Privacy and Cybersecurity Counsel providing legal advice on privacy laws and cybersecurity regulations for a global financial services firm. Advise on legal frameworks and support compliance initiatives across teams.
About the role
- Chief Information Security Officer leading global information security strategy and protecting systems at Cloudinary. Overseeing security governance, compliance, and incident readiness while collaborating with various teams.
Responsibilities
- Develop and maintain the company’s information security strategy, policies, and long-term roadmap. Both for production environments and for internal business by overseeing security of enterprise systems.
- Lead security risk assessments, mitigation planning, and ongoing security monitoring.
- Lead incident response planning, preparedness, and execution.
- Manage security governance, including controls, documentation, and audit readiness.
- Ensure compliance with relevant standards and regulations such as SOC 2, ISO 27001, GDPR, and emerging AI frameworks.
- Direct security architecture reviews and support secure development practices across product and engineering teams.
- Ensure security is integrated into engineering culture and delivery without hindering velocity, while aligning platform security with engineering practices and production resiliency requirements.
- Oversee vendor security, penetration testing, and third-party risk management.
- Serve as the primary security contact for customers, partners, auditors, and regulators, and own the security aspects of the company’s products, in alignment with business and customers’ needs.
- Provide regular updates to executive leadership on security posture, risks, and priorities.
Requirements
- Extensive experience in information security leadership, including prior ownership of a security program at scale at SaaS companies.
- Strong understanding of security frameworks, cloud security, risk management, and secure software development.
- Expertise in security governance, threat modeling, and compliance frameworks (SOC 2, ISO 27001, GDPR, and emerging AI regulations).
- Proven ability to manage incidents, lead cross-functional teams, and implement organisation-wide security practices.
- Effective communicator with experience supporting enterprise customers and executive stakeholders.
- Proven ability to represent the company’s security posture to enterprise customers, partners, auditors, and regulators.
- Relevant certifications (CISSP, CISM, or equivalent) preferred.
- Experience as CISO in a publicly traded company or IPO planning is preferred.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Security Guard monitoring premises to prevent theft and violence for Logan Health. Engaging with staff, patients, and visitors while ensuring safety and compliance.
Cybersecurity Associate focusing on identity and access management at PwC. Collaborating on secure access systems and safeguarding sensitive data.
Técnico/a Avanzado de Ciberseguridad en Mapfre gestionando proyectos de seguridad de inversiones. Dirigiendo evaluaciones de riesgos y cumplimiento de normativas de seguridad.
Security Officer providing safety and security for ERIE's employees and physical assets. Responding to emergency situations and enforcing safety protocols in Erie, PA.
Head of Data Protection & Cybersecurity Risk at FIFA ensuring compliance with data protection laws. Leading strategy while managing risks related to data security and privacy.
Operational Security & Public Safety Manager for East West Railway Company. Leading operational security and public safety strategy for a major railway infrastructure project.
Mid - level to senior associate attorney for privacy litigation in a collaborative environment. Join a team focused on groundbreaking privacy issues for marquee tech and retail clients.
Network Security Engineer supporting network security improvement programmes focused on segmentation and vulnerability management in the public sector. Collaborating with architecture and security teams to implement secure controls.
Cloud Security Engineer focused on enhancing security in a cloud - native fintech platform. Collaborating with teams to integrate security into infrastructure and software development processes.