OBS! Ansökningsperioden för denna annonsen har
passerat.
Arbetsbeskrivning
What we do at Detectify
Detectify offers a web application security scanner that automates hacker attacks to help businesses stay safe. Our founders are among the best ethical hackers in the world - having hacked tech giants such as Google, Facebook, or Dropbox. Today, we collaborate with over 250 handpicked white-hat hackers to continually help clients like Trello, Spotify and King make their websites more secure.
Detectify secured 21 million EUR in a Series B round to continue building teams with world-class talent. We are looking for passionate and driven colleague to hop onboard, contribute to the company culture and to make the Internet more secure.
What you'll get to do
As our Head of Information Security, you will play a key role in a variety of assurance activities related to the availability, integrity and confidentiality of customer, employee, and business information in compliance with our own security standards. Your role will include designing and implementing policies and procedures that will help your teammates ensure we champion great information security practices every day. You will be seen as our internal expert, advising us on how to establish and scale information security processes from your first few weeks in this role. You will help us strike the balance of complying with our rigorous information security standards while operating an aggressive business with big goals in 2021!
You will also collaborate with departments such as legal, finance, product, engineering, sales, crowdsource and marketing with identifying and assessing potential risks and where we can make strides to better secure our existing information security systems and processes. Lastly, you will serve as our internal expert on how we procure the IT and software services our team needs to scale next year and beyond. This role will report to our Chief Finance Officer and with a dotted line to our CEO.
Your role will include:
Conduct company-wide information security risk assessments. You will ensure Detectify is known for best-in-class information security practices.
Support your teammates in achieving technical compliance with complex laws such as GDPR, CCPA, etc.
Manage security incidents from mitigation through post-mortem.
Help maintain current certification initiatives (ISO 27001) and evaluate potential needs for additional certifications as our business evolves.
Create and iterate on our policies and guidelines that make information security easy to understand and use.
Provide information security training through company-wide training sessions to 1:1 coaching.
Provide counsel to our product teams as we build new products and features. You will not simply be a checkbox in our SDLC process, but a partner in ensuring we maintain the highest standards for information security in our ways of working.
Who you are
You will likely come from a technical background (i.e. legal, software engineering, finance) and have some understanding how security software is developed and sold at scale. You are knowledgeable of modern cloud tools and technologies and have previous experience working in a SaaS company.
At least 5 - 8 years of previous experience in an information security, data policy and protection, cyber security or similar field.
Relevant training or education within IT/Information Security Management.
Experience navigating the complex challenges of a cloud-based company or similar.
Change management experience at scale.
Fiercely passionate about Information Security.
Experience developing and executing company-wide strategies; you are naturally collaborative.
Hands-on experience in one or more of the following security domains; IT/Information security compliance & audits, IT/Information security operational security.
Professional fluency in English.
So, what do you think?
We are proud to foster an inclusive workplace free from discrimination. We strongly believe that diversity of experience, perspectives, and background will lead to a better environment for our employees and a better product. This is something we value deeply and we encourage everyone to be a part of changing the way the world thinks about security! Go hack yourself!