Our client is a cutting-edge, open IoT platform SaaS company revolutionizing transportation logistics. We leverage data-driven insights to optimize and secure the movement of goods and assets globally. As we expand, we are committed to fortifying our security infrastructure and maintaining the highest standards in data protection and compliance.
Role Overview:
We are looking for an experienced Director of Cyber Security to lead our cybersecurity initiatives and uphold the security and privacy of our IoT platform. The ideal candidate will bring a deep understanding of cybersecurity for SaaS platforms, expertise with security tools, and a proactive approach to maintaining SOC 2 and ISO 27001 compliance. This role requires a strategic mindset, hands-on technical skills, and a thorough understanding of global privacy standards.
Key Responsibilities:
Security Operations: Oversee daily security operations, leveraging tools like Darktrace, Wiz, Palo Alto Prisma, Fortinet, GlobalProtect, CrowdStrike, and Cortex XDR for threat detection, prevention, and incident response.
Compliance Management: Manage and ensure compliance with SOC 2 and ISO 27001 standards, continuously updating processes to meet evolving requirements.
Privacy Standards: Stay informed on GDPR, US privacy laws, and global privacy requirements, implementing best practices to safeguard data across the platform.
Risk Assessment: Conduct regular security assessments and vulnerability scans, proactively addressing risks to minimize potential breaches.
Policy Development: Develop and enforce security policies, protocols, and procedures tailored to IoT and SaaS security.
Collaboration: Work cross-functionally to embed security best practices into product development, DevOps, and IT operations.
Qualifications:
Bachelor's degree in Cybersecurity, Information Technology, or related field; Master's degree preferred.
5-7+ years of experience in cybersecurity, with a focus on SaaS or IoT platforms.
Proven expertise with security tools such as Darktrace, Wiz, Palo Alto Prisma, Fortinet, GlobalProtect, CrowdStrike, and Cortex XDR.
Demonstrated experience managing SOC 2 and ISO 27001 compliance within a SaaS or technology company.
Strong knowledge of GDPR, US privacy laws, and evolving global privacy regulations.
Excellent communication and leadership skills with the ability to work collaboratively across departments.
Benefits:
Health, dental, and vision coverage
Remote work flexibility
401k plan
Paid vacation, sick leave and holidays
This position is ideal for someone passionate about IoT and transportation logistics security, with a strong track record in cybersecurity and compliance. If you're ready to lead innovative security efforts in a dynamic start-up environment, we'd love to hear from you!