Head of Security and Compliance
Magic One
Head of Security and Compliance
DescriptionWe are committed to maintaining the highest security standards to protect our data, assets, and personnel. We are seeking a highly skilled and experienced Head of Security and Compliance to develop, implement, and oversee comprehensive security strategies that align with our business goals.
\n\n
Job Overview:
The Head of Security and Compliance is responsible for designing, implementing, and managing the company’s security plans, covering both physical and cybersecurity measures. This role encompasses cybersecurity, IT infrastructure, compliance, and physical security. They are responsible for setting strategic direction and implementation of a security and IT roadmap spanning both in-house development (software engineering) and operations (including remote or contractor work). This role involves overseeing security for a large number of employees across multiple departments and external team members.
Key Responsibilities\nDevelop and implement comprehensive security strategies, policies, and procedures for IT and physical security.\nOversee and manage all aspects of IT security, including network security, cybersecurity threats, and data protection.\nEstablish robust protocols for employees and contractors in a remote-work environment, ensuring compliance with data protection standards.\nAssess security risks and implement mitigation strategies to protect company assets and personnel.\nEnsure compliance with industry regulations, data protection laws, and company policies.\nLead the security incident response process, including investigation, reporting, resolution, business continuity and disaster recovery planning\nMonitor and evaluate the effectiveness of security measures and update policies as needed.\nConduct regular security audits, penetration testing, tabletop exercises, and vulnerability assessments.\nCollaborate with other departments to provide security awareness training for employees. \nDevelop and deliver security awareness programs that educate and empower employees at all levels.\nManage security budgets, resources, and vendor relationships to enhance security infrastructure.\nStay up to date with emerging security trends, threats, and technologies.\n
Skills, Knowledge and Expertise\nBachelor’s or Master’s degree in Cybersecurity, Information Technology, or a related field.\nMinimum of 7-10 years of experience in IT security, risk management, or a related role.\nStrong knowledge of security frameworks (ISO 27001, NIST, CIS, etc.) and compliance standards (GDPR, HIPAA, SOC 2, etc.).\nExperience with network security, VPNs, firewalls, encryption, SIEM tools, and incident response.\nStrong background in endpoint management, MDM (Mobile Device Management), and zero-trust network access\nProven leadership experience with the ability to manage cross-functional teams.\nExcellent problem-solving, communication, and decision-making skills.\nRelevant certifications such as CISSP, CISM, CISA, or CEH are preferred.\n
Benefits
Department: Engineering
Employment Type: Full Time
Location: Global+
DescriptionWe are committed to maintaining the highest security standards to protect our data, assets, and personnel. We are seeking a highly skilled and experienced Head of Security and Compliance to develop, implement, and oversee comprehensive security strategies that align with our business goals.
\n\n
Job Overview:
The Head of Security and Compliance is responsible for designing, implementing, and managing the company’s security plans, covering both physical and cybersecurity measures. This role encompasses cybersecurity, IT infrastructure, compliance, and physical security. They are responsible for setting strategic direction and implementation of a security and IT roadmap spanning both in-house development (software engineering) and operations (including remote or contractor work). This role involves overseeing security for a large number of employees across multiple departments and external team members.
Key Responsibilities\nDevelop and implement comprehensive security strategies, policies, and procedures for IT and physical security.\nOversee and manage all aspects of IT security, including network security, cybersecurity threats, and data protection.\nEstablish robust protocols for employees and contractors in a remote-work environment, ensuring compliance with data protection standards.\nAssess security risks and implement mitigation strategies to protect company assets and personnel.\nEnsure compliance with industry regulations, data protection laws, and company policies.\nLead the security incident response process, including investigation, reporting, resolution, business continuity and disaster recovery planning\nMonitor and evaluate the effectiveness of security measures and update policies as needed.\nConduct regular security audits, penetration testing, tabletop exercises, and vulnerability assessments.\nCollaborate with other departments to provide security awareness training for employees. \nDevelop and deliver security awareness programs that educate and empower employees at all levels.\nManage security budgets, resources, and vendor relationships to enhance security infrastructure.\nStay up to date with emerging security trends, threats, and technologies.\n
Skills, Knowledge and Expertise\nBachelor’s or Master’s degree in Cybersecurity, Information Technology, or a related field.\nMinimum of 7-10 years of experience in IT security, risk management, or a related role.\nStrong knowledge of security frameworks (ISO 27001, NIST, CIS, etc.) and compliance standards (GDPR, HIPAA, SOC 2, etc.).\nExperience with network security, VPNs, firewalls, encryption, SIEM tools, and incident response.\nStrong background in endpoint management, MDM (Mobile Device Management), and zero-trust network access\nProven leadership experience with the ability to manage cross-functional teams.\nExcellent problem-solving, communication, and decision-making skills.\nRelevant certifications such as CISSP, CISM, CISA, or CEH are preferred.\n
Benefits
Por favor confirme su dirección de correo electrónico: Send Email
Todos los trabajos de Magic One