Международный сервис пассажирских перевозок inDriver ищет Chief Information Security Officer.
An experienced professional and top manager in cybersecurity and infosecurity fields. Requirements for experience: building a modern, effective cyber and information security system in a large technology company.
What you will do:
- Develop and oversee a comprehensive company-wide cyber and data security program, reexamine business processes and create procedures and policies to protect digital assets, systems, communication from both external and insider threats
- Working with key company executives and in line with company strategy and business needs, create digital security strategy, project portfolio, the roadmap, and hiring strategy for cybersecurity to match our fast-growing business worldwide
- Manage information risk by closely working with key stakeholders to determine acceptable levels of risks for the organization within the security budget
- Lead GRC unit to insure compliance of internal processes with the legal requirements of all jurisdictions where we are and will be present
- Take active steps in safeguarding our expanding intellectual property, as well as data
- Working with the CTO, not only help protect the infrastructure, but you will also serve as an inspirational advocate for security best practices and help transform the culture of the organization to make it more resilient to future cybersecurity challenges; ensure that software development lifecycle reflects security requirements
- Establish SIRT team to create an effective detection, response and investigation of information security incidents; coordinate response with appropriate law enforcement agencies as needed
- To maintain fast growth, be able to actively attract cybersecurity talent from lower levels to direct reports through both recruitment efforts and your personal network
What company expects from you:
- Minimum of six years of experience in the US or Europe in a combination of cyber security, information and risk management related leadership roles
- Higher education in the technology field
- Professional information security certificates (CISSP, CISM, CISA, etc.)
- In-depth knowledge and practical experience in applying the industry standards and best practices in the field of information security management and information protection
- Good understanding of modern technology stacks and associated security risks
- Knowledge of the principles, various practices and practical experience of organizing information security units
- Expert understanding of the principles and practical experience in information security risk management
- Understanding and practical experience in protecting against insider threats
- Direct or indirect experience with legal compliance
- Experience in conducting information security audits
- Proven track record in attracting and retaining cybersecurity talent at all levels
- Experience with both corporate and startup environments is preferred
What company offers:
- Stable salary + individually discussed other types of motivation
- VHI from the first day of work
- Combined work schedule with partial remote work
- Personal growth programs
- Unlimited opportunities for growth