Cybersecurity Leader

Senior Information Security Manager

We are seeking a seasoned information security professional to lead our team in maintaining a secure and compliant environment.

This role requires hands-on experience with industry-standard security frameworks, vendor risk management, and compliance documentation.

You will work closely with our Legal, IT, and Engineering teams to ensure that our security practices align with industry standards and regulatory requirements.

• Audit, Certification & Governance
• Serve as internal lead for SOC 2, ISO 27001, and other audit initiatives; coordinate evidence collection and auditor interactions.
• Maintain and update our Statement of Applicability (SOA) and control library.
• Manage security responses to client RFPs and due diligence questionnaires.
• Security Operations
• Oversee penetration testing and vulnerability scanning cycles; track and validate remediation efforts.
• Maintain and enforce security-related policies, including access control, incident response, and data protection regulations.
• Conduct regular IT security plan reviews and provide internal reporting.
• Manage change control, vendor security protocols, and breach notification procedures.
• Risk & Asset Management
• Conduct and document regular risk assessments, including :
• Review of network reports
• Permission changes and audit logs
• Data asset inventory
• Hardware asset management and secure disposal tracking
• Support vendor due diligence, reviewing risk scores, contracts, and compliance posture.
• Documentation & Continuous Improvement
• Maintain a comprehensive repository of policies, risk assessments, and testing results.
• Recommend process or control improvements based on audit findings and security trends.
• Support legal teams with client and regulator data protection obligations.

Key Qualifications