Description:
Role OverviewAs the Information Security Officer, you will lead the companys information security function as it grows its enterprise and global client base. Youll design and implement fit-for-purpose security strategies that support compliance, protect data, and enable innovation in a fast-paced environment.
Reporting to the VP of Engineering, this cross-functional role supports engineering, compliance, operations, and leadership teams.
Key Responsibilities
Own and maintain the information security roadmap and risk register Implement security policies across infrastructure, applications, and endpoints Support teams in embedding security-by-design into the SDLC Lead compliance audits and assessments (e.g. PCI-DSS, ISO 27001, SOC 2) Coordinate vulnerability assessments, penetration testing, and risk modelling Develop and maintain incident response procedures Promote security awareness across the organisation Manage internal IT security needs (cloud, MDM, Google Workspace, password policies) Support client security reviews and enterprise procurement processes Stay informed on relevant threats and regulatory changes
Challenges Youll Tackle
Scaling security in a startup environment without slowing delivery Aligning security across teams and technologies Meeting evolving regulatory and enterprise standards across jurisdictions
Ideal Candidate Profile
4+ years of experience in information security, preferably in fintech Proven experience managing PCI-DSS compliance Strong understanding of governance, risk, and compliance (GRC) Familiarity with ISO 27001 and SOC 2 implementation Cloud infrastructure experience (preferably AWS) Skilled in secure coding and data protection principles Excellent communication and stakeholder engagement skills Hands-on, pragmatic mindset with an interest in building secure systems from the ground up
08 May 2025;
from:
gumtree.co.za