Remotery

Head of Security, Compliance

Posted 1 hour ago

This is a fully remote position, open to applicants in United Kingdom.

📋 Description

• Assume responsibility for security and compliance at Masabi, establishing clear priorities and methodologies.

• Develop a comprehensive understanding of our current security status and outline a practical strategy for its enhancement over time.

• Establish security and compliance requirements, collaborating closely with Engineering and IT teams to ensure effective implementation.

• Oversee existing compliance with PCI DSS, ISO27001, SOC2, and Cyber Essentials, while spearheading new compliance initiatives for additional standards such as ISO 27017 and ISO 27018.

• Handle audits from start to finish, including preparation, execution, and follow-up actions.

• Collaborate with Engineering and Product teams to integrate security practices that facilitate project delivery.

• Maintain a transparent and actionable risk overview, assisting the business in prioritizing critical issues.

• Develop a more scalable customer assurance approach, featuring streamlined processes and reusable materials for customer and audit requests.

• Provide guidance on which compliance standards to adopt as the organization expands.

• Lead and mentor a small team, fostering focus, trust, and a shared vision.


⛳️ Requirements

• Experience in security and compliance within a payments, fintech, or PCI-regulated environment.

• Strong hands-on expertise in PCI DSS, ISO27001, and SOC2, including audit preparation and execution.

• Proven track record of personally owning and executing compliance programs rather than merely overseeing them.

• Understanding of the interplay between security and compliance, and how to effectively implement them within a business.

• Experience in a growing or scaling organization, with the ability to bring structure and prioritize effectively.

• Comfortable navigating cross-team initiatives without direct authority and ensuring follow-through to completion.

• Possess sound judgment in balancing risk, delivery, and commercial interests.

• Experience supporting or leading a small team, with a focus on creating clarity and accountability.

• Ability to communicate effectively with both technical and non-technical stakeholders, helping them understand priorities and necessary actions.


🏝️ Benefits

• 25 days of annual leave, plus the option to purchase an additional 5 days pro-rated.

• Private Healthcare through AXA, covering pre-existing conditions and mental health.

• Life Insurance.

• Menopause support.

• Choice of workstation.

• Opportunity to work up to 3 months per year from any country globally (with certain limitations).

• Pension scheme.

• Training allowance of up to £1000 annually.

• £200 yearly allowance for home office needs or enhancements.

• Enhanced family leave pay.

• Cycle to work scheme.

• Regular social events with a monthly budget for each employee.

• A fun and collaborative workplace focused on making a positive impact in the world.

People also viewed

Softgic1 hour ago

Security Engineer

US flagUnited States OnlyFull-timeCybersecurity / Security Engineer
ApplyView job
AttackIQ1 hour ago

Client Security Advisor

US flagUnited States OnlyFull-timeCybersecurity / Security Engineer
ApplyView job
DigitalOcean1 hour ago

Staff Network Security Engineer

US flagMassachusetts OnlyFull-timeCybersecurity / Security Engineer$168.8k – $211k/year
ApplyView job
Defense Unicorns1 hour ago

Chief Information Security Officer

US flagUnited States OnlyFull-timeCybersecurity / Security Engineer$260k – $300k/year
ApplyView job
Armor Defense1 hour ago

Security Architect

SG flagSingapore OnlyFull-timeCybersecurity / Security Engineer
ApplyView job
Xenon Seven1 hour ago

AI Cybersecurity Engineer – Offensive Security, Threat Modeling

RS flagSerbia OnlyFreelanceCybersecurity / Security Engineer
ApplyView job

Never miss a great job!

Get handpicked remote jobs straight to your inbox weekly.

Trusted by 7,400+ designers