InfoSec Assurance Associate

Working at Thoropass

Thoropass makes it as easy to do the right thing as it is to check a box. Our team members believe that partnership lightens the load. Not everyone can be an expert at everything – lending each other support in areas of weakness strengthens everyone’s offering. We collaborate openly and enthusiastically; without ego.

What We Do

At Thoropass, we’re compliance experts, so you don’t have to be. Pairing easy software that’s always getting smarter with expert guidance and continuous monitoring, we integrate into your process to prepare you to pass any audit every year with flying colors. Hundreds of growing companies use Thoropass’s compliance automation platform, expert services, auditors, and partner ecosystem to get and stay compliant over the lifetime of their business.

We are a rapidly expanding team based in New York. We were founded in May 2019 and raised our Series C funding in November 2022. Our top investors include J.P. Morgan, PayPal Ventures, Fin Capital, Centana, and Bain Capital. We're growing customers and revenue dramatically and we’re poised for continued break-out growth in 2023 and beyond.

About the Role

The future of information security assurance is here.

Thoropass is looking for a cloud expert to join our InfoSec Assurance team.

You will be working with a world-class team of information security and compliance experts, where you will help our customers demonstrate information security best practices against sought-after Infosec frameworks.

If you strongly dislike the manually intensive audit process and are convinced there is a better way, this opportunity is for you.

What You'll Do

• Work directly with customers in the cloud to verify security controls based on sought-after information security frameworks
• Translate security and compliance requirements into actionable cloud tasks for team members to execute
• Test and review implemented cloud configurations based on established security and privacy frameworks
• Propose novel ideas for product features and ops improvements or opportunities for automation to empower a better customer experience
• Most importantly: help Thoropass reimagine the information security audit experience

Skillset/ Requirements

• 1-2 years of progressive information security experience
• 1-2 years of experience supporting cloud architecture, design, implementation, operations, and automation in AWS, Azure, or GCP
• Motivated self-starter who enjoys working in a fast-paced environment
• Strong organizational skills and attention to detail
• Excellent interpersonal skills, flexible and adaptable
• Strong oral and written communication skills
• Team-oriented with an ability to work well independently

Nice to Have

• 1-2 years experience working in IT audit/ cybersecurity/ information security/ GRC (Top 10 CPA firm, Coalfire, Align, Schellman)
• Experience working with industry recognized security frameworks (SOC 2, etc.)
• Cloud native certification or desire to pursue (ex. AWS Solutions Architect, GCP Professional Cloud Architect, etc.).

Compensation:

• Competitive base salary
• Exceptional private healthcare
• Early equity in a fast-growing company
• Hybrid work-from-home model
• Unlimited PTO
• Home office equipment
• Monthly wellness and home Wi-Fi stipend