offices worldwide.

What you’ll do

Job DescriptionWe have a fantastic opportunity for an Information Security Officer to join us on a part time/full time basis.You'll support the Global Information Security Manager working in a supportive team to assist with providing oversight of all information security, governance, risk and compliance activities and issues for Republic’s EU/US entities.

 

If you have a passion for promoting InfoSec awareness and GRC standards, complying with ISO 27001 and SOC 2 requirements, while learning new skills, then this could be the ideal opportunity for you!

 

Key Responsibilities:

 

Security Strategy & Governance:

● Develop, maintain and improve the company’s information security policies, standards, and procedures.● Maintain compliance with security frameworks aligned with industry best practices (ISO 27001, NIST, SOC 2).● Assist with internal and external ISO 27001 and SOC 2 audits.● Conduct regular risk assessments and security audits to identify vulnerabilities and recommend mitigation strategies.● Assist with producing monthly reports to executive and senior management detailing the overall security posture and management of Information Security.

 

Cybersecurity Operations:

● Monitor and respond to security threats, incidents, and breaches in a timely manner.● Responding to alerts generated by Republic’s SOC team and SIEM/MDR services. While liaising with relevant teams and personnel as part of the investigation.● Work closely with IT and engineering teams to implement recommended security controls in cloud environments and software development processes.● Ensure and review the configuration of security tools, including intrusion detection systems, endpoint protection, etc.

 

Incident Response & Risk Management:

● Maintain and improve the incident response plan, ensuring quick identification and resolution of security incidents.● Perform post-incident reviews, documentation/logging and recommend improvements to security measures.● Perform risk assessments and supplier due diligence evaluations.● Assist with maintaining and updating security related risks within the Risk Register● Collaborate with legal and compliance teams on regulatory security reporting requirements.● Manage and conduct security risk assessments to ensure that all information systems comply with Republic’s security requirements

 

Security Awareness & Training:

● Develop and deliver security awareness training programs and phishing simulations for employees.● Promote a security-first culture throughout the organization by establishing best practices and regular security updates/articles.● Ensure company-wide adherence to security policies through ongoing education and training initiatives.

 

Collaboration & Compliance:

● Work closely with product, engineering, and IT teams to embed security best practices into development and operational workflows.● Serve as the security liaison with external auditors, regulators, and third-party vendors.● Respond to client/partner security due diligence questions● Conduct regular security reviews of company systems and infrastructure.

Our ideal candidate

Musts for us to match:

● 2+ years of experience in information security, risk management, or cybersecurity roles.● Strong GRC background with knowledge of ISO 27001 requirements● ISO 27001:2022 Lead Implementer Certification● CompTIA Security+ Certification

Nice to have:

● Blue Team Level 1 Certification● ISO 27001:2022 Lead Auditor Certification● Hands-on experience with security tools, including SIEM/SOC, endpoint protection, MDM, and vulnerability management.● Experience with cloud security systems (AWS, Azure, or Google Cloud)● Achieved or working towards CISSP, CISM, or CISA.● Knowledge of blockchain security and smart contract auditing is a plus.● Ability to work across global teams to standardize security policies and procedures.

Why Republic?

Why Republic?Republic is a place for innovators and visionaries. We empower employees to build what hasn't been built before and support opportunities for growth. Our mission to democratize access to investing, capital raising, and community building is pushed forward by every team, from legal to engineering. Republic is a venture-backed company, we most recently closed a $150M Series B funding led by Valor Equity Partners.

 

A standard offer from Republic includes base compensation, and a highly competitive benefits and perks package. Offers are determined by a number of factors including (but not limited to) the applicant's experience, skills, certifications, as well as internal equity among our team.

