
Head of Security, Compliance
Posted 1 hour ago

Posted 1 hour ago
This is a fully remote position, open to applicants in United Kingdom.
• Assume responsibility for security and compliance at Masabi, establishing clear priorities and methodologies.
• Develop a comprehensive understanding of our current security status and outline a practical strategy for its enhancement over time.
• Establish security and compliance requirements, collaborating closely with Engineering and IT teams to ensure effective implementation.
• Oversee existing compliance with PCI DSS, ISO27001, SOC2, and Cyber Essentials, while spearheading new compliance initiatives for additional standards such as ISO 27017 and ISO 27018.
• Handle audits from start to finish, including preparation, execution, and follow-up actions.
• Collaborate with Engineering and Product teams to integrate security practices that facilitate project delivery.
• Maintain a transparent and actionable risk overview, assisting the business in prioritizing critical issues.
• Develop a more scalable customer assurance approach, featuring streamlined processes and reusable materials for customer and audit requests.
• Provide guidance on which compliance standards to adopt as the organization expands.
• Lead and mentor a small team, fostering focus, trust, and a shared vision.
• Experience in security and compliance within a payments, fintech, or PCI-regulated environment.
• Strong hands-on expertise in PCI DSS, ISO27001, and SOC2, including audit preparation and execution.
• Proven track record of personally owning and executing compliance programs rather than merely overseeing them.
• Understanding of the interplay between security and compliance, and how to effectively implement them within a business.
• Experience in a growing or scaling organization, with the ability to bring structure and prioritize effectively.
• Comfortable navigating cross-team initiatives without direct authority and ensuring follow-through to completion.
• Possess sound judgment in balancing risk, delivery, and commercial interests.
• Experience supporting or leading a small team, with a focus on creating clarity and accountability.
• Ability to communicate effectively with both technical and non-technical stakeholders, helping them understand priorities and necessary actions.
• 25 days of annual leave, plus the option to purchase an additional 5 days pro-rated.
• Private Healthcare through AXA, covering pre-existing conditions and mental health.
• Life Insurance.
• Menopause support.
• Choice of workstation.
• Opportunity to work up to 3 months per year from any country globally (with certain limitations).
• Pension scheme.
• Training allowance of up to £1000 annually.
• £200 yearly allowance for home office needs or enhancements.
• Enhanced family leave pay.
• Cycle to work scheme.
• Regular social events with a monthly budget for each employee.
• A fun and collaborative workplace focused on making a positive impact in the world.
Softgic
AttackIQ
DigitalOcean
Defense Unicorns
Get handpicked remote jobs straight to your inbox weekly.