About This Role:
This is a key leadership position responsible for overseeing and guiding the organization's security efforts. As the Security Chapter Lead, you will be tasked with ensuring the security and integrity of our IT infrastructure, systems, and data.
The ideal candidate will have a strong background in information security, with experience in leading and managing cross-functional security teams. They will also possess excellent communication, leadership, and stakeholder management skills, with the ability to influence and collaborate effectively at all levels of the organization.
Key Responsibilities:
1. Security Strategy and Governance:
o Develop and maintain the security strategy and roadmap for the organization, aligning with business objectives, regulatory requirements, and industry best practices.
o Establish and enforce security policies, standards, and procedures across squads and chapters, ensuring compliance with relevant laws, regulations, and contractual obligations.
o Provide strategic guidance and recommendations to senior leadership and the Security Office on the organization's security posture and risk management.
2. Security Operations and Incident Response:
o Oversee security operations, including monitoring, detection, and response to security incidents and breaches across the organization.
o Lead the Security Incident Response Team (SIRT), coordinating efforts to investigate and mitigate security incidents in a timely and effective manner.
o Develop and maintain incident response plans, playbooks, and procedures, conducting regular tabletop exercises and simulations to test and improve response capabilities.
3. Security Architecture and Engineering:
o Define and maintain the security architecture and design principles for IT systems, applications, and infrastructure, incorporating security-by-design principles into development processes.
o Collaborate with architecture and engineering teams to evaluate, select, and implement security technologies, tools, and solutions to mitigate risks and enhance security posture.
o Conduct security reviews, assessments, and audits of systems and applications, identifying vulnerabilities and recommending remediation measures.
4. Security Awareness and Training:
o Develop and deliver security awareness and training programs for employees, contractors, and stakeholders, promoting a culture of security awareness and compliance.
o Provide guidance and support to squads and chapters on security best practices, secure coding principles, and threat mitigation techniques.
o Monitor and measure the effectiveness of security awareness and training initiatives, adjusting strategies as needed to address evolving threats and risks.
5. Security Compliance and Assurance:
o Manage security compliance initiatives, including regulatory compliance assessments, audits, and certifications (e.g., GDPR, ISO 27001, SOC 2).
o Collaborate with internal audit, compliance, and legal teams to ensure adherence to security requirements and contractual obligations.
o Maintain security documentation, evidence, and artifacts to demonstrate compliance with security standards and regulations.
About You:
We are looking for an experienced information security professional to join our team. The ideal candidate will have a bachelor's degree in information security, computer science, or a related field, and at least 5 years of experience in information security.
Requirements:
* EU citizenship.
* Fluency in English (written and spoken) is required; proficiency in any other European language is a plus.