InfoSec Engineer/Customer Trust Specialist

Introduction to Demandbase: 

Demandbase is the Smarter GTM™ company for B2B brands. We help B2B companies hit their revenue goals using fewer resources. How? By aligning their sales and marketing teams around a combination of their data, our data, and artificial intelligence — what we call Account Intelligence — so they can identify, engage, and focus their time and money on the accounts most likely to buy. 

As a company, we’re as committed to growing careers as we are to building world-class technology. We invest heavily in people, our culture, and the community around us. We have offices in the San Francisco Bay Area, Seattle, and India, as well as a team in the UK, and allow employees to work remotely. We have also been continuously recognized as one of the best places to work in the San Francisco Bay Area including, “Best Workplaces for Millennials” and “Best Workplaces for Parents”!

We're committed to attracting, developing, retaining, and promoting a diverse workforce. By ensuring that every Demandbase employee is able to bring a diversity of talents to work, we're increasingly capable of living out our mission to transform how B2B goes to market. We encourage people from historically underrepresented backgrounds and all walks of life to apply. Come grow with us at Demandbase!

About the Role:

Demandbase is seeking an experienced InfoSec / Customer Trust Specialist to join our Product Security team. In this role, you will be responsible for building & maintaining trust with our customers by communicating information about our security, privacy, and compliance controls. This includes managing and completing security questionnaires from prospective clients, and maintaining our customer-facing trust site and internal knowledge base. 

You’ll join our high-performing Product Security team and work closely with subject matter experts across the company to gather relevant information on our control posture. You’ll collaborate closely with our Solutions Consulting team to triage inbound requests from current and potential customers, and ensure accurate & timely responses. 

This position offers a unique opportunity to contribute directly to the success of a leading B2B marketing technology company by supporting the sales process, while deepening your security & compliance expertise.

What you’ll be doing:

Security Questionnaire Management:

• Review and respond to security questionnaires and requests for information from prospective clients.
• Collaborate with cross-functional teams, including Solutions Consulting, Security, Legal, and Privacy to gather accurate and comprehensive responses.

Compliance and Documentation:

• Stay current on industry security standards and compliance requirements.
• Maintain and update documentation on our customer trust site, ensuring accuracy and relevance.

Customer Engagement:

• Engage with customers and prospects to address security-related inquiries and concerns.
• Act as a liaison between the subject matter experts and clients on security matters.

Process Ownership and Improvement:

• Continuously improve and streamline the security questionnaire response process.
• Provide insights and recommendations for enhancing security-related processes within the organization.

Training and Awareness:

• Conduct training sessions for internal go-to-market teams on best practices and guidelines for enabling customer vendor risk management reviews.
• Raise awareness of customer security & trust expectations throughout the organization.

What we’re looking for:

• 3-5 years of experience managing and completing security questionnaires for prospective B2B customers driving towards purchasing software as a service.
• Strong understanding of information security principles, standards, and best practices.
• Excellent communication and interpersonal skills to effectively collaborate with internal teams and external customers.
• Project management skills to triage & manage a backlog of security questionnaires
• Strong fluency in English, both written and verbal
• Familiarity with industry security frameworks (e.g., ISO 27001, SOC 2) is a plus.
• Experience maintaining an internal knowledge base is preferred.
• Relevant certifications (e.g. CISSP, CISM) are highly desirable.

Our Commitment to Diversity, Equity, and Inclusion at Demandbase

At Demandbase, we believe in creating a workplace culture that values and celebrates diversity in all its forms. We recognize that everyone brings unique experiences, perspectives, and identities to the table, and we are committed to building a community where everyone feels valued, respected, and supported. Discrimination of any kind is not tolerated, and we strive to ensure that every individual has an equal opportunity to succeed and grow, regardless of their gender identity, sexual orientation, disability, race, ethnicity, background, marital status, genetic information, education level, veteran status, national origin, or any other protected status. We do not automatically disqualify applicants with criminal records and will consider each applicant on a case-by-case basis.

We recognize that not all candidates will have every skill or qualification listed in this job description. If you feel you have the level of experience to be successful in the role, we encourage you to apply!

We acknowledge that true diversity and inclusion require ongoing effort, and we are committed to doing the work required to make our workplace a safe and equitable space for all. Join us in building a community where we can learn from each other, celebrate our differences, and work together.