Beekeeper

Head of IT Security (Zurich) (BB-E884C)

Gefunden in: Neuvoo CH

Beschreibung:

At Beekeeper we take our customer’s trust in us extremely seriously. That is why security and privacy have always been top priorities and we pride ourselves in offering best-in-class security solutions, as well as staying abreast of key security certifications and standards. As we continue our growth journey, we are creating a new role to oversee our security efforts across the organisation.

As the Head of IT Security at Beekeeper you will be responsible for implementing, managing and developing an effective governance framework to ensure that our security program adequately addresses the needs and expectations of customers, regulators, auditors and senior management, whilst balancing the broader strategic requirements of the business.

You will work closely with senior executives, risk & compliance, security professionals both within and outside the IT organisation, and others to support effective information security risk management and establish measurable controls and policies that support and comply with relevant regulations and standards.

Your Responsibilities

  • Strategy: You will develop a strategic vision for the company security program, demonstrating how it will support Beekeeper in achieving its overall strategic objectives, and derive from it an annual security plan
  • Information security management system: manage, maintain and document the security controls that protect the confidentiality, integrity, and availability of information from threats and vulnerabilities
  • Governance: design and implement a framework that ensures appropriate decision rights balancing the diverging expectations of the security management system’s stakeholders, including customers, regulators, auditors and senior management
  • Information security risk management: support overall company risk management efforts with information security specific risk identification, assessment and mitigation
  • Best Practice & Readiness: You are responsible for preparing and maintaining organisational readiness for certifications and audits, as well as managing external relationships with the relevant regulator and accreditation organisations. You will help build organisational resilience through robust business continuity / disaster recovery planning and management.
  • Process Management: You will define, document and deliver core security processes, including but not limited to: security standards and policies, identity and access management, vulnerability management, security monitoring, incident response and crucially; inform and educate staff across the entire organisation to ensure security is embedded in all processes.
  • External stakeholder relationships and certifications: representing security externally to prospects, customers and other key external stakeholders, keeping up to date with current and impending industry security standards and certifications
  • Education, awareness and training: cultivate an environment where decision makers understand and care about information security and consider security implications in their decision making, and where every individual understands their role and responsibilities in relation to security
  • Leadership: thought- and practical leadership of cross-functional teams
  • What we look for in you

  • Bachelor’s degree in relevant field
  • 8+ years of information security experience with demonstrated knowledge of information security management and governance, IT risk assessment and management, IT audit, as well as leading service delivery and security operations
  • Excellent verbal and written communication skills in English and German, with the ability to present complex technical issues in a succinct and easily understandable way to a variety of internal and external audiences, including senior management
  • Strong people management skills, especially in a matrix environment managing cross functional teams and programmes
  • Outstanding organisational and planning skills, ability to cope with high volumes of work and tight deadlines
  • Ability to switch between strategic thinking to practical implementation, not afraid to roll up sleeves and get stuck in, whilst also keeping the strategic perspective at all times
  • Practical experience with common information security management frameworks, in particular ISO 27001
  • Industry recognised information security certifications (e.g. Certified Information Security Professional/CISSP, Certified Information Security Manager/CISM, Certified Information Security Auditor/CISA)
  • In-depth knowledge of current and emerging data protection regulations in our core markets (GDPR, CCPA, Swiss Federal Act on Data Protection etc.)
  • Bonus Points

  • IT infrastructure and operations experience
  • Working experience in a technology or SaaS company
  • calendar_todayvor 3 Tagen

    report

    location_on Zürich, Schweiz

    work Beekeeper

    Anwenden:
    Ich ermächtige ausdrücklich die Bedingungen und Konditionen

    Ähnliche Jobs