We are seeking a Head of Cyber Security with hands-on IT experience to lead the management, development, and delivery of a comprehensive information security program within.
The Security programs objectives include
Protect our information, applications, and infrastructure from external or internal threats.
Assure that we comply with regulatory and PCI requirements regarding information protection, access, security, and privacy.
Assure that software/systems/infrastructure/data developed, acquired, or maintained by us is secure, compliant, and used in accordance with its intended purpose.
Before you submit your CV, please note:
We are located in Herzliya, and we work in a hybrid workmode.
What will you do?
Direct management of our Security teamת, including a 7×24 SOC.
Coordinate the development of our information security policies, standards, and procedures and manage the information security function in accordance with these policies and guidelines.
Work with key IT personnel and internal groups to oversee the dissemination and enforcement of these policies, standards, and procedures within.
Maintain and enhance an education and training program for developers and IT on information security and privacy matters.
Function as an internal consulting resource on information security issues.
Maintain and enhance the Incident Reporting and Response System to address our security incidents (breaches) and respond to alleged policy violations or complaints from external and internal parties.
Develop and implement an ongoing risk assessment program targeting information security and privacy matters.
Recommend IT solutions (hardware and software) and applications for vulnerability detection and remediation to keep our environment secure.
Oversee vulnerability mitigation and coordinate all activities related to PCI compliance and other security certifications.
Consult with security experts and consultants and provide recommendations on the latest technologies that should be leveraged/deployed to keep our environment safe and secure.
The Security programs objectives include
Protect our information, applications, and infrastructure from external or internal threats.
Assure that we comply with regulatory and PCI requirements regarding information protection, access, security, and privacy.
Assure that software/systems/infrastructure/data developed, acquired, or maintained by us is secure, compliant, and used in accordance with its intended purpose.
Before you submit your CV, please note:
We are located in Herzliya, and we work in a hybrid workmode.
What will you do?
Direct management of our Security teamת, including a 7×24 SOC.
Coordinate the development of our information security policies, standards, and procedures and manage the information security function in accordance with these policies and guidelines.
Work with key IT personnel and internal groups to oversee the dissemination and enforcement of these policies, standards, and procedures within.
Maintain and enhance an education and training program for developers and IT on information security and privacy matters.
Function as an internal consulting resource on information security issues.
Maintain and enhance the Incident Reporting and Response System to address our security incidents (breaches) and respond to alleged policy violations or complaints from external and internal parties.
Develop and implement an ongoing risk assessment program targeting information security and privacy matters.
Recommend IT solutions (hardware and software) and applications for vulnerability detection and remediation to keep our environment secure.
Oversee vulnerability mitigation and coordinate all activities related to PCI compliance and other security certifications.
Consult with security experts and consultants and provide recommendations on the latest technologies that should be leveraged/deployed to keep our environment safe and secure.
Requirements:
Minimum 7 years of experience in information security, information technology, or related field in a software development and/or SAAS company.
2+ years of team management experience.
Strong technical skill set and awareness of software development processes, architecture, and IT infrastructure.
Security certification is a great advantage: CISSP, CISM, GSEC, CEH, etc.
Direct experience in implementing security appliances and solutions in an IT environment.
Excellent presentation, written, and oral communication skills in English.
Working knowledge of and experience in the policy and regulatory environment of information security, especially in PCI compliance and the financial sector.
A bachelor's degree in an engineering field is required. Advanced degree preferred.
Minimum 7 years of experience in information security, information technology, or related field in a software development and/or SAAS company.
2+ years of team management experience.
Strong technical skill set and awareness of software development processes, architecture, and IT infrastructure.
Security certification is a great advantage: CISSP, CISM, GSEC, CEH, etc.
Direct experience in implementing security appliances and solutions in an IT environment.
Excellent presentation, written, and oral communication skills in English.
Working knowledge of and experience in the policy and regulatory environment of information security, especially in PCI compliance and the financial sector.
A bachelor's degree in an engineering field is required. Advanced degree preferred.
This position is open to all candidates.