Average salary estimate

$100000 / YEARLY (est.)
min
max
$80000K
$120000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Information Security Officer, Republic

Are you passionate about cybersecurity and ready to join a dynamic team? Republic, a cutting-edge financial technology firm that allows everyone to invest in private markets, is looking for an Information Security Officer to help secure our operations on a part-time or full-time basis. This is an exciting opportunity where you'll support our Global Information Security Manager and work alongside a supportive team providing critical oversight of information security, governance, risk, and compliance activities across our EU and US entities. At Republic, you’ll play a key role in promoting InfoSec awareness and ensuring compliance with ISO 27001 and SOC 2 requirements. Your day-to-day will involve developing and enhancing security policies, conducting regular risk assessments, and addressing security incidents swiftly. You'll also collaborate with IT and engineering teams to implement robust security measures and maintain incident response plans that ensure swift action in case of breaches. Your enthusiasm for educating colleagues on security best practices will help cultivate a security-first culture at Republic. With an impressive backdrop of over $900 million in investments and a community of 1.5 million users globally, Republic is a hub for innovation, and we can’t wait for you to be a part of this journey. If you have a strong foundation in information security, governance, risk management, and a proactive approach to threats, this could be the perfect job for you. Join us in making secure investing a reality for everyone!

Frequently Asked Questions (FAQs) for Information Security Officer Role at Republic
What are the key responsibilities of the Information Security Officer at Republic?

As an Information Security Officer at Republic, you will be responsible for a range of critical tasks, including developing and improving security policies, maintaining compliance with frameworks like ISO 27001 and SOC 2, conducting risk assessments, and monitoring security incidents. Your role will also involve collaboration with various teams to implement security measures and promote a security-first culture within the organization.

Join Rise to see the full answer
What qualifications are needed for the Information Security Officer position at Republic?

To be a successful Information Security Officer at Republic, candidates should have a minimum of 2 years of experience in information security or cybersecurity roles, along with a strong background in governance risk and compliance (GRC). A certification as an ISO 27001:2022 Lead Implementer or similar credentials is essential. Experience with security tools and cloud security systems is also favored.

Join Rise to see the full answer
How does Republic support the professional growth of an Information Security Officer?

At Republic, we are committed to the growth and development of our employees, including our Information Security Officers. Employees have access to ongoing training programs, opportunities to gain new certifications, and the chance to work on challenging projects that enhance their skills. Moreover, we foster a culture of innovation, providing an environment where you can build on your expertise.

Join Rise to see the full answer
What tools will an Information Security Officer at Republic use?

As an Information Security Officer at Republic, you will engage with various security tools, including SIEM, endpoint protection systems, and vulnerability management platforms. You may also work with cloud security services such as AWS, Azure, or Google Cloud to ensure comprehensive security across our digital infrastructure.

Join Rise to see the full answer
What is the work culture like at Republic for Information Security professionals?

The work culture at Republic is inclusive, innovative, and collaborative. Information Security professionals are encouraged to share their ideas and approaches to enhance security measures. The team values open communication, teamwork, and a proactive security-first mindset, ensuring that you contribute meaningfully while growing professionally.

Join Rise to see the full answer
Common Interview Questions for Information Security Officer
Can you explain your experience with ISO 27001 compliance at Republic?

When answering this question, highlight your specific experiences with ISO 27001 standards, detailing how you achieved compliance and maintained ongoing certification. Discuss any audits you took part in and the significance of GRC in your previous roles, reinforcing your understanding of risk management and security policies.

Join Rise to see the full answer
How do you stay current with cybersecurity threats and compliance regulations?

To effectively address this question, share specific sources you rely on for information, such as cybersecurity blogs, industry seminars, and professional groups. Discuss your commitment to continuous learning through courses and certifications, underscoring your proactive approach to security.

Join Rise to see the full answer
Describe a time you identified a security risk and how you addressed it.

This question allows you to showcase your problem-solving skills. Provide a concrete example where you identified a vulnerability, detail your assessment process, the measures you implemented to mitigate the risk, and how the outcome enhanced the organization's security posture.

