InfoSec/Cybersecurity Manager
Job Details
Full Job Description
Y-combinator backed and recently voted ‘Fintech Start up of the Year 2022’ at Fintech Awards London, Verto helps businesses in emerging markets reach the world by making cross-border payments easy.
We enable businesses to accept payments and send payouts globally in one single platform. Each year we process billions of dollars of payments and provide companies with solutions which help them to save money, automate processes and grow.
We have worked with thousands of businesses globally since our launch in 2018 and have high growth aspirations for the future. By 2028 it’s forecasted payments revenue from emerging markets will exceed that of mature markets by $400bn, join Verto to make us the number one B2B payment provider in this space.
We are looking for an InfoSec/Cybersecurity Manager. This person will be responsible for designing and optimising a robust cybersecurity infrastructure, leading projects, and collaborating with cross-functional teams. They oversee hardware security, manage internal applications, address user queries, and ensure compliance with cybersecurity standards. The role encompasses maintaining high-performance levels, swift issue resolution, and providing on-site support while fostering continuous improvement in the organisation's security posture.
In the next 12 months….
Develop and implement a comprehensive cybersecurity strategy aligned with the organisation's business objectives. This involves assessing risks, identifying vulnerabilities, and defining security policies and procedures.
Design, implement, and optimise a robust and secure cybersecurity infrastructure. This includes deploying firewalls, intrusion detection and prevention systems, encryption technologies, and other security measures.
Develop and implement incident response plans to effectively address and mitigate cybersecurity incidents. Coordinate response efforts during security breaches and other emergencies.
Lead cybersecurity-related projects from inception to completion. Collaborate with cross-functional teams to ensure the seamless execution of security initiatives.
Manage internal security applications, ensuring optimal performance and addressing user queries related to internal security applications.
Ensure compliance with relevant cybersecurity regulatory standards, industry best practices, and legal requirements. Stay abreast of changes in regulations and adjust security measures accordingly.
Develop and implement security awareness programs to educate employees about cybersecurity best practices and create a security-conscious culture within the organisation.
Collaborate with external vendors to assess and enhance the security of third-party products and services used by the organisation.
Stay informed about the latest cybersecurity threats, technologies, and trends. Implement continuous improvement initiatives to enhance the overall security posture of the organisation.
Job Responsibilities:
Cybersecurity Infrastructure: Design, implement, and optimise a comprehensive cybersecurity infrastructure to protect against potential threats and vulnerabilities, ensuring the integrity, confidentiality, and availability of all data and systems.
Project Leadership: Lead cybersecurity projects from conception to execution, collaborating with cross-functional teams to achieve project goals while adhering to timelines and budgets.
Hardware Security Management: Oversee the security of all hardware devices, ensuring they are safeguarded against unauthorised access and cyber threats.
Application Security: Manage the security aspects of internal applications, including the development and implementation of secure coding practices and regular security assessments.
Compliance and Standards: Ensure the organisation's cybersecurity policies and practices comply with global regulations, including GDPR and PCI DSS, maintaining up-to-date knowledge of regulatory changes and industry best practices.
Issue Resolution: Provide swift resolution of security issues and breaches, conducting thorough investigations and implementing corrective actions to prevent future occurrences.
On-site Support: Offer on-site support for critical cybersecurity issues, ensuring minimal disruption to business operations and maintaining high-performance levels across the organisation.
Continuous Improvement: Foster a culture of continuous improvement in the organisation's security posture, regularly reviewing and enhancing cybersecurity measures based on emerging threats and technological advancements.
Partner and Vendor Management: Manage relationships with banking and other partners regarding security and cybersecurity, ensuring collaborative efforts to enhance overall security measures.
Education and Awareness: Develop and deliver training programs to educate employees about cybersecurity best practices, promoting a culture of security awareness throughout the organisation.
Understanding software like Google GSuite, SentinelOne - Endpoint protection, Abnormal Security - Email filtering. Jumpcloud - Identity and access management including devices, Ploy - Shadow IT detection
Understanding software like Google GSuite, SentinelOne - Endpoint protection, Abnormal Security - Email filtering. Jumpcloud - Identity and access management including devices, Ploy - Shadow IT detection
Requirements:
Bachelor's or Master's degree in Computer Science, Information Security, or a related field.
Professional certifications in cybersecurity (e.g., CISSP, CISM, CEH) are highly desirable.
Proven experience in managing cybersecurity in a fast-paced, technology-driven environment, preferably within the fintech sector.
Strong understanding of cybersecurity frameworks, hardware security, application security, and compliance requirements (GDPR, PCI DSS).
Excellent leadership, communication, and project management skills, with the ability to collaborate effectively across all levels of the organisation.
Analytical and problem-solving abilities, with a proactive approach to identifying and mitigating risks.