Director of Security & Compliance, Forma
A modern-day benefits platform
Open for applications
A modern-day benefits platform
101-200 employees
Open for applications
101-200 employees
Company mission
To give every employee the ability to integrate work and life seamlessly.
Role
Who you are
- In this leadership role, we are looking for an experienced professional who is able to operate efficiently and effectively in a growth-stage type of environment
- University degree in Information Systems, Computer Science, or related focus
- Professional certifications such as CISSP, CISM, CRISC, or similar
- Knowledge of security issues with web applications
- 6+ years of experience being a people manager, and having remote management experience a big plus
- At least 10 years professional hands-on experience with threat hunting, incident response, forensics, security analysis, security engineering, malware behavioral analysis, and broader system forensics
- Experience implementing comprehensive security compliance programs
- Startup experience in financial, benefits, or SaaS is a plus
What the job involves
- As Director, Security & Compliance, you’ll play a critical role in maintaining and improving security across Forma's product
- Collaboration will be key in leading our security efforts toward our compliance goals
- You’ll manage key relationships with Engineering, IT, and executive leadership as we scale within the flexible benefits and reimbursements space
- Coordinate our response to security challenges and ensure robust business continuity and disaster recovery frameworks are in place
- Evaluate and provide ongoing insights surrounding Forma’s product security risks
- Build an effective strategy for security in a cloud native environment (Kubernetes, container scanning, manage WAF policies, etc.)
- Build and lead audit / compliance efforts across data, security and privacy (SOC2, ISO 27001, GDPR)
- Collaborate with other teams (Operations, People, Engineering) to implement and maintain security policies
- Champion proactive compliance initiatives, stepping in to guide complex compliance issues and strategic planning sessions
Our take
Forma is looking to reimagine the employee benefits model. The company helps HR departments select the right benefits, and by leveraging its vendor network, also offer these at a more affordable cost. Forma then also helps employees make smarter, more transparent decisions regarding their health and wellness work benefits.
With generations X and Z dominating the workforce, benefits expectations are rapidly changing. Add to that the upheaval of employee expectations precipitated by the switch to hybrid workforces, and many HR departments have struggled to keep pace with the rate of change. Unused benefits, and enquiries from under-informed employees, eat up both time and resources that undermine the efficiency and credibility of a businesses’ benefits program. Therefore, Forma's solution to this should be appealing for employers and employees alike.
Testament to the efficacy of its model, Forma was only founded in 2017 as Twic, and already boasts the likes of Zoom, Stripe, and DataDog among its customers. With the nature of modern workforces still in flux, Forma look well-placed to be catering to an adaptive, demanding new benefits landscape.
Steph
Company Specialist
Insights
Company
Funding (1 round)
Mar 2022
$40m
SERIES B
Total funding: $40m
Company benefits
- Remote Friendly
- Health Care
- Flexible PTO
- Parental Leave
- Lifestyle Stipend
- Team Building Stipend
- Productivity Stipend
- Career Opportunities
Company values
- We never Settle
- We raise each other's bars
- We've got you
- We own our work
Company HQ
Civic Center, San Francisco, CA
Articles
Share this job
View 15 more jobs at Forma