Join Rise to see the full answer
How would you promote a culture of security awareness within Republic?

When responding, focus on specific strategies you would employ, like developing training programs, organizing phishing simulations, and regular updates on security matters. Emphasize the importance of integrating security practices into the everyday workflow to enhance awareness across all departments.

Join Rise to see the full answer
What experience do you have with incident response planning and execution?

In your response, speak about specific incidents you've been involved in, detailing your role in identifying, responding to, and documenting the incident. Highlight how you conducted post-incident analysis and implemented improvements to the incident response plan based on those learnings.

Join Rise to see the full answer
How do you approach cross-team collaboration in enforcing security measures?

Here, illustrate your collaborative skills by discussing past teamwork experiences where you worked alongside IT, engineering, and product teams. Explain how you developed security policies and practices that were embraced across these departments to ensure comprehensive protection.

Join Rise to see the full answer
What security frameworks are you most familiar with and how have you applied them?

Detail your familiarity with various frameworks like SOC 2, NIST, and ISO 27001. Provide examples of how you’ve applied them in previous roles, discussing the context, the challenges faced, and the positive changes that implementation brought to the organization.

Join Rise to see the full answer
Can you discuss your experience dealing with third-party vendors in relation to security?

Highlight your experience in conducting due diligence evaluations for third-party vendors and how you've ensured they meet security standards. Discuss any audits performed and strategies deployed to manage vendor relationships and protect the organization’s interests.

Join Rise to see the full answer
How would you assess the effectiveness of security tools in your role?

Discuss your methodology for assessing security tools, including regular audits, monitoring tool effectiveness against current threats, and collaborating with the IT team to identify gaps. Emphasize the importance of continuous improvement in security tool deployment and usage.

Join Rise to see the full answer
What do you believe is the biggest challenge facing information security today?

Focus your answer on a current trend or challenge, such as the rise in sophisticated cyber attacks or the need for compliance amidst evolving regulations. Illustrate how your expertise enables you to tackle these challenges and contribute to a robust security environment at Republic.

Join Rise to see the full answer
Similar Jobs
R
Republic Hybrid Fort Collins, CO, USA
VIEW
Posted 5 days ago
R
Republic Hybrid Cuyahoga Falls, OH, USA
VIEW
Posted 5 days ago
Photo of the Rise User
Visa Remote Austin, TX, USA
VIEW
Posted 5 days ago
Photo of the Rise User
Arctiq Remote New York, United States
VIEW
Posted yesterday
Photo of the Rise User
Auria Hybrid Camp Pendleton South, California, United States
VIEW
Posted 2 days ago
Photo of the Rise User
NexThreat Hybrid Joint Base Elmendorf-Richardson, Alaska
VIEW
Posted 10 days ago
Photo of the Rise User
Verinext Remote No location specified
VIEW
Posted 4 days ago
T
Texas A&M University Hybrid Austin, Texas, United States
VIEW
Posted 3 days ago
Photo of the Rise User
Isaiah House (KY) Hybrid Harrodsburg, Kentucky, United States
VIEW
Posted 4 hours ago
A
Altalink Remote No location specified
VIEW
Posted 9 days ago
R Republic

9 jobs
MATCH
Calculating your matching score...
FUNDING
DEPARTMENTS
SENIORITY LEVEL REQUIREMENT
TEAM SIZE
No info
HQ LOCATION
No info
EMPLOYMENT TYPE
Full-time, remote
DATE POSTED
March 28, 2025

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!
Show me relevant jobs ASK RISA ✨
ABOUT RISE
FOR COMPANIES
REMOTE JOBS & MORE
LOOKING FOR A JOB?
FIND A JOB NEAR ME
POPULAR JOBS
Rise logo
Privacy Policy and Terms of Service
© 2021 Work Rise LLC. All rights reserved.
Proudly made in NYC.
CONNECT
Facebook Instagram LinkedIn Tiktok